-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Karsten,
On 3/22/17 8:08 AM, Schöke, Karsten wrote:
> if a tool exists, that parse one or more tomcat security policy
> files, that are validate? I will use that in a continues
> integration environment, for policy file deployme
Hi @all,
if a tool exists, that parse one or more tomcat security policy files, that are
validate?
I will use that in a continues integration environment, for policy file
deployment
and to guarantee that the tomcat starts with new policy files...
Regards
Karsten
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Christian,
On 4/24/13 11:25 PM, Christian Beikov wrote:
> Well I understand that there is only one SecurityManager per JVM,
> but as you mentioned I can restrict actions for specific CodeBases.
> This is what I am actually trying to do. I want the s
Hi Christian,
On Wed, Apr 24, 2013 at 11:25 PM, Christian Beikov <
christian.bei...@gmail.com> wrote:
>
>
> I just don't want to have these applications running on my computer not
> knowing what they actually do. To be honest I couldn't think of any
> permission I would give a student applicatio
Well I understand that there is only one SecurityManager per JVM, but as
you mentioned I can restrict actions for specific CodeBases. This is
what I am actually trying to do. I want the student web applications to
have only a hand full of permissions defined in a policy file. I think I
explaine
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Christian,
On 4/24/13 1:51 PM, Christian Beikov wrote:
> Yes we are talking about security manager policies.
Good :)
There's a lot about Spring that I don't know about, so I was just
checking that you weren't talking about some crazy IoC thing or
Yes we are talking about security manager policies.
So there is no possibility to just push the policy file to the
WebappClassLoader? As stated in the reply to Matrin Gainty there do
exist methods to restrict the webapp, but unfortunately no method for
supplying a policy file.
So this means
se projects and deploy the artifacts to my
embedded tomcat.
The problem is when it comes to the policy files. Where do I need to add
the path to the policy file for the base maven projects of the students?
Is there any option in context.xml or so that I can use?
The second problem is tha
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Christian,
On 4/24/13 2:29 AM, Christian Beikov wrote:
> I am using tomcat as an embedded container for a while now, it is
> really amazing, but now I got stuck on a topic. I am implementing a
> testsuite for automatic testing of uploaded solutions
Hello there!
I am using tomcat as an embedded container for a while now, it is really
amazing, but now I got stuck on a topic.
I am implementing a testsuite for automatic testing of uploaded
solutions by students. The deployment works like a charm, I also found
your StuckThreadDetectionValve v
On 10/11/2010 21:42, Christopher Schultz wrote:
> To be explicit, if I want a class (say, DbStuff) to be able to make a
> database connection yet prevent other classes from doing so, I need to
> do something like this:
>
> public class DbStuff
> {
> protected Connection getConnection()
> {
>
For debugging purposes, this
http://blogs.sun.com/xuelei/entry/fine_granularity_diagnosis_on_security
might be useful. And once you succeeded there's always room for
improvement, e.g.
http://tomcat.apache.org/tomcat-7.0-doc/security-manager-howto.html ;)
Regards,
Rainer
---
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark,
On 11/10/2010 4:29 PM, Mark Thomas wrote:
> On 10/11/2010 21:15, Christopher Schultz wrote:
>> Any help would be greatly appreciated.
>
> I don't recall ever finding anything that useful. What I can do is
> condense my limited knowledge into a
On 10/11/2010 21:15, Christopher Schultz wrote:
> I'm looking for references that explain the interaction between the
> SecurityManager itself, the policy, signed code, and the use of
> AccessController/PrivilegedAction.
>
> Online resources and articles as well as dead trees would be fine. My
> G
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All,
I'm resurrecting this thread because I'd like to return my attention to
running my webapp under a SecurityManager.
On 3/25/2010 4:03 PM, Christopher Schultz wrote:
> This is off-topic in that it doesn't really have anything to do
> specifically
on was this: is the immediate caller before the
AcessController.doPrivileged() the one checked, or is the /entire call
chain/ checked recursively? The small amount of evidence I've collected
leads me to that conclusion, and I'd like to be sure so that I can write
policy files without com
2010/3/25 Christopher Schultz :
I will try to be brief in my answers below, so please excuse some
apparent harshness.
>(...)
> In the Tomcat SecurityManager docs
> (http://tomcat.apache.org/tomcat-6.0-doc/security-manager-howto.html),
> most of the "grants" in the policy file do not have a codeBa
anager and Java Policy Files
From:
"Caldarale, Charles R"
Date:
Mon, 29 Mar 2010 09:08:39 -0500
To:
Tomcat Users List
To:
Tomcat Users List
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Subject: Re: [OT] SecurityManager and Java
> From: Christopher Schultz [mailto:ch...@christopherschultz.net]
> Subject: Re: [OT] SecurityManager and Java Policy Files
>
> I was counting on you, Chuck! ;)
I've kept the message, and would like to research it for my own edification.
We're about done with a rele
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chuck,
On 3/29/2010 10:08 AM, Caldarale, Charles R wrote:
>> From: Christopher Schultz [mailto:ch...@christopherschultz.net]
>> Subject: Re: [OT] SecurityManager and Java Policy Files
>>
>> Anyone?
>
> Sorry, no
> From: Christopher Schultz [mailto:ch...@christopherschultz.net]
> Subject: Re: [OT] SecurityManager and Java Policy Files
>
> Anyone?
Sorry, no time to chase it down.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Anyone?
On 3/25/2010 4:03 PM, Christopher Schultz wrote:
> All,
>
> This is off-topic in that it doesn't really have anything to do
> specifically with Tomcat, but I would be willing to bet that readers
> would be interested in the answer. Besides, t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All,
This is off-topic in that it doesn't really have anything to do
specifically with Tomcat, but I would be willing to bet that readers
would be interested in the answer. Besides, the pool of brain cells
available to this list is rather deep and I'd
23 matches
Mail list logo
