Re: Aw: Re: Fix for the Ghostcat vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jürgen, On 3/5/20 01:59, "Jürgen Göres" wrote: > > Hi, > >>> If it is, what is the recommended mitigation? We consider using >>> the "secret" feature (the filtering by request attributes is >>> infeasible for us), but that would be a bit of effort a

Aw: Re: Fix for the Ghostcat vulnerability

Hi,   >> If it is, what is the recommended mitigation? We consider using the >> "secret" feature (the filtering by request attributes is infeasible >> for us), but that would be a bit of effort and we are in a hurry. >> > >We're in the same position as you. External web servers talking to >Tomcat