Return-Path: Delivered-To: apmail-db-derby-dev-archive@www.apache.org Received: (qmail 43896 invoked from network); 13 Jul 2010 19:04:17 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 13 Jul 2010 19:04:17 -0000 Received: (qmail 46933 invoked by uid 500); 13 Jul 2010 19:04:17 -0000 Delivered-To: apmail-db-derby-dev-archive@db.apache.org Received: (qmail 46685 invoked by uid 500); 13 Jul 2010 19:04:16 -0000 Mailing-List: contact derby-dev-help@db.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: Delivered-To: mailing list derby-dev@db.apache.org Received: (qmail 46674 invoked by uid 99); 13 Jul 2010 19:04:16 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 13 Jul 2010 19:04:16 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.22] (HELO thor.apache.org) (140.211.11.22) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 13 Jul 2010 19:04:14 +0000 Received: from thor (localhost [127.0.0.1]) by thor.apache.org (8.13.8+Sun/8.13.8) with ESMTP id o6DJ3qN3024025 for ; Tue, 13 Jul 2010 19:03:52 GMT Message-ID: <26791279.354931279047832797.JavaMail.jira@thor> Date: Tue, 13 Jul 2010 15:03:52 -0400 (EDT) From: "Rick Hillegas (JIRA)" To: derby-dev@db.apache.org Subject: [jira] Closed: (DERBY-4708) In the Administration Guide, clarify that you need to adjust file permissions in your security policy in order to prevent import/export from accessing sensitive files outside your Derby subsystem In-Reply-To: <25297672.13791277216755553.JavaMail.jira@thor> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/DERBY-4708?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Rick Hillegas closed DERBY-4708. -------------------------------- > In the Administration Guide, clarify that you need to adjust file permissions in your security policy in order to prevent import/export from accessing sensitive files outside your Derby subsystem > --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- > > Key: DERBY-4708 > URL: https://issues.apache.org/jira/browse/DERBY-4708 > Project: Derby > Issue Type: Improvement > Components: Documentation > Affects Versions: 10.6.1.0 > Reporter: Rick Hillegas > Assignee: Rick Hillegas > Attachments: derby-4708-01-aa-clarification.diff, derby-4708-01-aa-clarification.tar, derby-4708-01-ab-clarification.diff > > > Right now the Derby Administration Guide advises users to adjust permissions in their security policy file in order to prevent backup/restore from clobbering and inspecting sensitive files outside the Derby subsystem. This advice can be found in the section titled "Basic Network Server security policy". This section should be clarified to note that you can suffer similar exposure from the export/import procedures and that you need to adjust your security policy for them as well. > Note that this section does link to another, detailed section, which describes the security policy implications for both backup/restore and export/import: "Customizing the Network Server's security policy". -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.