Re: [jboss-as7-dev] Request for review of DomainServletApi bridge
On Wed, 2011-06-08 at 21:01 +0100, Darran Lofthouse wrote:
What is the intended use of this servlet?
One of the ongoing problems that JBoss AS has had as long as there has
been a management component made available over the JBoss Web / Tomcat
connector is that end users will expose that over the internet unsecured.
I understand there are requirements, but I also share your concern this
is a significant step backwards for security.
--
Remy Maucherat <rmaucher(a)redhat.com>
Red Hat Inc