-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Jan,
On 2/26/15 4:26 PM, Jan Tosovsky wrote: > On 2015-02-26 Aurélien Terrestris wrote: >> >> It makes me remember this doc which is not bad for securing >> Tomcat : https://www.owasp.org/index.php/Securing_tomcat >> > > This is a good one. I've also found this: > http://server.dzone.com/articles/hacking-liferay-%E2%80%93-securing > > It would be nice to compile it into some 'best practices' article > published as part of Tomcat documentation. The Tomcat Wiki is (relatively) publicly-editable. Feel free to have a go at it. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJU75O/AAoJEBzwKT+lPKRYsMgP/16BsUMvvvpplS4jEQvFN+p+ 6LYw9xo8qKipjV+N6hS1oJmfHV65CX5M096bE8yJmZhIMTUinaSO+fXeNC0N5x9S /x8XdGXRsaXFYBX+T3v7Ale70xK111g6PXBf3OmyiL0sMgdCo9cacVhnrFKeVHBW 9nBSfBtiE2Z75582bEzqfYtgE2kQKcur5iJc31sC4wwpE0xo7Pzy4YziixtJeWCc iIkPoDdkHpQvUUftX1Oi+eBZxHqisllQRRpT84wfPt8hcnLSXCGQZUZED+xmUndx qNpRFLZUcEfAbPpn+/slYk9MhgJ98vqUOzk0yY+BtBzgqaj54Y7gRP5pFrjdoV1K QTtdvmRtmbq9jY3CUZVUbV9wbOCSVlrcBc4xzcqJC/k9kKwI8ZHOvwJol4CYSphO zyDGmV/7mP7f8BIyvZTh0t/k4kUgqXwe62r/Un2pSaKoMrUbi7BDSLa3UBxwKwHr 2CkFo0TkuA07ixECeFpbRHBKoQcD7Kb71AZXfucyg7lgTwrq/8/XxmXL59q8kHzH Bud6IOUtIMJsMByZZs+x7nAqAFn5oOUdNuoYt8mzRkCi9OXSRAhTCuf358MpdS+3 ZV+XhLeRHc6wafypAxIRQzDkwQ6k9/cvHngD4A6q/IaSjtwMBa+2Af2ZhVZFNfF4 3cEoYTu0jSBsmpnkKjOl =ELCW -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org