[MUD-Dev] Re: Scripting Design Notes
Chris Gray
cg at ami-cg.GraySage.Edmonton.AB.CA
Mon Jul 20 00:11:15 CEST 1998
[Vadim Tkachenko:]
>> However, you are still vulnerable.
>
>Can you please elaborate on that?
I'm not as up on Java as you are, so I could easily be wrong. What I
was thinking about was using the ClassLoader stuff. However, if a
security manager prevents that, perhaps you'd be OK - I don't know
enough to say.
[Side note: even Java 1.2 has a security hole with Applets run under
the latest Netscape (but not Internet Explorer or HotJava). It's a
ClassLoader attack. See the comp.risks newsgroup for pointers (I don't
claim to understand it!)]
More information about the mud-dev-archive
mailing list