At 09:25 19/02/03, "Simon Kelly" <[EMAIL PROTECTED]> wrote:
I'm having a bit of a problem accessing anything in directories on the same level as WEB-INF/.
I believe this is banned by the servlet engine (Tomcat?) - otherwise you might have website users downloading your jar files, and config files, and whatnot.
Does it really have to be there? If it does then create a new servlet which reads and passes these on as files - but only after providing proper security checks.
Goodluck
Alex
Available for java/perl/C++/web development in London, UK or nearby.
Apache FOP, Cocoon, Turbine, Struts,XSL:FO, XML, Tomcat, JSP
http://www.OWAL.co.uk/
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]