[EMAIL PROTECTED] wrote:
>
> On Fri, 11 May 2001, Craig R. McClanahan wrote:
>
> > > The introspection problem is not very serious - it doesn't work if
> > > sandboxing is enabled ( at least from what I know - if it works then it's
> > > a very serious VM bug ).
> > >
> >
> > It doesn't work if you start Tomcat 4.0 with a security manager. That's
> > what I'm cleaning up, because it's the right long term direction. But
> > we're also going to add facades for those who want to run without a
> > security manager installed.
>
> If the security manager is not used everything has AllPermissions - the
> fact that someone can access the internal objects is quite small compared
> with the fact that it could call System.exit() and read/change any file
> that tomcat has access to.
>
> Anyway: +1 on facades :-)
>
> Costin
Exactly. If you are concerned about security you need to run Tomcat
with -security so that the Java SecurityManager is used. It doesn't
make sense to implement code for container security in Tomcat that doesn't
use the SecurityManager. Why reinvent the wheel?
Regards.
Glenn
----------------------------------------------------------------------
Glenn Nielsen [EMAIL PROTECTED] | /* Spelin donut madder |
MOREnet System Programming | * if iz ina coment. |
Missouri Research and Education Network | */ |
----------------------------------------------------------------------
