directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Berin Loritsch <blorit...@d-haven.org>
Subject Java Security Model Concerns
Date Mon, 13 Sep 2004 17:16:09 GMT
Just decided to pass some info on so that when you test EVE or any of
the other things here with a security manager installed it might smooth
out a few bumps.  First, a recent discovery with BCEL generated proxies
is that they will fail if you do not set the ProtectionDomain on the
generated class to the same thing as the class being proxied.  That
discovery was by Leif Mortenson who found that out for Excalibur
Fortress.

Second, the minimum grants necessary to run anything in IDEA with the
security manager enabled are these:

// permissions for running inside IDEA
permission java.util.PropertyPermission "idea.launcher.library", "read";
permission java.util.PropertyPermission "idea.launcher.port", "read";
permission java.lang.RuntimePermission 
"loadLibrary.${idea.launcher.library}";

// permissions for running with Clover
permission java.io.FilePermission "${clover.db}", "read,write";

Anything beyond this are specific to the application you are running.

-- 

"Programming today is a race between software engineers striving to 
build bigger and better idiot-proof programs, and the Universe trying to 
produce bigger and better idiots. So far, the Universe is winning."
                 - Rich Cook

Mime
View raw message