tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Shanti Suresh <sha...@umich.edu>
Subject Re: Policy files
Date Thu, 25 Apr 2013 14:22:51 GMT
Hi Christian,


On Wed, Apr 24, 2013 at 11:25 PM, Christian Beikov <
christian.beikov@gmail.com> wrote:

>
>
> I just don't want to have these applications running on my computer not
> knowing what they actually do. To be honest I couldn't think of any
> permission I would give a student application. The libraries that can be
> used are predefined, so I give these jar files the permissions for
> reflection or whatever they need to work properly.
>
> Am I simplifying the whole thing and is what I want much harder to achive
> than I think?
>
>
>
> Have you considered running Tomcat in a chroot jail?

http://oreilly.com/catalog/tomcat/chapter/ch06.pdf  -> Security Manager +
Chroot combination

A more dated link -
http://radioae6rt.wordpress.com/2006/04/22/chrooting-tomcat/

Thanks.

                    -Shanti

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message