Tomcat配置不当导致文件泄露

说明：Tomcat由于配置不当会导致tomcat/conf log webapps work temp bin lib等信息暴露在游览器中例如：

http://192.168.89.38:8080/conf/catalina.policy
http://192.168.89.38:8080/conf/catalina.properties
http://192.168.89.38:8080/conf/context.xml
http://192.168.89.38:8080/conf/logging.properties
http://192.168.89.38:8080/conf/server.xml
http://192.168.89.38:8080/conf/tomcat-users.xml
http://192.168.89.38:8080/conf/web.xml

修复方法：

将 /export/servers/tomcat 下的 server.xml

<Host name="localhost" appBase=""  改成  
<Host name="localhost" appBase="webapps"

appBase千万不能为空

修改完后重启生效

Tomcat配置不当导致文件泄露#

Tomcat配置不当导致文件泄露