dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Changed mac_Logo.gif to macadamian.gif. Added forced browsing servlet to the appropriate web.xml files. Enhanced readme files

Browse Source 
git-svn-id: http://webgoat.googlecode.com/svn/trunk@109 4033779f-a91e-0410-96ef-6bf7bf53c507
This commit is contained in:
mayhew64
2007-01-31 15:44:38 +00:00
parent ca46354077
commit e748aa0e90
19 changed files with 95 additions and 39 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
webgoat/main/WAR Installation Instructions.txt
View File

@ -1,14 +1,28 @@
===============================================================
Installing WebGoat WAR file into a Standard Tomcat Installation
Help: Mail List - http://lists.owasp.org/mailman/listinfo/owasp-webgoat
Email - webgoat@g2-inc.com
===============================================================
To do this, you'll need to configure server.xml and tomcat-users.xml a bit. Basically, you'll want to change the port number in server.xml to 80 (or just stick with 8080). WebGoat also has some specific users and roles that it uses which are defined in tomcat-users.xml.
To do this, you'll need to configure server.xml and tomcat-users.xml a bit.
Basically, you'll want to change the port number in server.xml to 80 (or just stick with 8080).
WebGoat also has some specific users and roles that it uses which are defined in tomcat-users.xml.
- Add the following users to tomcat-users.xml in tomcat/conf directory
- Add the following users and roles to tomcat-users.xml in tomcat/conf directory
<?xml version="1.0" encoding="UTF-8"?>
<tomcat-users>
<role rolename="webgoat_basic"/>
<role rolename="webgoat_admin"/>
<role rolename="webgoat_user"/>
<role rolename="tomcat"/>
<user password="webgoat" roles="webgoat_admin" username="webgoat"/>
<user password="basic" roles="webgoat_user,webgoat_basic" username="basic"/>
<user password="tomcat" roles="tomcat" username="tomcat"/>
<user password="guest" roles="webgoat_user" username="guest"/>
</tomcat-users>
<user username="webgoat" password="webgoat" roles="webgoat_admin"/>
<user username="basic" password="basic" roles="webgoat_user,webgoat_basic"/>
<user username="guest" password="guest" roles="webgoat_user"/>
<user username="admin" password="admin" roles="admin,manager"/>
This is explained in the readme.txt file in the root directory.
@ -17,4 +31,5 @@ browse to:
http://localhost/WebGoat-VERSION_NUM/attack
Let us know if you are still having problems at the WebGoat mailing list: http://lists.sourceforge.net/lists/listinfo/owasp-webgoat.
Let us know if you are still having problems at the WebGoat mailing list: http://lists.owasp.org/mailman/listinfo/owasp-webgoat
or by sending email to WebGoat@g2-inc.com