Hi,
I have a JSP that uses a bean. It uses the following directory structure :
webapps/myapply/myapply.jsp
webapps/myapply/web-inf/classes/mybean.class
It works fine but I am annoyed that people can download the bean directly
and "access" its content because it contains critical information
(passwords).
How do I protect my bean and more generraly I'd like to protect the whole
web-inf directory (if it's possible)
Note : I'm using Tomcat standalone.
Thanks
- Re: Deny web-inf access (security problem) Paul Gonin
- Re: Deny web-inf access (security problem) William Brogden
- Re: Deny web-inf access (security problem) Craig R. McClanahan
- Re: Deny web-inf access (security problem) mayan
- modifying web.xml on the fly John de la Garza
- RE: Deny web-inf access (security problem) guyr
- RE: Deny web-inf access (security problem) Kitching Simon
- Re: Deny web-inf access (security problem) Paul Gonin
