If you are using applets to communicate with the web server using
HTTP, then you only have to allow port 80 to be open. If you are using
RMI/IIOP for the applet to communicate with a servlet or a java
application then you will have to allow the RMI/ IIOP ports ( sorry i
dont know the number) to be open on your firewall. This may be a
security threat. since it is a direct connnection into your
application server. you can use signed applets to mitigate the risk
but there will still be a theoritical gateway into your network.
You can tunnel RMI over HTTP, this has an obvious performance hit, but
it will make it through the firewall. You have to invoke a script name
rmi.cgi on the web server to acheive this.
Amit Kaushal
Deloitte & Touche LLP
______________________________ Reply Separator _________________________________
Subject: Java RMI
Author: [EMAIL PROTECTED] at Internet-USA
Date: 4/26/2000 3:16 PM
Has anyone heard any security concerns about Java/Remote Method
Invocation?
TIA,
Eddy Kalem
Phyve, formerly Digital Medical Systems
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
