--- Comment #13 from Alex <> ---
> While Tomcat doesn't have a formal policy, the general expectation is that 
> clients confirm to the relevant RFCs. Therefore, Tomcat does, from time to 
> time, tighten up the validation of input data when gaps in validation are 
> identified.


to me this "from time to time", no review of potentially affected users, no
logging and no way to switch off this added strictness looks very questionable
from the user perspective. Maybe the flag for strict validation will be also
good here, not just improved logging.

You are receiving this mail because:
You are the assignee for the bug.
To unsubscribe, e-mail:
For additional commands, e-mail:

Reply via email to