velocity-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Nathan Bubna" <nbu...@gmail.com>
Subject Re: Results from a security audit
Date Wed, 02 Jul 2008 04:52:17 GMT
If this is a web application, be sure you've read this:

http://wiki.apache.org/velocity/BuildingSecureWebApplications

On Tue, Jul 1, 2008 at 5:21 PM, Tom Jenkins <tomj.devis@gmail.com> wrote:
> Hello all,
> We just had to submit one of our applications to a security audit by a third
> party.  They flagged about 15 velocity classes after running it through
> their black box.  I'm not 100% sure of the validity of some of these flags.
> Is there some place I can discuss the issues?  Or perhaps someone directly?
>
> Thanks
>

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@velocity.apache.org
For additional commands, e-mail: user-help@velocity.apache.org


Mime
View raw message