If you want to have "SecretInformation" available on the web to certain users, try using realms to authenticate users. You could also use a Remote Address or Remote Host filter to restrict access to only specific I/P addresses or hosts.
All of these tactics require changes to the server.xml file. Suzanne -- To unsubscribe: <mailto:[EMAIL PROTECTED]> For additional commands: <mailto:[EMAIL PROTECTED]> Troubles with the list: <mailto:[EMAIL PROTECTED]>
