david.neuer at Fiserv.com
Thu Nov 6 16:11:03 EST 2008
Is anyone successfully using SafeHTTPFilter?
With the default ESAPI.properties, it fails rather dramatically since it
wants to cleanse the servlet path, but there's no regex named
Validator.HTTPServletPath, so it tries to use the string
"HTTPServletPath" (needless to say, we don't have such a path in our
Is there an example somewhere of what this should be set to, or have
people just copied Validator.URL's value (or Validator.HTTPURI from the
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-ESAPI