Thanks Juha,
>
> Yes, context root will be served, as will be other folders under
> context root. WEB-INF and its subfolders are safe, from the container
> (Tomcat) point-of-view. Note however, that you as web application
> developer can break this safety mechanism: a servlet can be
> programmed t
R. S. Patil wrote:
Thanks Chuk,
In some discussion i heard that the WEB-INF contents can not be
accessed from Internet at all.
The servlet spec requires that the servlet container (Tomcat) prevent direct
access to WEB-INF.
How far this is true ?
Completely, as far as Tomcat is concerned.
Thanks Chuk,
>> In some discussion i heard that the WEB-INF contents can not be
>> accessed from Internet at all.
>
> The servlet spec requires that the servlet container (Tomcat) prevent direct
> access to WEB-INF.
>
>> How far this is true ?
>
> Completely, as far as Tomcat is concerned. If yo
> From: R. S. Patil [mailto:kpr.rspa...@gmail.com]
> Subject: Security Query.
>
> In some discussion i heard that the WEB-INF contents can not be
> accessed from Internet at all.
The servlet spec requires that the servlet container (Tomcat) prevent direct
access to WEB-INF.
&g
Hello,
I am a total newbie to web applications and tomcat, a student.
In some discussion i heard that the WEB-INF contents can not be accessed
from Internet at all. So one can keep secret information in that
folder in plain text files
How far this is true ?
if not then where to put secret inform
