On 27/08/2020 11:32, Phoenix, Merka wrote: <snip/>
> The error message returned by the Tomcat service, while certainly helpful to > the remote client, is returning more information than it should (from a > security-viewpoint). What, exactly, are the security concerns here? Your comment suggests there is some form of information disclosure vulnerability. What information? Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org