I'm a security nerd / writer rushing to complete an article on Java
Security for a trade mag - article due tomorrow (7/30) - argh.
Anyone have any comments (anoymously or attributed - your choice, of
course) on Java security, the general problem (e.g., executing things that
others treat as data...?) Pointers to war stories? Java security-specific
mailing lists, news groups...(my list keeps getting bigger and bigger ;) )?
Email to me is OK (I'll summarize to the list if desired) - happy to call
or be called if necesary.
Justification for posting here is the promise that I'll post the results of
my research here, or otherwise make it available.
Now, back to our regularly scheduled programming...