Hi Godwin, Then again whom should have permissions to do such changes? I mean we are allowing users to write their own components and extend our products. So in that sense on whom should we rely on to do such changes? Do you mean to say we should have different role for that scenario?
Thanks. On Sat, Feb 14, 2015 at 12:56 PM, Godwin Amila Shrimal <[email protected]> wrote: > Hi Chinthana, > > Well, if its non admin user it's like impossible to deploy an OSGI bundle, > what I thought is, can we totally rely on the admin user in a real mission > critical applications ? > > > Thanks > Godwin > > > On Saturday, February 14, 2015, Chintana Wilamuna <[email protected]> > wrote: > >> How can a non admin user deploy an OSGi bundle? >> >> -Chintana >> >> On Fri, Feb 13, 2015 at 8:09 AM, Godwin Amila Shrimal <[email protected]> >> wrote: >> >>> Hi, >>> >>> Since most of the hacking/fraud happens from the internally this topic >>> just came to my mind, Our carbon products don't have OSGI level security, >>> As an example, If someone internally in the company knows OSGI then can >>> write an OSGI bundle which harm to the system and deploy simply. Shouldn't >>> we consider this ? (Apologize if I am asking a question which is not valid) >>> >>> >>> Thanks >>> Godwin >>> >>> -- >>> *Godwin Amila Shrimal* >>> Senior Software Engineer >>> WSO2 Inc.; http://wso2.com >>> lean.enterprise.middleware >>> >>> mobile: *+94772264165* >>> linkedin: *http://lnkd.in/KUum6D <http://lnkd.in/KUum6D>* >>> twitter: https://twitter.com/godwinamila >>> >>> _______________________________________________ >>> Architecture mailing list >>> [email protected] >>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>> >>> >> >> >> -- >> Chintana Wilamuna >> Solutions Architect >> WSO2, Inc.; http://wso2.com >> lean.enterprise.middleware >> >> phone: +1 408 429 3321 >> blog: http://engwar.com/ >> linkedin: http://www.linkedin.com/in/chintanawilamuna >> twitter: twitter.com/std_err >> > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- Rajith Vitharana Software Engineer, WSO2 Inc. : wso2.com Mobile : +94715883223 Blog : http://lankavitharana.blogspot.com/
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
