Thanks everybody for your ideas and responses.
Just to make things clear to everyone, I'm *NOT* storing .java files inside my
web folder. What happens is DWR servlet accepts requests for addresses that
ends with .java extensions, giving the impression that these files exists.
Worst still, autom
Hi Chuck,
In fact I don't have this files in my server. The thing is, whenever I
invke URLs that matches /dwr/anyFile.java, I get a positive DWR answer,
as if I had such files in my server. Whenever I run automated security
test tools like Paros Proxy, many issues regarding these problems are
poin
