-
1. Re: Webserver for RMI class downloads is exposing configurat
starksm64 Apr 23, 2003 12:24 PM (in response to mefesto78)Its a configuration issue. You need to disable the downloaing of non-ejb classes in the jboss-service.xml file:
8083
<!-- Should resources and non-EJB classes be downloadable -->
false
Before:
common 684>wget http://lamia:8083/login-config.xml
--09:17:36-- http://lamia:8083/login-config.xml
=> `login-config.xml'
Resolving lamia... done.
Connecting to lamia[172.17.66.53]:8083... connected.
HTTP request sent, awaiting response... 200 OK
Length: 5,213 [text/html]
100%[====================================>] 5,213 4.97M/s ETA 00:00
09:17:36 (4.97 MB/s) - `login-config.xml' saved [5213/5213]
After:
common 686>wget http://lamia:8083/login-config.xml
--09:18:33-- http://lamia:8083/login-config.xml
=> `login-config.xml.1'
Resolving lamia... done.
Connecting to lamia[172.17.66.53]:8083... connected.
HTTP request sent, awaiting response... 404 Not Found
09:18:33 ERROR 404: Not Found.