On 1/7/20 7:32 AM, Christopher Schultz wrote:
Hah, sorry about that. Nobody thought of specifying that only root can
view the iptables stuff. :)
Not your fault, nor that of anybody else here; I blame the author of
iptables and iptables-save: it should either (a) allow *anybody* to
*see* the information, or (b) *tell* the user that he/she is not
authorized to see it.
While I occasionally use "quiet failure" myself, when writing code to
protect database fields from unauthorized modification, I generally do
so only when it actually makes sense, and the user can actually *see*
that his or her attempt to change the value(s) was quietly ignored.
***
But I'm still puzzled about the "output redirect" specified in the
presentation, but absent from this installation (and yet it still works
just fine). Does the "proxyPort" clause on the connector have something
to do with it "working just fine" without the "output redirect"?
--
JHHL
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
