Hi, There maybe no security issues with the DSpace application but you need to be aware of issues with those services that DSpace depends upon, e.g. your web server, servlet container, version of JDK, database server etc. For example, there is a known security vulnerability with your Tomcat version: <http://secunia.com/advisories/28878/>
Naveed Message: 4 Date: Mon, 21 Apr 2008 09:06:56 +0100 From: James Rutherford <[EMAIL PROTECTED]> Subject: Re: [Dspace-tech] security issues in dspace 1.4.2 To: Veena <[EMAIL PROTECTED]> Cc: "[email protected]" <[email protected]>, "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> Message-ID: <[EMAIL PROTECTED]> Content-Type: text/plain; charset=us-ascii On Mon, Apr 21, 2008 at 06:47:24AM +0000, Veena wrote: > We are using dspace 1.4.2 , Apache Tomcat 5.5.17 web server , ORACLE > 10g back end database on MS Windows 2003 server for digital collection > of high court judgements project. We want to know any security issues > need to be addressed in the current setup. There are no known security issues in DSpace 1.4.2. cheers, Jim -------------------------------------------------------- Naveed Hashmi Information Systems and Computing University of Bristol [EMAIL PROTECTED] ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech
