File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
Win a copy of Clojure in Action this week in the Clojure forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Security with HTTP Tunneling?

Siegfried Heintze
Ranch Hand
Posts: 403
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
"Professional Java Server Programming J2EE Edition" (page 88-89) identifies two options for HTTP tunneling. One option is to use java-rmi.cgi script which (apparently) is a big security loophole in the server.
Are there security problems using servlets as illustrated in Jason Hunter's "Java servlet Programming"? If not, why does he not demo them on his site? You can run all the other examples except is RMI chat program (last I checked a couple of months ago).
I agree. Here's the link:
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic