You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by jf...@apache.org on 2002/10/11 18:08:59 UTC
cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/loader StandardClassLoader.java
jfarcand 2002/10/11 09:08:59
Modified: catalina/src/share/org/apache/catalina/loader
StandardClassLoader.java
Log:
Security Audit. Protect some security sensible method. Actually, those methods are not used by any clas. Should I remove them or some special classloader extension needs them?
Those method are not accessibles to web app since they are protected by the package.access property.
Revision Changes Path
1.4 +6 -6 jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/loader/StandardClassLoader.java
Index: StandardClassLoader.java
===================================================================
RCS file: /home/cvs/jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/loader/StandardClassLoader.java,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- StandardClassLoader.java 24 Aug 2002 02:27:27 -0000 1.3
+++ StandardClassLoader.java 11 Oct 2002 16:08:59 -0000 1.4
@@ -368,7 +368,7 @@
*
* @param path file directory path
*/
- public void setPermissions(String path) {
+ protected void setPermissions(String path) {
if( securityManager != null ) {
if( path.startsWith("jndi:") || path.startsWith("jar:jndi:") ) {
permissionList.add(new JndiPermission(path + "*"));
@@ -385,7 +385,7 @@
*
* @param url URL for a file or directory on local system
*/
- public void setPermissions(URL url) {
+ protected void setPermissions(URL url) {
setPermissions(url.toString());
}
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>