it's really one of those 'what type of attack' questions. Tomcat / Apache / IIS / IPlanet / etc are all open to attack ( some -IIS- more than others :-^) )
You can for example generate a DOS attack that will take down any/all of them. You can try various buffer overflow attacks to take down some etc etc... Of course if **your** code has security issues then there's really nothing that any of them can do .... D [EMAIL PROTECTED] wrote: >Hi All > >I was reading the security attack posting and I was very interested to know >also; > >1) How good is Tomcat to attacks? >2) Is their a web site which rates web servers on how robust a server is to >attacks? >3)Is it possible to attack tomcat if you have Apache as the web server on one >machine and tomcat as the jsp/servlet handler on a separate machine with >mod_jk? > >I would be most interested to see how Tomcat weights upto some of its >commercial counterparts. Is Tomcat any good or should we just use it to test >our jsp/servlets and so on? thanxs. > >Regards >Amran > >-- >To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> >For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> > > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
