| Subject | Re: [Firebird-Architect] External engines - security |
|---|---|
| Author | Jim Starkey |
| Post date | 2007-10-22T13:46:17Z |
Adriano dos Santos Fernandes wrote:
Vlad, what problems were you trying to solve by proposing additional
security requirements for defining external procedures? I'm not arguing
that there aren't problems, but a potential solution must be evaluated
against the problem it is intended to solve.
> Jim Starkey escreveu:Inventing something better might be the right answer, but is premature.
>
>> Everyone understands what it means to add support for external
>> procedures via a plugin or an embedded JVM, but I don't understand why
>> you are concerning yourself with security characteristics of the Java
>> language, classes, or virtual machine.
>>
> Jim, there are many discussion about various things, but more
> controversy IMHO is that Vlad said Java and Delphi/C external procedures
> should have same security privileges for one being able to
> define/declare external procedures.
>
> This is unacceptable IMHO, as Java may be safe and Delphi/C code is not.
>
> Ok, if I can't put a Delphi/C module in the server I can't use it and
> then it's safe.
>
> Our current UDF security (as well our security in general) is very
> limited, let's invent something better.
>
>
Vlad, what problems were you trying to solve by proposing additional
security requirements for defining external procedures? I'm not arguing
that there aren't problems, but a potential solution must be evaluated
against the problem it is intended to solve.