[
https://issues.apache.org/jira/browse/GEODE-3923?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16280512#comment-16280512
]
ASF subversion and git services commented on GEODE-3923:
--------------------------------------------------------
Commit 17369d1664c890cc95afebd4ab26b5e2dffcd2f3 in geode's branch
refs/heads/develop from [~bschuchardt]
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=17369d1 ]
GEODE-3923 Provide whitelist/blacklist capability for java serialization
Modifying build to require JDK 1.8.0_121 or later
> Provide whitelist/blacklist capability for java serialization
> -------------------------------------------------------------
>
> Key: GEODE-3923
> URL: https://issues.apache.org/jira/browse/GEODE-3923
> Project: Geode
> Issue Type: New Feature
> Components: docs
> Reporter: Bruce Schuchardt
> Fix For: 1.4.0
>
>
> I would like to be able to restrict what classes of objects Geode will allow
> to be deserialized via Java's ObjectInputStream in clients and servers.
> Something similar to the mechanism recently added to the JRE
> (http://openjdk.java.net/jeps/290) would be pretty cool. Geode would have to
> whitelist its own stuff, of course, so I don't have to deal with it.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
