[Opensource] Addendum to previous post
Michael Rimov
rimovm at centercomp.com
Fri Sep 13 15:08:06 PDT 2002
Quick addendum,
It looks like the fix only works for Tomcat >= 4.04. Tomcat 4.03 seems to
have a Classloader bug that has been fixed from Tomcat 4.04 on.
Since Tomcat 4.04 fixes a rather serious security bug anyway, at this point
I think it would be best to make a note to use Tomcat >= 4.04 If you
cannot upgrade then copy the xml-apis.jar and xercesImpl.jar from
WEB-INF/lib to TOMCAT_HOME/common/lib, and delete the xerces.jar sitting there.
HTH!
-Mike
More information about the Opensource
mailing list