• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

java security manager

 
Ranch Hand
Posts: 182
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Read somewhere that a java program(say Try.java) can be run like :
java -Djava.security.manager -Djava.security.policy=someURL Try

Question : can the URL be some http url as well (i.e on the network) ?

Ok, I can code and find out by myself, but the real question is this:
If the answer to the above question is yes, then doesn't that mean that an applet can have any permissions granted in the policy file specified in that url
and have unlimited permissions and can thus be used for malicious purposes?How does java prevent that from happening ?
 
Rancher
Posts: 43081
77
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
JVM parameters are set on the client - the applet has no way of influencing them. So, yes, you can set the JVM to load a security policy from some untrusted host. But an applet can't cause itself to do that.
 
aditee sharma
Ranch Hand
Posts: 182
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Thanks. Can you also tell how to set applet security level in Internet Explorer, if at all it can be controlled ?
Is it the same as Tools --> Security --> Internet --> Custom Level ? I am using IE 6.0 and my guess is that what holds good for Active-X permissions in IE, should be good for Applets as well. No ?
Actually, I would like to create an Applet, render it though IE on my local machine, and then observe its behavior by changing the IE security levels.
 
Ulf Dittmer
Rancher
Posts: 43081
77
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
No, that's a different setting. The options for the JVM can be found in the Java Plugin control panel.
 
aditee sharma
Ranch Hand
Posts: 182
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
And how to access it? I've never seen a java plugin control panel in IE.Or may be its outside IE...
 
Ulf Dittmer
Rancher
Posts: 43081
77
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
It's a Windows control panel.
 
aditee sharma
Ranch Hand
Posts: 182
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Thank you!
 
reply
    Bookmark Topic Watch Topic
  • New Topic