https://issues.apache.org/bugzilla/show_bug.cgi?id=46558
Mark Thomas <ma...@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Severity|major |enhancement
--- Comment #1 from Mark Thomas <ma...@apache.org> 2009-01-20 05:24:14 PST ---
I have changed this to an enhancement.
Be aware that this was changed several major versions ago (around Tomcat 3 or
4) to only listen on localhost due to the security issues with listening on
other interfaces.
Any patch would have to address the obvious security concerns.
Also keep in mind that in production environments the port is often set to -1
to completely disable this feature - again for security reasons. The general
push seems to be to tighten this up rather than relax it.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
