Return-Path: 
 <derby-dev-return-111394-apmail-db-derby-dev-archive=db.apache.org@db.apache.org>
X-Original-To: apmail-db-derby-dev-archive@www.apache.org
Delivered-To: apmail-db-derby-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 0129811F62
	for <apmail-db-derby-dev-archive@www.apache.org>;
 Thu,  5 Jun 2014 11:25:02 +0000 (UTC)
Received: (qmail 84844 invoked by uid 500); 5 Jun 2014 11:25:01 -0000
Delivered-To: apmail-db-derby-dev-archive@db.apache.org
Received: (qmail 84810 invoked by uid 500); 5 Jun 2014 11:25:01 -0000
Mailing-List: contact derby-dev-help@db.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:derby-dev-help@db.apache.org>
List-Unsubscribe: <mailto:derby-dev-unsubscribe@db.apache.org>
List-Post: <mailto:derby-dev@db.apache.org>
List-Id: <derby-dev.db.apache.org>
Reply-To: <derby-dev@db.apache.org>
Delivered-To: mailing list derby-dev@db.apache.org
Received: (qmail 84802 invoked by uid 99); 5 Jun 2014 11:25:01 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 05 Jun 2014 11:25:01 +0000
Date: Thu, 5 Jun 2014 11:25:01 +0000 (UTC)
From: "Knut Anders Hatlen (JIRA)" <jira@apache.org>
To: derby-dev@db.apache.org
Message-ID: <JIRA.12718170.1401808684420.75490.1401967501802@arcas>
In-Reply-To: <JIRA.12718170.1401808684420@arcas>
References: <JIRA.12718170.1401808684420@arcas>
Subject: [jira] [Commented] (DERBY-6598) Document permissions
 recommendations for JAR procedures
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/DERBY-6598?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14018688#comment-14018688 ] 

Knut Anders Hatlen commented on DERBY-6598:
-------------------------------------------

Thanks for the patch, Kim. I'd probably not mention it in the REMOVE_JAR topic. At least it shouldn't say that the procedure can be used to install code, since it does the exact opposite. Apart from that, all the changes look good to me.

> Document permissions recommendations for JAR procedures
> -------------------------------------------------------
>
>                 Key: DERBY-6598
>                 URL: https://issues.apache.org/jira/browse/DERBY-6598
>             Project: Derby
>          Issue Type: Bug
>          Components: Documentation
>    Affects Versions: 10.11.0.0
>            Reporter: Kim Haase
>            Assignee: Kim Haase
>         Attachments: DERBY-6598.diff, DERBY-6598.stat, DERBY-6598.zip
>
>
> It's been recommended that we should make the documentation of the SQLJ.INSTALL_JAR procedure (and SQLJ.REPLACE_JAR) state more explicitly that the privilege should only be granted to trusted users. For example:
> "Since this procedure can be used to install arbitrary code that runs in the same Java Virtual Machine as the Derby database engine, the execution privilege should only be granted to trusted users."
> This needs to go into the Reference Manual topics on these procedures as well as other locations where they are discussed.



--
This message was sent by Atlassian JIRA
(v6.2#6252)