DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=23949>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=23949 Security : Directory traversal in "view-source" ------- Additional Comments From [EMAIL PROTECTED] 2003-10-22 08:31 ------- No, I don't like this kind of solution, it's too restrictive. We for example search a directory tree for our intranet outside of Cocoon webapp. At home I have mounted my own sitemap, which outside of Cocoon webapp. The "real" solution is either to avoid direct request params 2 file access mappings or to remove view-source.xsp completely. We have stylesheets for the latter task. Joerg
