On Thursday 25 July 2002 10:23, [EMAIL PROTECTED] wrote:
I posted a similar question a while ago and did not receive any
answer from this list. May be, folks on this list are admins/
developers/programmers who are bothered mostly about application
itself and not security. May be there is an
Think about the account you are running it under.
-Original Message-
From: Patel, Rajni M [mailto:[EMAIL PROTECTED]]
Sent: 23 July, 2002 12:17 PM
To: '[EMAIL PROTECTED]'
Subject: Hardening Tomcat 3.2.4
Importance: High
I have tomcat installed and running on a Windows NT 4.0 SP6a box
I posted a similar question a while ago and did not receive any
answer from this list. May be, folks on this list are admins/
developers/programmers who are bothered mostly about application
itself and not security. May be there is an overall security
list where such questions may be posed.
:[EMAIL PROTECTED]]
Sent: Thursday, July 25, 2002 10:23 AM
To: Tomcat Users List
Subject: Re: Hardening Tomcat 3.2.4
I posted a similar question a while ago and did not receive any
answer from this list. May be, folks on this list are admins/
developers/programmers who are bothered mostly about
List
Subject: Re: Hardening Tomcat 3.2.4
I posted a similar question a while ago and did not receive any
answer from this list. May be, folks on this list are admins/
developers/programmers who are bothered mostly about application
itself and not security. May be there is an overall security
list
Mike Jackson wrote:
A firewall is probably the best way to harden tomcat. Or any web server
for that matter, however for a one good you're going to probably end up
paying a large sum of money. You could go on the cheaper side and only use
a stateful port blocking firewall, but really to do
first,
assuming an apache+connector+tomcat configuration.
John Turner
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 25, 2002 2:01 PM
To: Tomcat Users List
Subject: Re: Hardening Tomcat 3.2.4
Mike Jackson wrote:
A firewall
to ports it generally acceptable when
you're not dealing with particularily sensitive data.
--mikej
-=-
mike jackson
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 25, 2002 11:01 AM
To: Tomcat Users List
Subject: Re: Hardening
configuration.
John Turner
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 25, 2002 2:01 PM
To: Tomcat Users List
Subject: Re: Hardening Tomcat 3.2.4
Mike Jackson wrote:
A firewall is probably the best way to harden tomcat
]]
Sent: Thursday, July 25, 2002 11:02 AM
To: 'Tomcat Users List'
Subject: RE: Hardening Tomcat 3.2.4
Is it possible to configure tomcat to listen only on the connector ports,
and not any other port, such as 8080? Seems to me you could just delete the
HTTP connector from port 8080 and that would
+connector+tomcat configuration.
John Turner
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 25, 2002 2:01 PM
To: Tomcat Users List
Subject: Re: Hardening Tomcat 3.2.4
Mike Jackson wrote:
A firewall is probably the best
tomcat's problem.
John Turner
[EMAIL PROTECTED]
-Original Message-
From: Mike Jackson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 25, 2002 2:12 PM
To: Tomcat Users List
Subject: RE: Hardening Tomcat 3.2.4
Whatever web server which is acting as the front end to tomcat is still
12 matches
Mail list logo
