You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Frank Diakovasilis <fd...@lexel.com> on 2002/08/06 20:19:08 UTC
Directory contents exposed, important!
I just realized that typing in the url to my webapp minus the servlet e.g.
http://machine/webapp <http://machine/webapp> exposes the contents of my
directory, how is this disabled?
RE: Directory contents exposed, important!
Posted by Jacob Hookom <ho...@uwec.edu>.
$CATALINA/conf/web.xml
servlet default change input param "listings" to false
> -----Original Message-----
> From: Frank Diakovasilis [mailto:fdiak@lexel.com]
> Sent: Tuesday, August 06, 2002 1:19 PM
> To: 'tomcat-user@jakarta.apache.org'
> Subject: Directory contents exposed, important!
>
> I just realized that typing in the url to my webapp minus the servlet
e.g.
> http://machine/webapp <http://machine/webapp> exposes the contents
of my
> directory, how is this disabled?
>
> ---
> Incoming mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.380 / Virus Database: 213 - Release Date: 7/24/2002
>
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.380 / Virus Database: 213 - Release Date: 7/24/2002
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>