"leonardobgil@gmail.com" <leonardobgil@gmail.com> said:
>I have been trying to block the Tomcat directory listing vulnerability
>using Apache's Directory with no success.

At least as a first reaction, <Directory> is not the correct directive
for this: the requests that are forwarded to Tomcat never reach the
"directory space" from Apache point-of-view. <Location> might be
a better guess - but even then it's a question of precedence between
the <Location> entry and whatever you're using to forward requests
to Tomcat (mod_proxy, mod_jk).
--
Wolf a.k.a. Juha Laiho Espoo, Finland
(GC 3.0) GIT d- s+: a C++ ULSH++++$ P++@ L+++ E- W+$@ N++ !K w !O !M V
PS(+) PE Y+ PGP(+) t- 5 !X R !tv b+ !DI D G e+ h---- r+++ y++++
"...cancel my subscription to the resurrection!" (Jim Morrison)