From commons-user-return-10910-apmail-jakarta-commons-user-archive=jakarta.apache.org@jakarta.apache.org Fri Feb 18 19:52:50 2005 Return-Path: Delivered-To: apmail-jakarta-commons-user-archive@www.apache.org Received: (qmail 62680 invoked from network); 18 Feb 2005 19:52:49 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 18 Feb 2005 19:52:49 -0000 Received: (qmail 57579 invoked by uid 500); 18 Feb 2005 19:52:45 -0000 Delivered-To: apmail-jakarta-commons-user-archive@jakarta.apache.org Received: (qmail 57534 invoked by uid 500); 18 Feb 2005 19:52:45 -0000 Mailing-List: contact commons-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Jakarta Commons Users List" Reply-To: "Jakarta Commons Users List" Delivered-To: mailing list commons-user@jakarta.apache.org Received: (qmail 57519 invoked by uid 99); 18 Feb 2005 19:52:45 -0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=RCVD_BY_IP,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: domain of hrabago@gmail.com designates 64.233.170.205 as permitted sender) Received: from rproxy.gmail.com (HELO rproxy.gmail.com) (64.233.170.205) by apache.org (qpsmtpd/0.28) with ESMTP; Fri, 18 Feb 2005 11:52:43 -0800 Received: by rproxy.gmail.com with SMTP id a41so568683rng for ; Fri, 18 Feb 2005 11:52:36 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding; b=B4FMDtbYEEYbAx66j7ifmNgoiRIQt/SQCNx4pD8FfRl7V0KBtwmnsKCN+pvVroK6nQC6tTi4sLKiZgIU90kA14GkUE281dSrFgbrQKAy9ZqdOFwKOwtFTp9vWrN8/c3m2voMbWW4NhW/+4KkkVeShObPThrdkorSVg9Ksj2ME1M= Received: by 10.38.98.2 with SMTP id v2mr132614rnb; Fri, 18 Feb 2005 11:52:36 -0800 (PST) Received: by 10.38.72.47 with HTTP; Fri, 18 Feb 2005 11:52:36 -0800 (PST) Message-ID: <7b809eef050218115254dbf9ac@mail.gmail.com> Date: Fri, 18 Feb 2005 13:52:36 -0600 From: Hubert Rabago Reply-To: Hubert Rabago To: Jakarta Commons Users List Subject: [Digester] Digester is a security violation when using JNLP? Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N Vic C over at the Struts user list just mentioned something about Digester being tagged as a security violation by JNLP. Is this true? If I sign my jars, will this still be a problem? Hope someone can shed some light. I have an app soon to be deployed, and I'd hate to have to redo all my XML parsing during the weekend because I didn't see how Digester works through a JNLP download. Hubert --------------------------------------------------------------------- To unsubscribe, e-mail: commons-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: commons-user-help@jakarta.apache.org