While login to any website by passing username and password then browser will ask to remember or save password, if we click on YES then the credentials will be saved in the plain text format. So it can be easily retrievable. It leads to security issue. To fix it we need to add autocomplete […]
Month: December 2017
Difference between Class.forName() and newInstance() in java
Difference between Class.forName() and newInstance() in java Class.forName() returns the Class-Type for the given name. Means that it will return reference to a class and load the available all static blocks not instance methods. if you are interested only in the static block of the class , the loading the class only would do , […]
What is the difference between Static Block and Constructor placed in a class?
What is the difference between Static Block and Constructor placed in a class? Static Block Static block of a java class executes for only one time when JVM loads the class irrespective of whether object is created for class or not and whether java class is having main method or not. So static block […]
How to encrypt Apache Tomcat Server Admin’s Password
Apache Tomcat Server is most popular open source web server with servlet container. It’s light wight web server and will not required much space in the system. Apache Tomcat server having a lot of of security vulnerabilities and we need to fix those to make secure web server. OWSAP list down critical security vulnerabilities […]
How to Disable Apache Tomcat Server version
How to Disable Apache Tomcat Server version By default, Apache Tomcat server version exposed and leads security issues. There are three approaches to hide the Apache Tomcat server version. In which easy-st way is adding one of the attributes in server.xml In this article, we are working on Apache Tomcat 6.0.0. Tomcat Information in Response […]
After upgrading struts2 to latest version s:submit not working
Due to security vulnerabilities, struts2 needs to be upgraded to latest versions i.e vulnerable free (2.3.32 or 2.5.10.1) which is vulnerabilities free. After upgrading s:submit action button will not work because it is disabled by default due to security vulnerabilities. Example <s:submit align=”center” action=’Login_loginUser’ value=”Login”/> So that to make it as working, we need […]
