[JBoss JIRA] Updated: (JBWS-723) Protect access to WSDL

Monday, 15 January 2007


     [ http://jira.jboss.com/jira/browse/JBWS-723?page=all ]

Thomas Diesler updated JBWS-723:
--------------------------------

    Summary: Protect access to WSDL  (was: Protect access to wsdl)

...
 Protect access to WSDL
 ----------------------

                 Key: JBWS-723
                 URL: http://jira.jboss.com/jira/browse/JBWS-723
             Project: JBoss Web Services
          Issue Type: Task
      Security Level: Public(Everyone can see) 
          Components: jaxrpc
            Reporter: Thomas Diesler
         Assigned To: Thomas Diesler
             Fix For: jbossws-1.2.0


 Hello,
 the reason for protecting the wsdl file, is that the wsdl file can give
 valuable information for starting a Web Service related attack,
 according to the bibliography (see for example: Hacking Exposed, Web Applications,
Scambray J., Shema M., McGraw Hill; Hacking Exposed,
 J2EE & Java, Taylor B., Buege R., Layman A., McGraw Hill).
 Spyros Halkidis 
-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006