On Mon, 6 May 2002, Glenn Nielsen wrote: > I agree, I added a Host config flag called "deployXML" which can disable this > for context.xml files in the webapps dir. As long as this flag works for > /META-INF/context.xml we are covered.
Wouldn't be better to just separate the 'sensitive' config information from the sandboxed config ? The webapps/ ( including static and dynamic files, web.xml ) can be made accessible to users safely - i.e. give write permission in the webapp dir ( based on group, etc ). All sensitive informations should only be accessible to admins, so conf/ can/should be more restrictive. Costin -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
