Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-11634

Directory listing enabled on Tomcat

    XMLWordPrintable

Details

    Description

      Tomcat has directory listing enabled by default. This allows browsing directories (such as /images/). It seems that the filters do not take action in preventing the unauthorized access.

      When directory listing is disabled (/conf/web.xml in Tomcat directory) Jira gives 404 errors.

      See JSP-8129

      Attachments

        Activity

          People

            dushan@atlassian.com Dushan Hanuska [Atlassian]
            dushan@atlassian.com Dushan Hanuska [Atlassian]
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - 1h
                1h
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 1h
                1h