将项目部署到tomcat上后,项目进行漏洞扫描后:提示这个错误:
Apache JServ protocol service
Classification
Base Score: 0.0
- Access Vector: Network
- Access Complexity: Low
- Authentication: None
- Confidentiality Impact: None
- Integrity Impact: None
- Availability Impact: None
CVSS
CWE CWE-16
Affected items Variation
Server 1
问题出在了Tomcat下 ,里面运行着tcp协议(The AJP service is running on TCP port 8009)、config下的server.xml,找到如下代码片段:
将这段代码进行注释!问题应该可以解决!但是具体对tomcat有什么影响,暂时还没有发现