Yes. Running as chroot would make this not working. Running assp as a user with no priviliges to other resources than it needs would too as long as the system is locked down. Does this not assume that the ASSP service/Daemon is running
> at a security level necessary to traverse folders? > > The resources would be accessed and presented for > view/download by the > > ASSP service/daemon, regardless of the privileges of the > user that is > > logged in. You will find that *MANY* people are running ASSP in an > > elevated security context. > > > > > Peter ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
