I'd like to thank everyone for your valuable input.
Season's greetings!
Pulat
Pulat Yunusov wrote:
Is there a list of OJB security vulnerabilities: current and closed? Is
this information regularly collected or posted and where, in this list?
Thank
essage-
From: BURT, RANDALL (CONTRACTOR) [mailto:[EMAIL PROTECTED]
Sent: Wednesday, December 22, 2004 2:25 PM
To: OJB Users List
Subject: RE: Vulnerabilities
Coincidentally and completely by accident, my team found a small vulnerability
today in PBKey. The hashcode is calculated such th
" + this.user + " " +
this.password).hashCode();
}
return hashCode;
}
Sorry for no patch. We can't access OJB CVS from work.
-Original Message-
From: Edson Carlos Ericksson Richter
[mailto:[EMAIL PROTECTED]
Sent: Wednesday, December 22, 2004 5:34 AM
T
x27;t access OJB CVS from work.
> -Original Message-
> From: Edson Carlos Ericksson Richter
> [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, December 22, 2004 5:34 AM
> To: OJB Users List
> Subject: Re: Vulnerabilities
>
>
> One: jdbc-connection in .xml file has database password
]
Sent: 21 December 2004 22:29
To: OJB Users List
Subject: Vulnerabilities
Is there a list of OJB security vulnerabilities: current and closed? Is
this information regularly collected or posted and where, in this list?
Thank you,
Pulat
--
way that OJB
interfaces with the outside world (outside of the App that is), is the
JDBC connection to the database, and here OJB is as secure as the JDBC
driver/database is.
IMO the only class of vulnerabilities that OJB as a library could suffer
from is the buffer overflow stuff, but for one
, no one
can access this.
Daniel.
> -Original Message-
> From: Pulat Yunusov [mailto:[EMAIL PROTECTED]
> Sent: 21 December 2004 22:29
> To: OJB Users List
> Subject: Vulnerabilities
>
>
> Is there a list of OJB security vulnerabilities: current and closed? Is
>
Is there a list of OJB security vulnerabilities: current and closed? Is
this information regularly collected or posted and where, in this list?
Thank you,
Pulat
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands