tomee-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From exabrial <>
Subject v1.5.0 Security concern
Date Sat, 06 Oct 2012 14:05:14 GMT
In apache-tomee-webprofile-1.5.0/conf/tomcat-users.xml, the following users
are defined:

  <role rolename="tomee-admin"/>
  <user password="tomee" roles="tomee-admin,manager-gui" username="tomee"/>

Wouldn't it be better to have those commented out by default?

View this message in context:
Sent from the OpenEJB User mailing list archive at

View raw message