Re: [OT] SecurityManager and Java Policy Files

2010-11-10 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 All, I'm resurrecting this thread because I'd like to return my attention to running my webapp under a SecurityManager. On 3/25/2010 4:03 PM, Christopher Schultz wrote: This is off-topic in that it doesn't really have anything to do specifically

Re: [OT] SecurityManager and Java Policy Files

2010-11-10 Thread Mark Thomas
On 10/11/2010 21:15, Christopher Schultz wrote: I'm looking for references that explain the interaction between the SecurityManager itself, the policy, signed code, and the use of AccessController/PrivilegedAction. Online resources and articles as well as dead trees would be fine. My

Re: [OT] SecurityManager and Java Policy Files

2010-11-10 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mark, On 11/10/2010 4:29 PM, Mark Thomas wrote: On 10/11/2010 21:15, Christopher Schultz wrote: Any help would be greatly appreciated. I don't recall ever finding anything that useful. What I can do is condense my limited knowledge into a few

Re: [OT] SecurityManager and Java Policy Files

2010-11-10 Thread Rainer Jung
For debugging purposes, this http://blogs.sun.com/xuelei/entry/fine_granularity_diagnosis_on_security might be useful. And once you succeeded there's always room for improvement, e.g. http://tomcat.apache.org/tomcat-7.0-doc/security-manager-howto.html ;) Regards, Rainer

Re: [OT] SecurityManager and Java Policy Files

2010-11-10 Thread Mark Thomas
On 10/11/2010 21:42, Christopher Schultz wrote: To be explicit, if I want a class (say, DbStuff) to be able to make a database connection yet prevent other classes from doing so, I need to do something like this: public class DbStuff { protected Connection getConnection() {

Re: [OT] SecurityManager and Java Policy Files

2010-03-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Konstantin, On 3/29/2010 7:56 PM, Konstantin Kolinko wrote: 2010/3/25 Christopher Schultz ch...@christopherschultz.net: I will try to be brief in my answers below, so please excuse some apparent harshness. (...) In the Tomcat SecurityManager

Re: [OT] SecurityManager and Java Policy Files

2010-03-29 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Anyone? On 3/25/2010 4:03 PM, Christopher Schultz wrote: All, This is off-topic in that it doesn't really have anything to do specifically with Tomcat, but I would be willing to bet that readers would be interested in the answer. Besides, the

RE: [OT] SecurityManager and Java Policy Files

2010-03-29 Thread Caldarale, Charles R
From: Christopher Schultz [mailto:ch...@christopherschultz.net] Subject: Re: [OT] SecurityManager and Java Policy Files Anyone? Sorry, no time to chase it down. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only

Re: [OT] SecurityManager and Java Policy Files

2010-03-29 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Chuck, On 3/29/2010 10:08 AM, Caldarale, Charles R wrote: From: Christopher Schultz [mailto:ch...@christopherschultz.net] Subject: Re: [OT] SecurityManager and Java Policy Files Anyone? Sorry, no time to chase it down. I was counting on you

RE: [OT] SecurityManager and Java Policy Files

2010-03-29 Thread Caldarale, Charles R
From: Christopher Schultz [mailto:ch...@christopherschultz.net] Subject: Re: [OT] SecurityManager and Java Policy Files I was counting on you, Chuck! ;) I've kept the message, and would like to research it for my own edification. We're about done with a release cycle here, so I'm hoping

RE: [OT] SecurityManager and Java Policy Files

2010-03-29 Thread Terence M. Bandoian
and Java Policy Files From: Caldarale, Charles R chuck.caldar...@unisys.com Date: Mon, 29 Mar 2010 09:08:39 -0500 To: Tomcat Users List users@tomcat.apache.org To: Tomcat Users List users@tomcat.apache.org From: Christopher Schultz [mailto:ch...@christopherschultz.net] Subject: Re: [OT

Re: [OT] SecurityManager and Java Policy Files

2010-03-29 Thread Konstantin Kolinko
2010/3/25 Christopher Schultz ch...@christopherschultz.net: I will try to be brief in my answers below, so please excuse some apparent harshness. (...) In the Tomcat SecurityManager docs (http://tomcat.apache.org/tomcat-6.0-doc/security-manager-howto.html), most of the grants in the policy

[OT] SecurityManager and Java Policy Files

2010-03-25 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 All, This is off-topic in that it doesn't really have anything to do specifically with Tomcat, but I would be willing to bet that readers would be interested in the answer. Besides, the pool of brain cells available to this list is rather deep and