IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Theory and Practice of Programming Forum / Yes, that what I have in mind now
Post #193,487
by Arkadiy
Picture of Arkadiy
2/7/05 5:53:16 PM
Reply
New Yes, that what I have in mind now
And, while I am at it, chown and chgrp. An may be directory masks. What the hell, I'll just package a shell script in the JAR, and execute it.

I wish I was kiding. :(
--


- I was involuntarily self-promoted into management.

[link|http://kerneltrap.org/node/4484|Richard Stallman]
Post #193,496
by drewk
Picture of drewk
2/7/05 7:26:39 PM
Reply
New Wasn't that
I checked file permissions. This was a Tomcat secrurity policy, designed to protect the JVM from idiot (or malicious) code. The (basically sound) idea is to prohibit all filesystem access, and open it up on a per-file, per-servlet basis. For this devel box, I'm just going to open it to all servlets, because mine will be the only ones on it.

As Ben mentioned above (below?) keeping each JVM isolated in a hosting situation is not feasible. Makes me question how useful the Java security model really is.
===

Purveyor of Doc Hope's [link|http://DocHope.com|fresh-baked dog biscuits and pet treats].
[link|http://DocHope.com|http://DocHope.com]
Post #193,498
by Arkadiy
Picture of Arkadiy
2/7/05 7:42:48 PM
Reply
New You're talking about JVM's access to external files
I am talking about world's access to the files JVM creates. Java has no concept of OS permissons.
--


- I was involuntarily self-promoted into management.

[link|http://kerneltrap.org/node/4484|Richard Stallman]
Post #193,502
by ben_tilly
2/7/05 8:22:19 PM
Reply
New You're only now starting to wonder?
Incidentally security is not an all or nothing pancea. I personally find Java's security model to be far less useful than Perl's taint mode - I'm seldom dealing with untrusted code and often dealing with untrusted data.

And, as I've mentioned before, I'd be curious to see how well a capability-based system would work for some of this. Particularly in a shared hosting environment where it would allow a lot of virtual sandboxing with no effort.

Cheers,
Ben
I have come to believe that idealism without discipline is a quick road to disaster, while discipline without idealism is pointless. -- Aaron Ward (my brother)
     How do I control file access in Java? - (drewk) - (14) - Feb. 6, 2005, 08:27:39 PM EST
         What user is Tomcat running as? - (admin) - (8) - Feb. 6, 2005, 08:31:37 PM EST
             Running as tomcat4 -NT - (drewk) - (7) - Feb. 6, 2005, 08:48:36 PM EST
                 Re: Running as tomcat4 - (admin) - (6) - Feb. 6, 2005, 09:00:42 PM EST
                     I chmod-ed 777 to make sure - (drewk) - (5) - Feb. 6, 2005, 09:06:47 PM EST
                         What is this "policytool" of which you speak? - (admin) - (4) - Feb. 6, 2005, 09:27:13 PM EST
                             Trying now -- cool, seems to work[1] - (drewk) - (3) - Feb. 6, 2005, 09:44:01 PM EST
                                 If it's your server... - (admin) - (2) - Feb. 6, 2005, 09:46:37 PM EST
                                     That's what the java secutiry docs said - (drewk) - (1) - Feb. 7, 2005, 12:41:54 PM EST
                                         If you were doing hosting, you'd go broke - (ben_tilly) - Feb. 7, 2005, 01:14:06 PM EST
         System.exec("chmod " + options + " " + filename)? -NT - (tuberculosis) - (4) - Feb. 7, 2005, 05:45:24 PM EST
             Yes, that what I have in mind now - (Arkadiy) - (3) - Feb. 7, 2005, 05:53:16 PM EST
                 Wasn't that - (drewk) - (2) - Feb. 7, 2005, 07:26:39 PM EST
                     You're talking about JVM's access to external files - (Arkadiy) - Feb. 7, 2005, 07:42:48 PM EST
                     You're only now starting to wonder? - (ben_tilly) - Feb. 7, 2005, 08:22:19 PM EST

Weapon of choice.
162 ms