DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=42491>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=42491 [EMAIL PROTECTED] changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |LATER ------- Additional Comments From [EMAIL PROTECTED] 2007-05-22 12:09 ------- This is a known problem. Due to security constraints we had to change the default for JkOption FowardURI*. The new one is safer, but incompatible with mod_rewrite. For the details and the possible options please look at: http://tomcat.apache.org/connectors-doc/reference/apache.html#Forwarding The original security problem is described in http://tomcat.apache.org/security-jk.html (CVE-2007-1860) Some more information is also contained in the 1.2.23 release note on the page http://tomcat.apache.org/connectors-doc/ We are discussing possible solutions, which make safety and mod_rewrite work together, but no decision has been made yet. Regards, Rainer -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
