First let me say this is not a specific tomcat question, rather, a general application security issue that I'd like to get some feedback on.
As I type is in, it's making me even MORE nuts! Am I?
Was there a question in here, somewhere? :)
No, you're not nuts but trying to follow any logic in this system certainly has a propensity to drive you mad.
That seems *way* over complicated. Would you care to enlighten us as to why the process is so complex? Something like "well, out EJB server doesn't like anonymous connections, so each person gets their own..." would help at least me understand why you don't just something simpler.
-chris
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
