Pivotal Engineering Journal
Technical articles from Pivotal engineers.
Posts By Mark Thomas
May 24, 2016
Java Deserialization, JMX and CVE-2016-3427
If you use remote JMX, you need to update your JVM to address CVE-2016-3427
Pivotal tc Server
Mar 13, 2013
Hanging by a Thread
It is late on a Friday afternoon, and your web application has stopped responding to requests. The server is still reachable, and the Apache Tomcat process is still running–there are no errors in the logs. You want to go home but you can’t until it is fixed. What do you do?
Apr 25, 2011
Session Fixation Protection
An overview of session fixation attacks and how they are prevented in Apache Tomcat.