Uploaded image for project: 'Derby'
  1. Derby
  2. DERBY-4708

In the Administration Guide, clarify that you need to adjust file permissions in your security policy in order to prevent import/export from accessing sensitive files outside your Derby subsystem

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 10.6.1.0
    • Fix Version/s: 10.6.2.1, 10.7.1.1
    • Component/s: Documentation
    • Labels:
      None
    • Bug behavior facts:
      Security

      Description

      Right now the Derby Administration Guide advises users to adjust permissions in their security policy file in order to prevent backup/restore from clobbering and inspecting sensitive files outside the Derby subsystem. This advice can be found in the section titled "Basic Network Server security policy". This section should be clarified to note that you can suffer similar exposure from the export/import procedures and that you need to adjust your security policy for them as well.

      Note that this section does link to another, detailed section, which describes the security policy implications for both backup/restore and export/import: "Customizing the Network Server's security policy".

        Attachments

        1. derby-4708-01-aa-clarification.diff
          2 kB
          Richard N. Hillegas
        2. derby-4708-01-aa-clarification.tar
          20 kB
          Richard N. Hillegas
        3. derby-4708-01-ab-clarification.diff
          2 kB
          Richard N. Hillegas

          Issue Links

            Activity

              People

              • Assignee:
                rhillegas Richard N. Hillegas
                Reporter:
                rhillegas Richard N. Hillegas
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: