I'm running JBoss 3.2.1 with Jetty 4. The other day I scanned the server with a 3rd party product to check for vulnerabilities. The software showed the HttpTrace service enabled and listed this as vulnerability. I don't believe it would be possible to grab any useful information from our application but does anybody know how to configure JBoss or Jetty to disable the HttpTrace service.
Thank you Chris. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3837274#3837274 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3837274 ------------------------------------------------------- This SF.Net email is sponsored by the new InstallShield X. >From Windows to Linux, servers to mobile, InstallShield X is the one installation-authoring solution that does it all. Learn more and evaluate today! http://www.installshield.com/Dev2Dev/0504 _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
