Re: ResourceManager/RequestHandler and security issues
Re: ResourceManager/RequestHandler and security issues
- Subject: Re: ResourceManager/RequestHandler and security issues
- From: Oliver Scheel <email@hidden>
- Date: Wed, 28 May 2008 20:05:25 +0200
To serve images and CSS files through tomcat, you can put your
images and files in the ROOT webapp under the WEBAPPS directory, I
place my images in a directory named images. If you are using the
JK connector you put them on your webserver in the root directory
and images directory .
one of the difficulties in the current project is, that I can only
upload/provide a WAR ;-) I don't have any direct access to anything
else and also want to keep the installation procedure as much simple
as possible.
My idea would be to validate the wodata path against something like
WEBINFOROOT/MyApp.woa/Contents/WebServerResources (or better but less
secure to catch all frameworks) - path must contain
"WebServerResources"...
Much better would be to additionally encrypt the string to hide the
physical directory completely.
Oliver
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden