Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
10.2.1.6
-
None
Description
The network server security documentation should document security manager permissions needed separate from the example policy file.
The example policy file should separate permissions by jar file.
There should not be examples of starting network server with the -h 0.0.0.0 option without using security manager.
Risks of running outside of security manager and without user authentication should be documented.
Discussion should be included about client encrypted user id password and associated limitations.
The section should mention that there is no data stream encryption with network server.
http://incubator.apache.org/derby/docs/adminguide/tadminnetservrun.html
Attachments
Issue Links
- is related to
-
DERBY-65 Network Server user ID and password encryption requires IBMJCE
- Closed
-
DERBY-2834 The documentation for how to configure the Derby client security mechanism is incomplete and decentralized
- Closed