- enable secret patch.

Changed files:
    ApacheJServ-enable-secret.patch -> 1.1

diff --git a/ApacheJServ-enable-secret.patch b/ApacheJServ-enable-secret.patch
new file mode 100644 (file)
index 0000000..921acf6
--- /dev/null
+++ b/ApacheJServ-enable-secret.patch
@@ -0,0 +1,33 @@
+--- conf/jserv.properties.in   Fri Sep 24 09:22:50 1999
++++ conf/jserv.properties.in.rpm       Wed Sep 29 17:41:36 1999
+@@ -185,7 +185,7 @@
+ # IP address is allowed, everyone on that machine can execute your servlets!
+ # Syntax: security.authentication=[true,false] (boolean)
+ # Default: true
+-security.authentication=false
++security.authentication=true
+ 
+ # Authentication secret key.
+ # The secret key is passed as a file that must be kept secure and must
+@@ -193,7 +193,7 @@
+ # Syntax: security.secretKey=[secret key path and filename] (String)
+ # Default: NONE
+ # Note: if the file could not be opened, try using absolute paths.
+-#security.secretKey=@JSERV_CONF@/jserv.secret.key
++security.secretKey=@JSERV_CONF@/jserv.secret.key
+ 
+ # Length of the randomly generated challenge string (in bytes) used to
+ # authenticate connections. 5 is the lowest possible choice to force a safe
+--- conf/jserv.conf.in Wed Sep 29 08:26:58 1999
++++ conf/jserv.conf.in.rpm     Wed Sep 29 17:41:03 1999
+@@ -63,8 +63,8 @@
+ # Warning: if authentication is DISABLED, everyone on this machine (not just
+ # this module) may connect to your servlet engine and execute servlet 
+ # bypassing web server restrictions. See the documentation for more information
+-#ApJServSecretKey @JSERV_CONF@/jserv.secret.key
+-ApJServSecretKey DISABLED
++#ApJServSecretKey DISABLED
++ApJServSecretKey @JSERV_CONF@/jserv.secret.key
+ 
+ # Mount point for Servlet zones
+ # (see documentation for more information on servlet zones)