https://issues.apache.org/bugzilla/show_bug.cgi?id=50231
--- Comment #4 from Ramon <ra...@echophase.com> 2010-11-08 10:33:21 EST --- I'm sorry if I offended you. I admit don't know enough about how browsers handle HTTP authentication credential to properly assess the CSRF threat. I did not mean to sensationalize the issue. Glad to see that it is addressed in the next version anyway though. My real issue is with the HTML manager interface and usability. It is a really bad experience to accidentally undeploy an application just by refreshing the page without any warning. Will this be addressed in Tomcat 7 too? -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
