".Tomcat is (should) not be exposed beyond IPA servers so remote users
should not be able to make direct requests."
Understood. Thank you.
Marcelo
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an
Sam Morris via FreeIPA-users wrote:
> On Mon, 2023-10-30 at 22:35 +, Marcelo Carvalho via FreeIPA-users
> wrote:
>> Hi Rob
>>
>> Thanks for helping out here. I was pulled sideways and I am
>> returning to this issue now. I am sorry.
>>
>> Vulnerability showing is "Apache Tomcat 9.0.0-M1 <
On Mon, 2023-10-30 at 22:35 +, Marcelo Carvalho via FreeIPA-users
wrote:
> Hi Rob
>
> Thanks for helping out here. I was pulled sideways and I am
> returning to this issue now. I am sorry.
>
> Vulnerability showing is "Apache Tomcat 9.0.0-M1 < 9.0.68 Request
> Smuggling Vulnerability"
If
Hi Rob
Thanks for helping out here. I was pulled sideways and I am returning to this
issue now. I am sorry.
Vulnerability showing is "Apache Tomcat 9.0.0-M1 < 9.0.68 Request Smuggling
Vulnerability"
Is there a way and a need to update Apache Tomcat from within FreeIPA? If so,
is this
Marcelo Carvalho via FreeIPA-users wrote:
> Hi everyone.
>
> We are running FreeIPA version:
>
> VERSION: 4.10.1, API_VERSION: 2.251
>
> Tomcat showing running is:
>
> [root@corp-freeipa-01 tomcat]# java -cp catalina.jar
> org.apache.catalina.util.ServerInfo
> Server version: Apache