On Wed, 23 Aug 1995, Daniel W. Woycke wrote:
> >Does anyone have any experience with Sun's Java in tunneling it through
> >a firewall and making sure their aplets are secure? I was just approached
> >with maybe having to support it and I need to know what I am being pushed
> I have been thinking about this problem a while. Hot Java uses straight
> HTTP to download the applets (as far as I can tell). This means that if
> you have an HTTP proxy your users could be using Hot Java right now, and
> you wouldn't know it.
Well, I am looking at the server, not the Hot Java browser. There is
the desire to have output formatted a certain way, not relying on the
browsers to do it and these folks seem to feel the Java server with the
Hot Java browsers are the way to go. Sigh... if things were ever
> The only way I can see to make applets secure is to not allow them. So far
> I can only come up with a solution involving content filtering. Filter
> everything between the "<app class" and the ">" in each html packet that
> comes by. Very time consuming. This is a tricky issue.
This idea of executable code being embedded in a file that comes from
a remote, untrusted site bothers me. Yes, I know Sun has allegedly thought
of security and such. But it is still makes me wonder if the mailer can
be invoked to email the password file back to the applet writer or if
these applets can be used to attack the server.
scott barman DISCLAIMER: I speak to anyone who will listen,
com and I speak only for myself.
"Micro$oft and Windoze/NT will be the cause of the de-evolution of
network security just as the original PC and BASIC was the cause of
the de-evolution of programming."