I am working on a program that requires high security and I was wondering if there is any way a hacker can attack my servlets and what can be done to protect them. Example: If someone did a view source on one of my jsp pages and saw:
What could potentially be done with this information and how can I protect myservlet? Thanks in advance, E.E.
Joined: Jan 04, 2002
Hi Ezra, not really servlet answer... but for starters disable the ability to view source by doing this in your body tag
That hardly makes anything more secure (you'd need to start trapping all possible key mapping for view source for all browsers), it'll just annoy your visitors. What are your particular security concerns? Do you have an authenticated site where every page should check for appropriate login? bear
I am just concerned about hackers somehow crashing the servlet. Maybe doing something like /servlet/myServlet?value=lots-of-junk-data. I am not a hacker so I am not sure what types of attacks a JSP/Servlet system is open to.