cocoon-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stefano Mazzocchi <stef...@apache.org>
Subject Re: [RT] Cocoon Blocks
Date Thu, 04 Jul 2002 17:42:11 GMT
Gerhard Froehlich wrote:
> 
> Stefano Mazzocchi wrote:
> 
> <skip/>
> 
> > No, not remote code, but packages downloaded from remote locations (like
> > anybody has always been doing!).
> >
> > Think about it: you have apt-get, red-hat rpm updating, ximian
> > red-carpet, FreeBSD ports, Windows Update, Ecplise update manager, JEdit
> > plugins... just to name a few.
> >
> > I don't think nobody will ever mess with a production environment, but
> > during development, one might want to update the blocks used to the
> > latest bugfix releases, or even decide to use another implementation
> > (here is where polymorphism kicks in) of the block used before, because
> > it has, say, better performance or implements new features.
> >
> > Blocks will not only make it easier to deploy stuff on a production
> > environment, but also on development.
> 
> Hmmm do we want to provide some security, like server/client
> certificates to sign the blocks?
> 
> So that it is guaranteed that the blocks come from trusted servers and
> the components are allowed to use the local Cocoon Kernel services
> (Filesystem, Database, ...).
> 
> Just a random thought.

Yes, I thought about it but I was considering this to be an
implementation detail (in fact, the java JAR infrastructure already
allows package signing)

-- 
Stefano Mazzocchi      One must still have chaos in oneself to be
                          able to give birth to a dancing star.
<stefano@apache.org>                             Friedrich Nietzsche
--------------------------------------------------------------------



---------------------------------------------------------------------
To unsubscribe, e-mail: cocoon-dev-unsubscribe@xml.apache.org
For additional commands, email: cocoon-dev-help@xml.apache.org


Mime
View raw message