The page of migration to "tomcat 8" says (http://tomcat.apache.org/migration-8.html):
"When starting Tomcat with the jpda option to enable remote debugging, Tomcat 8 listens on localhost:8000 by default. Earlier versions listened on *:8000"
1.what is the actual different between those configuration?
Thanks, Eyal
I have filed that issue to change that to Tomcat 8. For a very good reason: If you provide *:8080
, everyone who is on your network is able to hook into your VM and debug and maybe disclose sensitive data, moreover periodical Nessus scan in my company and others report that as a vulnerability. All you need to do is set the environment variable JPDA_ADDRESS
to IP:PORT
, ideally in your setenv.sh
.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With