recently my jackrabbit(2.8.0) has been scanned by nessue with 2 issue
one is some jsp page has clickjacking (please seejackrabbit webdav use HTTP)
and the other is use http instead of https (please see some jackrabbit's jsp page have cickjacking)
try to google but no luck ( or maybe I use wrong keyword), is these 2 issue can be mitigated or workaround ?
or , can webdav be simply disabled?
General advice: install available updates; you are several years behind the current version.
