> De: Robert Douglass [mailto:[EMAIL PROTECTED]]
> Enviado el: martes 26 de marzo de 2002 13:12
8<--------------------------------------------------------------------
/*
* We are now in a security nightmare, it maybe that
somebody sent
* us a uri that looks like /top-secret.jsp. and the web
server will
* fumble and return the jsp content.
*
* To solve that we will check for path info following the
suffix, we
* will also check that the end of the uri is not .suffix.
*/
int fraud = check_security_fraud(uw_map, uri, l);
8<--------------------------------------------------------------------
The excerpt above is from the code in mod_jk...
It seems you are trying to include or something, with an absolute path..
Only a wild guess, the code seems to be trying to assure the user is not
trying to get the code from a jsp.., by trying some kind of weird
URL..,
Saludos ,
Ignacio J. Ortega
--
To unsubscribe: <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>
