[jbossws-issues] [JBoss JIRA] Updated: (JBWS-723) Protect access to wsdl
Thomas Diesler (JIRA)
jira-events at jboss.com
Thu Nov 9 06:34:47 EST 2006
[ http://jira.jboss.com/jira/browse/JBWS-723?page=all ]
Thomas Diesler updated JBWS-723:
--------------------------------
Fix Version/s: jbossws-1.0.6
(was: jbossws-1.0.5)
> Protect access to wsdl
> ----------------------
>
> Key: JBWS-723
> URL: http://jira.jboss.com/jira/browse/JBWS-723
> Project: JBoss Web Services
> Issue Type: Task
> Security Level: Public(Everyone can see)
> Components: jaxrpc
> Reporter: Thomas Diesler
> Fix For: jbossws-1.0.6
>
>
> Hello,
> the reason for protecting the wsdl file, is that the wsdl file can give
> valuable information for starting a Web Service related attack,
> according to the bibliography (see for example: Hacking Exposed, Web Applications, Scambray J., Shema M., McGraw Hill; Hacking Exposed,
> J2EE & Java, Taylor B., Buege R., Layman A., McGraw Hill).
> Spyros Halkidis
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jbossws-issues
mailing list