db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Daniel John Debrunner <...@apache.org>
Subject Re: Installing a SecurityManager by default when the server boots
Date Thu, 15 Nov 2007 18:29:26 GMT
Rick Hillegas wrote:
> As of release 10.3, when you boot the network server from the command 
> line, the server installs a Java SecurityManager with a default policy. 
> This change (DERBY-2196) limits the ability of hackers, connecting from 
> arbitrary machines, to use Derby to corrupt the environment in which it 
> is running. 

Interesting survey on unprotected databases on the internet!

http://www.regdeveloper.co.uk/2007/11/15/unprotected_databases_survey/

Dan.

Mime
View raw message