Details
-
Bug
-
Status: Open
-
Major
-
Resolution: Unresolved
-
10.3.1.4, 10.4.1.3
-
None
-
Normal
-
Newcomer
-
Security
Description
DERBY-2811 changed the use of
permission java.net.SocketPermission "${derby.drda.host}:*", "accept";
to
permission java.net.SocketPermission "${derby.security.host}:*", "accept";
I think this is correct for the default policy file used by the network server, but incorrect for the user template file.
I think rather than exposing this "internal property" derby.security.host, the template should continue to use ${derby.drda.host}
and include comments about needing to change it if the server is listening on a wildcard address. Currently there's no explanation of where derby.security.host comes from.