RE: How to Disable TRACE and DELETE methods in tomcat 6.x
From: Anand Kumar Singh [mailto:[EMAIL PROTECTED] Subject: How to Disable TRACE and DELETE methods in tomcat 6.x - Disable TRACE and DELETE methods Don't know, but I suspect a filter can be written to ignore them. - Disable 8005 Port on Tomcat instance. Users can shutdown tomcat from that port. Only if you give them telnet or other direct access to the machine Tomcat is running on. The shutdown port is used only with 127.0.0.1, no other IP address. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to Disable TRACE and DELETE methods in tomcat 6.x
Anand Kumar Singh wrote: Hi, Can anyone suggest me How to Disable TRACE and DELETE methods in tomcat 6.x? For security reason i want to - Disable TRACE and DELETE methods - Disable 8005 Port on Tomcat instance. Users can shutdown tomcat from that port. set port=-1 Filip - Anand Singh No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.516 / Virus Database: 269.19.16/1250 - Release Date: 1/29/2008 10:20 PM - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to Disable TRACE and DELETE methods in tomcat 6.x
- Disable 8005 Port on Tomcat instance. Users can shutdown tomcat from that port. Only if you give them telnet or other direct access to the machine Tomcat is running on. The shutdown port is used only with 127.0.0.1, no other IP address. Yes, and you also may change the shutdown attribute of Server element in server.xml. It specifies the secret string that is being printed to port 8005 to shutdown the server. You may also change the port number there. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
