JBoss needs to do file access, we should be doing it in
doPrivileged blocks so you can allow the jboss code
to do its work, but not others.
It is a known issue.
If I want all the deployment(EARs, WARs, JARs(ejb)) not have File Access Permission(Delete, Modify, Rename, only allow READ), how can I do ?