Mathias P.W Nilsson wrote:
Can this be hacked? like http://localhost/files/../../somefile
No. There have been some recent vulnerabilities with particular
configurations in this area but these are fixed in the latest 5.5.x and
6.0.x releases.
Mark
Can this be hacked? like http://localhost/files/../../somefile
--
View this message in context:
http://www.nabble.com/Tomcat-6-and-images-tp19260262p19379214.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
sure there is,
you can deploy it by using a context
Context docBase=/path/to/static-resources path=/images/
Filip
Mathias P.W Nilsson wrote:
Hi!
I'm using tomcat with wicket framework for my webapplication. My images,
css, flashes resides outside the container and therefor I'm using a
Thanks!
I'm currently deploying using ROOT.war. Here is the server.xml content.
How can I fit the images into this beacuse I don't quite follow.
Engine name=Catalina defaultHost=localhost
Host name=localhost appBase=webapps
unpackWARs=true autoDeploy=true
xmlValidation=false
From: Mathias P.W Nilsson [mailto:[EMAIL PROTECTED]
Subject: Re: Tomcat 6 and images
How can I fit the images into this beacuse I don't quite follow.
Do what Filip suggested; create a Context element in
conf/Catalina/localhost/images.xml with this value:
Context docBase=/absolute/path
Thank you very much it works perfectly and I got rid of my servlets :)
--
View this message in context:
http://www.nabble.com/Tomcat-6-and-images-tp19260262p19282295.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
- Original Message -
From: Mathias P.W Nilsson [EMAIL PROTECTED]
To: users@tomcat.apache.org
Sent: Monday, September 01, 2008 10:26 PM
Subject: Tomcat 6 and images
Hi!
I'm using tomcat with wicket framework for my webapplication. My images,
css, flashes resides outside the
static images,css and flash are normally served by apache
http://httpd.apache.org/could you explain specifically what you want to serve
inside TC and why you prefer to serve static resources in a container vs
Apache httpd webserver?Martin __
Hi Martin,
Listen just thought I tell you that your email (mailing list stuff) is
coming out as one long
line of unpunctuated text... on Outlook anyway.
Its not easy to read it...
---
HARBOR :