-
1. Re: server.policy question
starksm64 Jan 28, 2006 9:44 PM (in response to evsrao)The server.policy is an obsolete and unused file unless you specifically refer to it in your security manger configuration of the jvm.
-
2. Re: server.policy question
evsrao Jan 29, 2006 2:02 PM (in response to evsrao)Could you please elaborate how JBoss works with security manager? or no need to use security.policy at all? What is the recommend approach followed in production deployments? I see that this is somewhat different compared to other application servers.
Thanks much. -
4. Re: server.policy question
spambob Jul 3, 2007 3:01 PM (in response to evsrao)Instead of confusing J2EE security with the Java Security Manager (as anil did), or making up completely nonsense comments(like scott did), maybe JBoss should write a sensible server.policy that could be used in the real world where you want to use the Java 2 Security Model to restrict things like which Sockets can be opened, which classes can be loaded by which other classes...
If you don't know how to do it, you can read about it on Weblogic documentation
http://edocs.bea.com/wls/docs81/security/server_prot.html#1032249