DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=20243>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=20243 axis complains about exceptions in javax.http [EMAIL PROTECTED] changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | ------- Additional Comments From [EMAIL PROTECTED] 2003-05-30 22:27 ------- I want to reopen this as a reminder that we do need to fix it, because granting all permissions to stuff in lib is, well, the kind of access that you want java security to catch. Maybe we need a more generic feature req, that of 'have axis run happily in a locked down environment', which includes things like -save webinf and attachments in the right per-webapp temp dir -document (in security.html) what controls often make sense
