You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2004/02/02 14:10:21 UTC

DO NOT REPLY [Bug 25055] - bypass of apache authentication

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=25055>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=25055

bypass of apache authentication

stefos@msc.gr changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Summary|getRemoteUser() returns null|bypass of apache
                   |- bypass of apache          |authentication
                   |authentication              |



------- Additional Comments From stefos@msc.gr  2004-02-02 13:10 -------
I had 3 private emails the past week about this issue from people who have the
same problem. I refered them to my comment from "2003-12-02 07:43".

As this is a security issue, I think this bug is important enough to justify a
comment in the release notes of mod_jk... 

I'm also changing the summary to reflect the real problem in this bug report and
not the initial problem I had encountered

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org