mattrpav commented on pull request #727: URL: https://github.com/apache/activemq/pull/727#issuecomment-978203642
@ViliusS I've tagged the JIRA for inclusion in 5.16.4 which is in-progress. I agree the security risk may be serious to certain users. The issue is minor, given there is a known fix and the fix is in a config file, not code. I advise all users to adjust their conf/jetty.xml if web console access is exposed for non-admin users, or disallow non-admin access to the web console. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
