Run with a security manager so that the security sensitive code permission checks can be enforced.
Thanks for your reply.
1. So we can stop an Appication user from loading a Jboss system/sensitive class through Loader.loadClass(..),Class.forName(..), Foo.class etc once we turn on security manager ?
2. I am guessing this will be done with java2.policy only and no changes to the loader heirarchy ?