axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 20243] - axis complains about exceptions in javax.http
Date Fri, 30 May 2003 22:27:49 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=20243>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=20243

axis complains about exceptions in javax.http

stevel@apache.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
         Resolution|FIXED                       |



------- Additional Comments From stevel@apache.org  2003-05-30 22:27 -------
I want to reopen this as a reminder that we do need to fix it, because granting
all permissions to stuff in lib is, well, the kind of access that you want java
security to catch.

Maybe we need a more generic feature req, that of 'have axis run happily in a
locked down environment', which includes things like
 -save webinf and attachments in the right per-webapp temp dir
 -document (in security.html) what controls often make sense

Mime
View raw message