Any ideas?
-- JHHL --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
We've got a customer -- the same one that was our first test of a
working RemoteAddrValve -- whose security consultant is complaining that
a potential intruder can confirm the *existence* of the manager context
(because it returns a 403, as opposed to, say, a 404).
- Got a customer who's paranoid about Manager James H. H. Lampert
- Re: Got a customer who's paranoid about Manager Mark Thomas
- Re: Got a customer who's paranoid about Manag... James H. H. Lampert
- Re: Got a customer who's paranoid about M... Mark Thomas
- Re: Got a customer who's paranoid abo... Alex O'Ree
- Re: Got a customer who's paranoid about Manag... James H. H. Lampert
- Re: Got a customer who's paranoid about M... Mark Thomas
- Re: Got a customer who's paranoid abo... James H. H. Lampert
