Return-Path: 
 <esme-dev-return-896-apmail-incubator-esme-dev-archive=incubator.apache.org@incubator.apache.org>
Delivered-To: apmail-incubator-esme-dev-archive@minotaur.apache.org
Received: (qmail 43916 invoked from network); 6 Jul 2009 08:43:51 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3)
  by minotaur.apache.org with SMTP; 6 Jul 2009 08:43:51 -0000
Received: (qmail 93519 invoked by uid 500); 6 Jul 2009 08:44:02 -0000
Delivered-To: apmail-incubator-esme-dev-archive@incubator.apache.org
Received: (qmail 93474 invoked by uid 500); 6 Jul 2009 08:44:01 -0000
Mailing-List: contact esme-dev-help@incubator.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:esme-dev-help@incubator.apache.org>
List-Unsubscribe: <mailto:esme-dev-unsubscribe@incubator.apache.org>
List-Post: <mailto:esme-dev@incubator.apache.org>
List-Id: <esme-dev.incubator.apache.org>
Reply-To: esme-dev@incubator.apache.org
Delivered-To: mailing list esme-dev@incubator.apache.org
Received: (qmail 93464 invoked by uid 99); 6 Jul 2009 08:44:01 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 06 Jul 2009 08:44:01 +0000
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of hirsch.dick@gmail.com
 designates 209.85.220.207 as permitted sender)
Received: from [209.85.220.207] (HELO mail-fx0-f207.google.com)
 (209.85.220.207)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 06 Jul 2009 08:43:53 +0000
Received: by fxm3 with SMTP id 3so637089fxm.12
        for <esme-dev@incubator.apache.org>;
 Mon, 06 Jul 2009 01:43:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=domainkey-signature:mime-version:received:in-reply-to:references
         :date:message-id:subject:from:to:content-type
         :content-transfer-encoding;
        bh=UtkxQsSyb9M00VZYHBrh7/3eD8AmQgS4DB1UcFYO9G4=;
        b=OY7GnlbOdrd4rHsuk62oDwhgZ0NQsgY97TFOvA1SSVoK9MjL/X9AtEmBWmofocPHMO
         wTY3axhCOEOS0rWfNJGeHBF/dMRETwMhowUpzjxoEngDB7RX8W3HLXT090PTiaY4xE4+
         ZAyxfUauQhP0h+H9qb2oB6PEibIHgjnkab3gg=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=gamma;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type:content-transfer-encoding;
        b=gMkT9eGwq5NxGKpcZv2oTHmiUK0HfpjH5sDYcS0/48tkWSwCYb+372AOl5PMxdGc8I
         7uvuHtyou+fw4VOkzSmaHXVeKl7ZLMPjIMV8aKr9pVcwm7NeCRwNfk3aKJ1YW21T+pcs
         MxQ/icIbOwbMz4sj6GQuKNi/rGh0lrDXiBHvw=
MIME-Version: 1.0
Received: by 10.103.214.13 with SMTP id r13mr2462369muq.37.1246869812523;
 Mon,
	06 Jul 2009 01:43:32 -0700 (PDT)
In-Reply-To: <c7fc82820907060124k7b6ea0e3h3442af1930ae5e7d@mail.gmail.com>
References: <c7fc82820907050545v46debeb7i6d3f49be0be86cae@mail.gmail.com>
	 <cdbebedf0907051306r797084aagb883824167ad47ae@mail.gmail.com>
	 <fa2d9f450907060003w7abf4b36h9faa47010b59bc4b@mail.gmail.com>
	 <c7fc82820907060124k7b6ea0e3h3442af1930ae5e7d@mail.gmail.com>
Date: Mon, 6 Jul 2009 10:43:32 +0200
Message-ID: <fa2d9f450907060143i7d2ce37asf446b75107b65d9f@mail.gmail.com>
Subject: Re: Scala interpreter action
From: Richard Hirsch <hirsch.dick@gmail.com>
To: esme-dev@incubator.apache.org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Virus-Checked: Checked by ClamAV on apache.org

Should I deploy with this functionality active or not?

I just did a stax deplyoment with the actions.scala_interpreter.enable=false

D.

On Mon, Jul 6, 2009 at 10:24 AM, Vassil Dichev<vdichev@apache.org> wrote:
>> Should we remove it completely from the source or should we just
>> deactivate it by default?
>>
>> I agree that I wouldn't activate it in a producticve setting but it
>> might be useful while developing.
>
> Granted, this might not be the best way to monitor/debug ESME (e.g. if
> memory is so tight the JVM won't be able to create a new interpreter
> instance or send a new message). When I implemented the feature I was
> actually thinking of Dick's request for making it easier for ESME
> newcomers to learn Scala. I've also spent some time thinking about
> using ESME in a university and this feature makes a lot of sense in a
> classroom.
>
> My point is, I still think it could be made secure with a careful
> java.policy file (which a conscientious administrator should use
> anyway). David, do you think the Scala interpreter is impossible to
> secure or just not worth the effort? Also, what difference would it
> make to use Rhino, but not Scala in terms of a secure interpreter? The
> Scala interpreter implementation does use a new classloader and even
> allows you to override it and implement your own one. Try e.g. "import
> org.apache.esme.model.Message" or "import net.liftweb.util.Box".
>
> If the primary concern is trust in a federation, we could make it so a
> server is not allowed to participate in a federation if the Scala
> interpreter action is enabled.
>
> Cheers,
> Vassil
>