From: Ivan Ristic <ivanr@we...> - 2006-03-21 16:29:41
> hi list:
> I originally thought that I could secure tomcat by secure the apache
> with modsecurity,which was in the front of it.
> Today I used mod_jk2 to connect apache2 and tomcat5,and filter
> something with modsecurity,but it did not filter anything I wish.
> Maybe I did not know how the mod_jk2 work,anybody could suggest one way
> to filter something for jsp script and Servlet.
Isn't mod_jk2 deprecated? I have successfully used Apache + Tomcat
+ ModSecurity with mod_jk (1.2.x) in the past. I never tried mod_jk2.
Ivan Ristic, Technical Director
Thinking Stone, http://www.thinkingstone.com
ModSecurity: Open source Web Application Firewall
Apache Security (O'Reilly): http://www.apachesecurity.net