This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 10.1.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
commit dd99f1e359082af9d611960af8d9cf3f9c830f7a
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Mon Jan 20 17:12:56 2025 +0000
Add a note about WebDAV
---
webapps/docs/security-howto.xml | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/webapps/docs/security-howto.xml b/webapps/docs/security-howto.xml
index 82352a69f4..1c2050fe2e 100644
--- a/webapps/docs/security-howto.xml
+++ b/webapps/docs/security-howto.xml
@@ -569,6 +569,10 @@
headers it sets unless your application is already setting them. If Tomcat
is accessed via a reverse proxy, then the configuration of this filter
needs
to be co-ordinated with any headers that the reverse proxy sets.</p>
+
+ <p>The WebDAV servlet enables edit functionality for web application
+ content. If the WebDAV servlet is enabled, the WebDAV functionality should
+ be appropriately secured.</p>
</section>
<section name="Embedded Tomcat">
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
