Hi Christian,
It's good to see someone else working on this. I did look at it myself at
one stage, in a mad ambition to be all 'correct' about it. And after chasing
down the rabbit hole for hours creating a seemingly never-ending list of
permissions, I came to the conclusion that as I've got a firewall and httpd
in between my application server and the nefarious horde, it probably wasn't
worth torturing myself trying to get it completed.
But one thing in your email did strike me...
On 7 April 2010 00:07, Christian Voelker <[email protected]> wrote:
> I found a hint on the web, that it should be possible to put a policy file
> into the WEB-INF directory of a web application which I think would be a
> great solution, but it has to work before.
>
>
It seems really odd that an application server / security manager should
allow you to do that. The whole point is to limit the extent to which a
deployed application can interact with / harm the system, and it's quite a
large hole in the wall if an application can simply say "actually, do you
mind if I just mess around with the system a little".
One thing you might want to try to find out what is going on, is to enable
debugging of the security manager, with the CATALINA_OPTS:
export CATALINA_OPTS=-Djava.security.debug=all (Unix)
set CATALINA_OPTS=-Djava.security.debug=all (Windows)
Good luck!
G
------------------------------------------------------------------------------
Download Intel® Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
http://p.sf.net/sfu/intel-sw-dev
_______________________________________________
DSpace-tech mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dspace-tech
