Derby
  1. Derby
  2. DERBY-2196

Run standalone network server with security manager by default

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 10.3.1.4
    • Component/s: Network Server
    • Labels:
      None
    • Issue & fix info:
      Release Note Needed
    • Bug behavior facts:
      Security

      Description

      From an e-mail discussion:
      ... Derby should match the security provided by typical client server systems such as DB2, Oracle, etc. I
      think in this case system/database owners are trusting the database
      system to ensure that their system cannot be attacked. So maybe if Derby
      is booted as a standalone server with no security manager involved, it
      should install one with a default security policy. Thus allowing Derby
      to use Java security manager to manage system privileges but not
      requiring everyone to become familiar with them.

      http://mail-archives.apache.org/mod_mbox/db-derby-dev/200612.mbox/%3c4582FE67.7040308@apache.org%3e

      I imagine such a policy would allow any access to databases under derby.system.home and/or user.home.
      By standalone I mean the network server was started though the main() method (command line).

      1. derby-2196-01-print-01.diff
        8 kB
        Rick Hillegas
      2. derby-2196-01-print-02.diff
        8 kB
        Rick Hillegas
      3. derby-2196-01-print-03.diff
        4 kB
        Rick Hillegas
      4. derby-2196-02-install-01.diff
        25 kB
        Rick Hillegas
      5. derby-2196-03-tests-01.diff
        23 kB
        Rick Hillegas
      6. derby-2196-10-renameOption-01.diff
        11 kB
        Rick Hillegas
      7. releaseNote.html
        4 kB
        Rick Hillegas
      8. releaseNote.html
        4 kB
        Rick Hillegas
      9. releaseNote.html
        4 kB
        Rick Hillegas
      10. releaseNote.html
        4 kB
        Rick Hillegas
      11. secureServer.html
        25 kB
        Dag H. Wanvik
      12. secureServer.html
        24 kB
        Dag H. Wanvik
      13. secureServer.html
        23 kB
        Rick Hillegas
      14. secureServer.html
        23 kB
        Rick Hillegas
      15. secureServer.html
        23 kB
        Rick Hillegas
      16. secureServer.html
        23 kB
        Rick Hillegas
      17. secureServer.html
        21 kB
        Rick Hillegas
      18. secureServer.html
        21 kB
        Rick Hillegas
      19. secureServer.html
        18 kB
        Rick Hillegas
      20. secureServer.html
        17 kB
        Rick Hillegas
      21. secureServer.html
        15 kB
        Rick Hillegas
      22. secureServer.html
        14 kB
        Rick Hillegas
      23. secureServer.html
        13 kB
        Rick Hillegas
      24. secureServerReleaseNote.html
        5 kB
        Rick Hillegas

        Issue Links

          Activity

          Daniel John Debrunner created issue -
          Rick Hillegas made changes -
          Field Original Value New Value
          Attachment secureServer.html [ 12349029 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12349460 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12349634 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12350044 ]
          Rick Hillegas made changes -
          Assignee Rick Hillegas [ rhillegas ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12350357 ]
          Rick Hillegas made changes -
          Attachment derby-2196-01-print-01.diff [ 12350359 ]
          Rick Hillegas made changes -
          Attachment derby-2196-01-print-02.diff [ 12350470 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12350493 ]
          Rick Hillegas made changes -
          Attachment derby-2196-01-print-03.diff [ 12350503 ]
          Rick Hillegas made changes -
          Attachment derby-2196-02-install-01.diff [ 12350770 ]
          Rick Hillegas made changes -
          Attachment derby-2196-03-tests-01.diff [ 12351381 ]
          Daniel John Debrunner made changes -
          Link This issue incorporates DERBY-2362 [ DERBY-2362 ]
          Kathey Marsden made changes -
          Derby Info [Existing Application Impact, Release Note Needed]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12351818 ]
          Attachment derby-2196-10-renameOption-01.diff [ 12351817 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12351892 ]
          Rick Hillegas made changes -
          Link This issue incorporates DERBY-2372 [ DERBY-2372 ]
          Rick Hillegas made changes -
          Attachment secureServerReleaseNote.html [ 12352655 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12354245 ]
          Rick Hillegas made changes -
          Attachment releaseNote.html [ 12356929 ]
          Rick Hillegas made changes -
          Derby Info [Release Note Needed, Existing Application Impact] [Existing Application Impact, Release Note Needed]
          Fix Version/s 10.3.0.0 [ 12310800 ]
          Rick Hillegas made changes -
          Attachment releaseNote.html [ 12357293 ]
          Rick Hillegas made changes -
          Status Open [ 1 ] Resolved [ 5 ]
          Resolution Fixed [ 1 ]
          Rick Hillegas made changes -
          Attachment releaseNote.html [ 12358566 ]
          Rick Hillegas made changes -
          Link This issue is related to DERBY-2757 [ DERBY-2757 ]
          Rick Hillegas made changes -
          Attachment releaseNote.html [ 12359109 ]
          Rick Hillegas made changes -
          Link This issue is related to DERBY-2874 [ DERBY-2874 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12360818 ]
          Rick Hillegas made changes -
          Attachment secureServer.html [ 12360819 ]
          Dag H. Wanvik made changes -
          Link This issue relates to DERBY-2963 [ DERBY-2963 ]
          Dag H. Wanvik made changes -
          Attachment secureServer.html [ 12362563 ]
          Dag H. Wanvik made changes -
          Attachment secureServer.html [ 12362564 ]
          Daniel John Debrunner made changes -
          Link This issue is related to DERBY-3248 [ DERBY-3248 ]
          Dag H. Wanvik made changes -
          Derby Categories [Security]
          Dag H. Wanvik made changes -
          Component/s Security [ 11411 ]
          Dag H. Wanvik made changes -
          Issue & fix info [Existing Application Impact, Release Note Needed] [Release Note Needed]
          Kathey Marsden made changes -
          Status Resolved [ 5 ] Closed [ 6 ]
          Gavin made changes -
          Workflow jira [ 12392837 ] Default workflow, editable Closed status [ 12799885 ]

            People

            • Assignee:
              Rick Hillegas
              Reporter:
              Daniel John Debrunner
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development