You are viewing a plain text version of this content. The canonical link for it is here.
Posted to derby-dev@db.apache.org by "Daniel John Debrunner (JIRA)" <ji...@apache.org> on 2007/11/20 19:13:44 UTC
[jira] Reopened: (DERBY-3086) The server policy needs to grant
derbynet.jar more permissions so that sysinfo and drda tracing will work
[ https://issues.apache.org/jira/browse/DERBY-3086?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Daniel John Debrunner reopened DERBY-3086:
------------------------------------------
Two issues:
+grant codeBase "${derby.install.url}derbyclient.jar"
+grant codeBase "${derby.install.url}derbytesting.jar"
1) Policy file modified by this change assumes that derbyTesting.jar lives in the same folder as the other Derby jars, this is not true for a release.
2) The name of the testing jar is derbyTesting.jar, not derbytesting.jar
> The server policy needs to grant derbynet.jar more permissions so that sysinfo and drda tracing will work
> ---------------------------------------------------------------------------------------------------------
>
> Key: DERBY-3086
> URL: https://issues.apache.org/jira/browse/DERBY-3086
> Project: Derby
> Issue Type: Bug
> Components: Security
> Affects Versions: 10.3.1.4
> Reporter: Rick Hillegas
> Assignee: Rick Hillegas
> Attachments: derby-3086-01-morePermissions-aa.diff, derby-3086-01-morePermissions-ab.diff, derby-3086-01-morePermissions-ac.diff
>
>
> More permissions need to be granted to derbynet.jar in the server.policy file. David van Couvering reports that if you bring up the server and run the following command:
> java -jar derbyrun.jar server sysinfo
> then you get security exceptions as the sysinfo code, running inside the network jarball tries to read user.dir, user.home, user.name, java.home, and java.class.path.
> Kathey Marsden reports that if you try to run the network server with drda tracing turned on, then you get security exceptions when the server tries to open the trace log file.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.