river-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Peter Firmstone (JIRA)" <j...@apache.org>
Subject [jira] Commented: (RIVER-362) Denial of Service during unmarshalling of smart proxy's
Date Wed, 20 Oct 2010 21:06:27 GMT

    [ https://issues.apache.org/jira/browse/RIVER-362?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12923170#action_12923170
] 

Peter Firmstone commented on RIVER-362:
---------------------------------------

In the Module interface, instead of passing ClassLoader instances to the Module, I'd recommend
passing a GuardObject, which contains the ClassLoader, since the permission check for the
RuntimePermission("getClassLoader") may be performed prior to the Module's ProtectionDomain
existing on the call stack.

This would also allow the Module to delegate to other code, that performed the ClassLoading
on it's behalf, if the Module doesn't have sufficient permission to do so itself.

> Denial of Service during unmarshalling of smart proxy's
> -------------------------------------------------------
>
>                 Key: RIVER-362
>                 URL: https://issues.apache.org/jira/browse/RIVER-362
>             Project: River
>          Issue Type: Bug
>         Environment: Untrusted networks
>            Reporter: Peter Firmstone
>         Attachments: river-modules.zip
>
>
> During unmarshalling of smart proxy's there's a period before the proxy has been verified
(authenticated) where deserialization methods are executed on untrusted code, the potential
exists for untrusted code to perform denial of service.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message