Return-Path: Delivered-To: apmail-db-derby-user-archive@www.apache.org Received: (qmail 37470 invoked from network); 6 Nov 2007 13:38:14 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 6 Nov 2007 13:38:14 -0000 Received: (qmail 95123 invoked by uid 500); 6 Nov 2007 13:38:00 -0000 Delivered-To: apmail-db-derby-user-archive@db.apache.org Received: (qmail 95093 invoked by uid 500); 6 Nov 2007 13:38:00 -0000 Mailing-List: contact derby-user-help@db.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: List-Id: Reply-To: "Derby Discussion" Delivered-To: mailing list derby-user@db.apache.org Received: (qmail 95082 invoked by uid 99); 6 Nov 2007 13:38:00 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 06 Nov 2007 05:38:00 -0800 X-ASF-Spam-Status: No, hits=-1.0 required=10.0 tests=RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [192.18.43.132] (HELO sca-es-mail-1.sun.com) (192.18.43.132) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 06 Nov 2007 13:38:31 +0000 Received: from fe-sfbay-09.sun.com ([192.18.43.129]) by sca-es-mail-1.sun.com (8.13.7+Sun/8.12.9) with ESMTP id lA6DbTXW000834 for ; Tue, 6 Nov 2007 05:37:39 -0800 (PST) Received: from conversion-daemon.fe-sfbay-09.sun.com by fe-sfbay-09.sun.com (Sun Java System Messaging Server 6.2-8.04 (built Feb 28 2007)) id <0JR300C0173W1T00@fe-sfbay-09.sun.com> (original mail from Richard.Hillegas@Sun.COM) for derby-user@db.apache.org; Tue, 06 Nov 2007 05:37:29 -0800 (PST) Received: from richard-hillegas-computer.local ([129.150.17.11]) by fe-sfbay-09.sun.com (Sun Java System Messaging Server 6.2-8.04 (built Feb 28 2007)) with ESMTPSA id <0JR30093576GX910@fe-sfbay-09.sun.com> for derby-user@db.apache.org; Tue, 06 Nov 2007 05:37:29 -0800 (PST) Date: Tue, 06 Nov 2007 05:37:48 -0800 From: Rick Hillegas Subject: Re: Server: deny connection to directories outside of known directories In-reply-to: <200711061029.34383.daniel@nuix.com> Sender: Richard.Hillegas@Sun.COM To: Derby Discussion Message-id: <47306E2C.5040204@sun.com> MIME-version: 1.0 Content-type: text/plain; format=flowed; charset=ISO-8859-1 Content-transfer-encoding: 7BIT References: <200711061029.34383.daniel@nuix.com> User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) X-Virus-Checked: Checked by ClamAV on apache.org Daniel Noll wrote: > Hi all. > > Is there some way for the Derby server to allow custom code to determine > whether a directory can be opened for a database? I read something about a > policy file but that doesn't really suit our use case as the list of > directories can be changed by the admin at runtime. > > Daniel > Hi Daniel, In 10.4 we are adding two system privileges, tracked by DERBY-2109. One of these privileges is related to your concern. It is a system privilege which limits database creation to specific locations in the file system. The functional spec attached to DERBY-2109 explains this in greater detail. This feature is being built on top of Java's security mechanism and will be managed by a policy file as you say. If you are interested, you might want to read that functional spec: http://issues.apache.org/jira/secure/attachment/12354506/systemPrivs.html It may provide the foundation for the feature you need. Hope this helps, -Rick