Defining a Security Policy

• The simplest security policy you can define is a plain text file with contents:

  grant {
  
  permission java.security.AllPermission “”, “” ;
  } ;

• This policy allows downloaded code to do essentially anything the current user has privileges to do:

  • Read, write and delete arbitrary files; open, read and write to arbitrary Internet sockets; execute arbitrary UNIX/Windows commands on the local machine, etc.

• It is a dangerous policy if there is any chance you may download code from untrustworthy sources (e.g. the Web).

• For now you can use this policy, but please avoid dynamically loading code you cannot trust!

Previous slide

Next slide

Back to first slide

View graphic version