Mathias P.W Nilsson wrote: > Can this be hacked? like http://localhost/files/../../somefile
No. There have been some recent vulnerabilities with particular configurations in this area but these are fixed in the latest 5.5.x and 6.0.x releases. Mark --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]