Sorry, one more note of use:
The manager username / password is set in: tomcat/conf/tomcat-users.xml
--
View this message in context:
http://www.nabble.com/Possible-hack-tool-kit-on-tomcat-6.0.16-tp18928896p19811097.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
I have encountered this in September 2008. Here is what I have found:
1) There are several variants such as: fexcep OR fexcepkillshell OR
fexcepshell OR fexcepspshell OR fexception OR fexshell OR fexsshell
2) It appears to be distributed using an automated scanner that looks for
the manager