In my previous entry (“Turn of the Year”), I mentioned that we were working to provide services that would help fill massive gaps in the local IT landscape. If you have engaged with us recently, you probably would already have known about these offerings. In case you haven’t, you might have noticed a button on […]
Continue readingCategory Archives: General Security
Hide Tomcat version from the error message
Having default Tomcat configuration may expose sensitive information, which helps hacker to prepare for an attack the application. This article describes how to remove the version string from Tomcat HTTP error messages without repackaging the catalina.jar. Based on our experience the standard approach is unzip the catalina.jar and remove the version. Note: that all folder […]
Continue reading