[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Calling other code in Java applications and applets

To: [email protected]
Subject: Re: Calling other code in Java applications and applets
From: [email protected] (Martin Minow)
Date: Sat, 4 May 1996 10:35:03 -0700
Cc: [email protected] (Marianne Mueller)
Sender: [email protected]

Marianne Mueller ([email protected]) writes that

>
>people need to be aware up front
>that calling native code from a Java applet disables
>any security that might otherwise be enforced for the applet.
>

Would it be more accurate to state that native code called by a
Java applet disables Java virtual machine security, but is still
bound by security policies enforced by the operating system itself?

It would be most unfortunate if a browser run by an unprivileged
user could attain "root" privileges by running a Java applet that
called an appropriate (or inappropriate) native method.

Of course, on inherently unprotected systems (PC's), there is
indeed no protection.  Perhaps Java will cause vendors to improve
overall operating system robustness.

Martin Minow
[email protected]

Follow-Ups:
- Re: Calling other code in Java applications and applets
  - From: [email protected] (Marianne Mueller)

Prev by Date: NOISE.SYS v0.5.5 (Beta)
Next by Date: Re: CryptoAnarchy: What's wrong with this picture?
Prev by thread: Re: Calling other code in Java applications and applets
Next by thread: Re: Calling other code in Java applications and applets
Index(es):
- Date
- Thread