has moved to the
site. The new location of the
Tomcat FAQ is now
Tomcat FAQ: Security
This page discusses security issues.
Q: OH NO! PORT 8005 is available for anyone on localhost to shutdown my tomcat!A: See these 2 disussions.
Q: What about Tomcat running as root?A: See these threads:
Q: How to I force all my pages to run under HTTPS?A: Use security-constraint in web.xml.
The original location of this FAQ is located at: http://tomcatfaq.sourceforge.net/ and is hosted by
Last edit date: $Date: 2003/04/06 22:53:23 $ .