[jbossws-issues] [JBoss JIRA] Updated: (JBWS-723) Protect access to WSDL
Thomas Diesler (JIRA)
jira-events at jboss.com
Mon Jan 15 08:02:58 EST 2007
[ http://jira.jboss.com/jira/browse/JBWS-723?page=all ]
Thomas Diesler updated JBWS-723:
--------------------------------
Summary: Protect access to WSDL (was: Protect access to wsdl)
> Protect access to WSDL
> ----------------------
>
> Key: JBWS-723
> URL: http://jira.jboss.com/jira/browse/JBWS-723
> Project: JBoss Web Services
> Issue Type: Task
> Security Level: Public(Everyone can see)
> Components: jaxrpc
> Reporter: Thomas Diesler
> Assigned To: Thomas Diesler
> Fix For: jbossws-1.2.0
>
>
> Hello,
> the reason for protecting the wsdl file, is that the wsdl file can give
> valuable information for starting a Web Service related attack,
> according to the bibliography (see for example: Hacking Exposed, Web Applications, Scambray J., Shema M., McGraw Hill; Hacking Exposed,
> J2EE & Java, Taylor B., Buege R., Layman A., McGraw Hill).
> Spyros Halkidis
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jbossws-issues
mailing list