Iv�n Escobedo wrote: > > Folks, i have one question, how can i prevent, thru > apache or tomcat, the access to a servlet, i mean, > i wrote directly http://www.domain.com/servlet/SomeServlet >
You may already know this, but for the benefit of others: <mini-rant> Tomcat has this awful, confusing "feature" that you don't have to use web.xml to set up servlet mappings. There's an automatic mapping added so that any url's like this: "/servlet/this.is.a.class.name" will call your servlet. The "/servlet" mapping is not in the spec, and it won't work on other containers. If Microsoft did it, everyone would be screaming about "embrace and extend". Heh. </mini-rant> Anyway, you can turn it off. In Tomcat 4 there's a default web.xml file in conf/web.xml. Go in there and comment out the "InvokerServlet" mapping. -- Christopher St. John [EMAIL PROTECTED] DistribuTopia http://www.distributopia.com ___________________________________________________________________________ To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff SERVLET-INTEREST". Archives: http://archives.java.sun.com/archives/servlet-interest.html Resources: http://java.sun.com/products/servlet/external-resources.html LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
