-----------------------------
Please read the FAQ!
<http://java.apache.org/faq/>
-----------------------------
> I work for a mid-sized ISP in the Midwest, and have spear-headed our effort
> to support Java Servlets on our UNIX webhosting service. No problems at all
> with installation or configuration of Apache JServ 1.0/JSP 1.0 under
> Linux/Apache, however I was hoping to get a heads up on possible security
> concerns with a shared JServ and any other tips regarding securing with
> separate zones per VirtualHost. Having a large webhosting clientele, we
> must be completely stabilize our environment before announcing support for
> Apache JServ.
Basicially, rightnow, the only system level security that you have is
through the use of zones. A user can still write a servlet that will
System.exit() the JVM.
We are working to improve this though there are currently no promises or
timeframes. If you would like to help with this effort, the work is being
done on the 1.1 cvs branch.
-jon
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html/>
Problems?: [EMAIL PROTECTED]
