RE: Bypassing security manager checks (was: Re: Infinite loop)

classpath

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Bypassing security manager checks (was: Re: Infinite loop)

From:	Jeroen Frijters
Subject:	RE: Bypassing security manager checks (was: Re: Infinite loop)
Date:	Thu, 17 Nov 2005 14:35:05 +0100

Andrew Haley wrote:
> Gary Benson writes:
>  > Michael Koch wrote:
>  > > On Wed, Nov 16, 2005 at 11:56:37AM +0000, Gary Benson wrote:
>  > > > If your security policy denies read access to that 
> system property
>  > > 
>  > > The solution is to use 
> gnu.classpath.SystemProperties.getProperty(...).
>  > > This does no security check. It is exactly for such issues.
>  > 
>  > Out of interest, what stops user code from calling such things?
>  
> Nothing.  That's one of the bugs on the list.

That's not exactly true. The system class loader does enforce that user
code cannot access classes in protected packages. It's just that we
don't have the proper security configuration files in place to define
the protected packages yet.

Regards,
Jeroen

[Prev in Thread]

Current Thread

[Next in Thread]

RE: Bypassing security manager checks (was: Re: Infinite loop), Jeroen Frijters <=
- Re: Bypassing security manager checks (was: Re: Infinite loop), Gary Benson, 2005/11/17
  - Re: Bypassing security manager checks (was: Re: Infinite loop), Mark Wielaard, 2005/11/17
    - Re: Bypassing security manager checks (was: Re: Infinite loop), Gary Benson, 2005/11/17
- RE: Bypassing security manager checks (was: Re: Infinite loop), Jeroen Frijters, 2005/11/17

Prev by Date: Re: Bypassing security manager checks (was: Re: Infinite loop)
Next by Date: Re: Bypassing security manager checks (was: Re: Infinite loop)
Previous by thread: Re: [cp-patches] Patch: JSplitPane patch fixes PR 24904
Next by thread: Re: Bypassing security manager checks (was: Re: Infinite loop)
Index(es):
- Date
- Thread