DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=23949>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=23949 Security : Directory traversal in "view-source" ------- Additional Comments From [EMAIL PROTECTED] 2003-10-21 18:29 ------- Isn't it possible to prevent reading anything outside the root folder of Cocoon ? It do not sounds very difficult, however I must admit that I didn't looked in the code of Cocoon yet, so it's _always_ easier ;-) Maybe this behaviour could be "bypassed" by a special config entry that specifies explicitly the allowed path ?
