spyhunter99 opened a new pull request, #428: URL: https://github.com/apache/jspwiki/pull/428
…oDeploy, unpackWARs, showReport and showServerInfo by default also implements the following security improvements on both the portable build and the docker configuration V-222979 sets tomcat's session timeout to 10 minutes V-223009 tomcat Connector address attribute must be set. V-223005 ENFORCE_ENCODING_IN_GET_WRITER must be set to true. V-223003 RECYCLE_FACADES must be set to true. V-222957 xpoweredBy attribute must be disabled. V-222956 Autodeploy must be disabled. V-222955 The deployXML attribute must be set to false in hosted environments. V-222951 The shutdown port must be disabled. V-222950 Stack tracing must be disabled. V-222977 ErrorReportValve showReport must be set to false. V-222975 ErrorReportValve showServerInfo must be set to false. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
