You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Frank Diakovasilis <fd...@lexel.com> on 2002/08/06 20:19:08 UTC

Directory contents exposed, important!

I just realized that typing in the url to my webapp minus the servlet e.g.
http://machine/webapp <http://machine/webapp>   exposes the contents of my
directory, how is this disabled?

RE: Directory contents exposed, important!

Posted by Jacob Hookom <ho...@uwec.edu>.

$CATALINA/conf/web.xml

servlet default change input param "listings" to false

> -----Original Message-----
> From: Frank Diakovasilis [mailto:fdiak@lexel.com]
> Sent: Tuesday, August 06, 2002 1:19 PM
> To: 'tomcat-user@jakarta.apache.org'
> Subject: Directory contents exposed, important!
> 
> I just realized that typing in the url to my webapp minus the servlet
e.g.
> http://machine/webapp <http://machine/webapp>   exposes the contents
of my
> directory, how is this disabled?
> 
> ---
> Incoming mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.380 / Virus Database: 213 - Release Date: 7/24/2002
> 

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.380 / Virus Database: 213 - Release Date: 7/24/2002
 


--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>