Thanks for trying out the new feature, Kathey!
Kathey Marsden wrote:
I don't know if this is a problem or not. The NetworkServer->ping()
operation through jconsole does not work with the
default security manager. The error you see in the network server
console is below. Is this a problem (Should the default
security policy allow the operation)? or is it expected?
Yes, that is a known issue. The required permission was not included in
the default policy, but I guess it could be. I guess it could default to
localhost, so that it would work in some cases at least.
One issue is that due to the somewhat clumsy implementation of the
Network Server, it will try to ping e.g. the host "0.0.0.0" if the
server is listening on all network interfaces (e.g. started with option
-h 0.0.0.0). (This works on the hosts I've tested so far, although it is
discouraged in the Java API docs.) Thus the permission will have to be
set for a wildcard address (*) even if it is only pinging itself on the
loopback interface.
Access denied (java.net.SocketPermission 127.0.0.1:1527 connect,resolve)
java.security.AccessControlException: Access denied
(java.net.SocketPermission 127.0.0.1:1527 connect,resolve)
This permission needs to be added to the policy for codebase
derbynet.jar for ping to work via JMX.
--
John
