Hi all,
recently I got information that there is a security leak by Jboss WS Native if you use the DOCTYPE [1]. One of my colleagues had wrote a WS which deployed on Jboss EAP 5.1.0 and works fine. He told me his WS dosen't use the Jboss WS Native. But after I've deleted all the Jboss WS Native components such as the jbossws-native-xxx.jar, the ../deploy/jbossws.sar and ../deployer/jbossws.deployer, the WS doesn't work. And I got "java.lang.ClassNotFoundException: org.jboss.ws.core.jaxws.spi.ProviderImpl"
I wonder how to determine if a WS uses Jboss WS Native or not.
[1] http://securitytracker.com/id/1026058
Thomas