Howdy,

>I know this is a little bit out of topic, but the general concept is
useful
>for everybody.

I agree this is useful for everyone. Posting off-topic is fine as long
as you mark it by placing [OFF-TOPIC] at the beginning of the subject
line.

>Note: I DID test using a codebase like:
>
>grant codeBase "file:/home//client/public_html/WEB-
>INF/lib/hibernate2.jar!/-" {
>....
>
>but the classes hibernate creates after reflection stop obeying the
>security manager.

Yeah, that's too bad. The SuppressAccessChecks permission is dangerous,
if malicious code is running inside your VM.

Yoav Shapira



This e-mail, including any attachments, is a confidential business communication, and may contain information that is confidential, proprietary and/or privileged. This e-mail is intended only for the individual(s) to whom it is addressed, and may not be saved, copied, printed, disclosed or used by anyone else. If you are not the(an) intended recipient, please immediately delete this e-mail from your computer system and notify the sender. Thank you.


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)