Guys.
I'm doing this. It just takes one line of code to get your security back....
Just put your non-secured files somewhere under directory /MyPublicServerRoot..or
something like that....
if (FileName.indexOf("/MyPublicServerRoot/") ==-1)
{
...then return Aunthorized Access Error.
}
So if the access is not trying to pull off somewhere in your server's public stuff it
is restricted.
-Clay Ferguson
-----Original Message-----
From: Bob Withers [SMTP:[EMAIL PROTECTED]]
Sent: Monday, March 01, 1999 3:37 PM
To: [EMAIL PROTECTED]
Subject: Re: how to make applet communicate with servlet started by
servletrunner
At 11:35 AM 3/1/99 -0800, you wrote:
>It is easy to add file handling, but be aware you've just stripped
>your site of all security. That's why file handling was removed
>in the first place.
>
>Rod McChesney, Korobra Corporation
Of course you're right Rod, but I'm certainly not running my site with
servletrunner. I run it on my workstation and it's only running while I'm
testing. It seems an acceptable risk to me.
Regards,
Bob
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
