Clearly describe your web configuration and its computing environment (e.g., web server technology,
programming language, and deployment). Please discuss the vulnerabilities due to the existence of certain
system and/or component flaws on the server-side. (For instance, Tomcat was used as your application server.
You also used Java and Web services, MySQL, and other supports. If your deployment accidentally keeps all
the defaults, you can easily explore the potential security issues.)
If you are not sure, how will you test it out? (No real test as it is illegal to run penetration testing against third
party applications!)
If you could redesign and redeploy the web application, how would you protect your server?