Dennis Adams Associates Ltd. ensuring that IT systems are Production-Ready.
 


  << Previous TopicReturn to Index  

Java Remoting is Security Menace

November 23 2002 at 1:43 PM
No score for this post		   (Login DennisAdams)
Forum Owner
From what I have heard, some people are seriously trying to develop Production-ready applications using "Swing" and Java Remoting.
Whilst this may be easy to implement as a developer, it is worth pointing out that there is simply NO SECURITY in the default Java Remoting.
It is left up to the DEVELOPER to define security layers on the default Java Remote Instantiation Protocol.
Put another way, if you create a Java Object which can be instantiated remotely, anybody (I mean anybody) can call this object.
SO... a Live Production Object which creates a multi-million deal could be instantiated by a developer.
That's what I call a security hole.

 

Scoring disabled. You must be logged in to score posts.Respond to this message   
Current Topic - Java Remoting is Security Menace
  << Previous TopicReturn to Index  
Create your own forum at Network54
 Copyright © 1999-2010 Network54. All rights reserved.   Terms of Use   Privacy Statement  

Home Site Map Management Technical Utilities Educational Web Sites Book Reviews News Reviews Register

Dennis Adams Associates
114 Pinner View, Harrow
Middx. UK. HA1 4RL
tel: +44 (0)7753 834 804
email:info@dennisadams.net
http://www.dennisadams.net
(c) Dennis Adams Associates Ltd: 2002