-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Johnny,
Johnny Kewl wrote: > Got a little sensitive info that I would like to package with an application. > I noticed that even if the user has say left listing on.. that stuff in > META-INF is not listed. TC seems to actively block it or ignore it. > > What do you think... if I stay away from names like > context.xml > and > MANIFEST.MF > > do you think its an OK to store in META-INF or am I breaking some rule that I > should know about? Storing stuff in WEB-INF should be just fine -- I would stick to WEB-INF instead of META-INF. I'd bet that Tomcat protects WEB-INF the same way. I have seen lots of projects where all the JSPs go into WEB-INF so they aren't accidentally accessed directly from a browser, or aren't accidentally served as source code if the JSP compiler/runner isn't enabled. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHIfdJ9CaO5/Lv0PARAvepAJsFrSwv4lDXEkThWVC2CbUysron1QCgqsc/ Pisks5HYiUk04E26tr++3mo= =wtPU -----END PGP SIGNATURE----- --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]