Andreas, Is security addressed at all in either the JSR-77 stuff, or in how JMX is used to manage JBoss? In the current JMX HTTP adaptor, port 8082, it is a little dangerous to expose shutdown functionality, for instance. I know in a production system I would disable the HTTP adaptor for this reason. But, we have code that relies on it being there (see org.jboss.Shutdown). We need to have a consistent mechanism to perform such functions that takes security into account. Actually, looking through some code it seems as if you maybe have in mind to use the standard EJB security model, is that right?
Excuse me if I am asking the wrong questions since I'm a newbie here. Jeff Tulley ([EMAIL PROTECTED]) (801)861-5322 Novell, Inc., the leading provider of Net services software. _______________________________________________ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
