Hi ,
i need help please in two subjects .. My problems are what
configuration I should have to do in the server to prevent:
1) Prohibit downloading the *.jsp files from any client on the
internet... [ I noticed that if I wrote the URL of my site ending with
myFile.JSP [ JSP in Capital letters] the page not opened ! , but the
server offered me to download the file it self ! ..Which I don’t want
any user knows this property to download my own source-code jsp files!
2) My application is depend on a password authentication , which
I don’t want any cracker to keep trying usernames/passwords for
many tries .. How should I tell the server to block an ip after 3 times
tries [for example] and for how long this ip will be blocked!
are thses problems related with the Apache server or Tomcat serve or both
of them !!.. does anyone face like these problems ?!
Java_lover : Walid
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
