db-derby-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Paul Nichols" <paul.nich...@celebrus.com>
Subject What is wrong with the BUILTIN authentication mechanism?
Date Mon, 17 Oct 2011 12:56:29 GMT
The documentation is still (in 10.8) glossed with warnings against
production use of the BUILTIN authentication mechanism, can anyone tell me
what is wrong with it? The only reference to any problems I can find is
CVE-2009-4269 (DERBY-4483) which was fixed in 10.6.1.0 so is there any
reason to not use it now?

Thanks,

Paul.


Mime
View raw message