Skip to Main Content
Forums

Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Securing the JASS CONF file

843811Jun 9 2004 — edited Jun 11 2004
Hi,

I have put the JASS conf file as a resource in a signed JAR file. I did this so someone cannot alter this file. I also set the location of the file in the code right before I use it by setting the environment variable java.security.auth.login.config. Can anyone find a hole in this technique? The other option is to set the location as a URL on the web server and set the location of the file by using the environment variable java.security.auth.login.config.

Thanks,

- Bob
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Jul 9 2004
Added on Jun 9 2004
#other-security-apis-tools-and-issues
4 comments
162 views