I'll mention that Security-7 (www.security7.com) has a product that
will look through the Java classes or ActiveX controls and allow you
to block things that you don't like. (Thus, you could block all Java
that calls the file io classes.)
Adam
Peter da Silva wrote:
| > Protection from vandal applets is a new technology which is still being
| > defined...any thoughts?
|
| Use the approach in HTML: don't allow the applets the ability to perform
| dangerous acts. If you want to do more, then explicitly download and
| install a plugin. That way you have control and you have to perform an
| explicit install before you're exposed.
|
| The only applet technology I know of that does this is the Tk plugin, which
| actually removes all dangerous commands from the interpreter before running
| the applet, so even if it's hostile it has no access to anything outside the
| sandbox.
|
--
"It is seldom that liberty of any kind is lost all at once."
-Hume
Follow-Ups:
References:
|
|
