Re: Security of WEB-INF content

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Peter, On 10/29/2010 7:57 AM, Mark Thomas wrote: On 29/10/2010 12:30, Haledor wow wrote: Hi, I have read in various forums that there are situations where the content of WEB-INF can be accessed. Some people say that it is good practice to hide

Security of WEB-INF content

Hi, I have read in various forums that there are situations where the content of WEB-INF can be accessed. Some people say that it is good practice to hide sensitive files in WEB-INF and some say it might not be... I am using Tomcat 6.0 and I am worried someone could access some of my sensitive

Re: Security of WEB-INF content

On 29/10/2010 12:30, Haledor wow wrote: Hi, I have read in various forums that there are situations where the content of WEB-INF can be accessed. Some people say that it is good practice to hide sensitive files in WEB-INF and some say it might not be... I am using Tomcat 6.0 and I am