https://bz.apache.org/bugzilla/show_bug.cgi?id=61542
--- Comment #8 from Remy Maucherat <r...@apache.org> --- (In reply to Peter Stöckli from comment #7) > Isn't the mere existence of the readonly parameter also part of the problem? > > https://tomcat.apache.org/tomcat-7.0-doc/default-servlet.html > It is currently documented as "Is this context "read only", so HTTP commands > like PUT and DELETE are rejected? [true]" > > But it holds more "surprises". IMHO this parameter should NEVER be set to > false. Maybe it can be removed or the documentation of this parameter can be > improved? Have you ever heard of WebDAV ? Obviously if we were writing Tomcat today, we would never bother implementing it. Also obviously, nobody running a public server should enable it, secured or not. But it's not going to be removed either. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
