You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Marcel Stor <ma...@frightanic.com> on 2003/10/02 11:50:20 UTC

Invoker servlet security

Hi all,

I can think of a number of reasons why the invoker servlet is disabled
with new Tomcat installations - security (as stated in the release
notes) is not one of them.
Could someone please point me to a thread where these implications have
been discussed on this list. I've searched the archive, couldn't find
one, though.

Regards,
Marcel


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org

Re: Invoker servlet security

Posted by Tim Funk <fu...@joedog.org>.

FAQ http://jakarta.apache.org/tomcat/faq/misc.html#evil
-Tim

Marcel Stor wrote:

> Hi all,
> 
> I can think of a number of reasons why the invoker servlet is disabled
> with new Tomcat installations - security (as stated in the release
> notes) is not one of them.
> Could someone please point me to a thread where these implications have
> been discussed on this list. I've searched the archive, couldn't find
> one, though.
> 
> Regards,
> Marcel
>  


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org