Hello, I have recently developed code for Tomcat 8.5 that defends against black-hats probing Tomcat and the website apps for vulnerabilities. This coding effort started a year ago, and the latest code has been running successfully on Tomcat 8.5.49 (Linux server) for about 3 months. I feel that Tomcat is less vulnerable now and I would be rather uncomfortable running a production system without this new feature.
I am happy to provide design details and donate this code to Apache, but I am unsure of your process to introduce new Tomcat features for review by your dev team, and to submit code. Let me know if you have questions. Thanks. Alan Basche --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
