David Bremmen wrote:Do you think of other security problems that I could have ?
for example only a single "x" in the source code field, and press Run, it stays on "Running" forever (also in IE).
Do you think of other security problems that I could have ?
Running the JVM with a very tight security manager would let you accomplish that, in addition to controlling file access, access to Java system properties etc.
You may want to restrict the user in a more fine-grained way than Unix user privileges allow you to do, for example by preventing network connections (or maybe that's possible these days, I'm not a sys admin). Running the JVM with a very tight security manager would let you accomplish that, in addition to controlling file access, access to Java system properties etc.
If I type in something strange, for example only a single "x" in the source code field, and press Run, it stays on "Running" forever (also in IE).
I like the concept, but the site takes up only half the page (in chrome). I can see a twitter bar (barely) on the side. Cross site CSS needs to be taken care of
I can think of at least 2 (But you might have handled them already). I can mention them here if you are comfortable with that.
But it isn't taking command-line arguments correctly; if I missed out the arguments I got a NumberFormatException for "" whereas I ought to have got an ArrayOutOfBoundsException for args[0] when args was an empty array.
It ought to find an empty args array and throw an ArrayIndexOutOfBoundsException. No change from my last attempt.--- Finished Compilation succesfully ---
--- Starting Execution ---
Exception in thread "main" java.lang.NumberFormatException: For input string: ""
at java.lang.NumberFormatException.forInputString(NumberFormatException.java:48)
at java.lang.Integer.parseInt(Integer.java:470)
at java.lang.Integer.parseInt(Integer.java:499)
at Fibonacci.fib(Fibonacci.java:10)
at Fibonacci.main(Fibonacci.java:5)
--- Finished Execution Normally ---
David Bremmen wrote:Now is using the default configuration. I think I need to read more about this subject to fine grain the security manager. Is there a configuration, different from the default one that you see as an important security flaw ?
Yeah. What he said. Totally. Wait. What? Sorry, I was looking at this tiny ad:
We need your help - Coderanch server fundraiser
https://coderanch.com/wiki/782867/Coderanch-server-fundraiser
|