This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
commit 4d5dd49b2cb38d2fed3cdde3102a0a298cff4d33
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Mon Jan 20 17:12:56 2025 +0000
Add a note about WebDAV
---
webapps/docs/security-howto.xml | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/webapps/docs/security-howto.xml b/webapps/docs/security-howto.xml
index 0955c11bde..b006b99449 100644
--- a/webapps/docs/security-howto.xml
+++ b/webapps/docs/security-howto.xml
@@ -543,6 +543,10 @@
headers it sets unless your application is already setting them. If Tomcat
is accessed via a reverse proxy, then the configuration of this filter
needs
to be co-ordinated with any headers that the reverse proxy sets.</p>
+
+ <p>The WebDAV servlet enables edit functionality for web application
+ content. If the WebDAV servlet is enabled, the WebDAV functionality should
+ be appropriately secured.</p>
</section>
<section name="Embedded Tomcat">
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
