Skip to main content


Eclipse Community Forums

      Home
Home » Eclipse Projects » Platform - User Assistance (UA) » Jetty for eclipse standalone help system
Jetty for eclipse standalone help system [message #473581] Mon, 21 April 2008 11:36 Go to next message
Eclipse UserFriend
Hello everyone,

recently I read, the stand-alone Version of the Eclipse Help System ain't
using Tomcat anymore.
Instead of Tomcat it is using Equinox HTTP and Jetty now (since 3.3). As
far as I know, Jetty is using the first available port by default (as long
as the variable is set 0).

Are there any known problems by claiming the first available port? (for
example: conflicts with other webservers maybe?) How can I make sure, I
wont inflict any other running applications or webservers by using Jetty
in my standalone help?

Guess the only way doing this is to manually configure a free port on
every new system, where I want to use my application, or do I have other
possibilities?

More over I'd like to ask if anyone knows about articles or literature
about security issues by using Jetty in eclipse standalone Help System.

I am thankful for any advises or experiences.

Best regards,
Marcus
Re: Jetty for eclipse standalone help system [message #473594 is a reply to message #473581] Tue, 29 April 2008 16:43 Go to previous message
Eclipse UserFriend
I don't know of any problems with getting the first available port. As
for the security question the help system consists of a number of
servlets, jsps and JavaScript files and while I'm not aware of anyone
hacking into the help system in order to do malicious things to a server
it's not inconceivable that a determined individual could find, for
example an XSS vulnerability and exploit it, so I would not run an
infocenter on the same server hat was also serving a financial or other
critical application.
Re: Jetty for eclipse standalone help system [message #612035 is a reply to message #473581] Tue, 29 April 2008 16:43 Go to previous message
Eclipse UserFriend
I don't know of any problems with getting the first available port. As
for the security question the help system consists of a number of
servlets, jsps and JavaScript files and while I'm not aware of anyone
hacking into the help system in order to do malicious things to a server
it's not inconceivable that a determined individual could find, for
example an XSS vulnerability and exploit it, so I would not run an
infocenter on the same server hat was also serving a financial or other
critical application.
Previous Topic:Open Help in External-Browser
Next Topic:What's the relationship between the different index.jsp files in org.eclipse.help.webapp?
Goto Forum:
  


Current Time: Sat May 24 18:38:23 EDT 2025

Powered by FUDForum. Page generated in 0.03563 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software

Back to the top

Sign up to our Newsletter

A fresh new issue delivered monthly