Re: Vulnerabilities

2004-12-23 Thread Pulat Yunusov
I'd like to thank everyone for your valuable input. Season's greetings! Pulat Pulat Yunusov wrote: Is there a list of OJB security vulnerabilities: current and closed? Is this information regularly collected or posted and where, in this list? Thank

RE: Vulnerabilities

2004-12-22 Thread Gelhar, Wallace Joseph
essage- From: BURT, RANDALL (CONTRACTOR) [mailto:[EMAIL PROTECTED] Sent: Wednesday, December 22, 2004 2:25 PM To: OJB Users List Subject: RE: Vulnerabilities Coincidentally and completely by accident, my team found a small vulnerability today in PBKey. The hashcode is calculated such th

Re: Vulnerabilities

2004-12-22 Thread Armin Waibel
" + this.user + " " + this.password).hashCode(); } return hashCode; } Sorry for no patch. We can't access OJB CVS from work. -Original Message- From: Edson Carlos Ericksson Richter [mailto:[EMAIL PROTECTED] Sent: Wednesday, December 22, 2004 5:34 AM T

RE: Vulnerabilities

2004-12-22 Thread BURT, RANDALL \(CONTRACTOR\)
x27;t access OJB CVS from work. > -Original Message- > From: Edson Carlos Ericksson Richter > [mailto:[EMAIL PROTECTED] > Sent: Wednesday, December 22, 2004 5:34 AM > To: OJB Users List > Subject: Re: Vulnerabilities > > > One: jdbc-connection in .xml file has database password

Re: Vulnerabilities

2004-12-22 Thread Edson Carlos Ericksson Richter
] Sent: 21 December 2004 22:29 To: OJB Users List Subject: Vulnerabilities Is there a list of OJB security vulnerabilities: current and closed? Is this information regularly collected or posted and where, in this list? Thank you, Pulat --

Re: Vulnerabilities

2004-12-22 Thread Thomas Dudziak
way that OJB interfaces with the outside world (outside of the App that is), is the JDBC connection to the database, and here OJB is as secure as the JDBC driver/database is. IMO the only class of vulnerabilities that OJB as a library could suffer from is the buffer overflow stuff, but for one

RE: Vulnerabilities

2004-12-22 Thread Daniel Perry
, no one can access this. Daniel. > -Original Message- > From: Pulat Yunusov [mailto:[EMAIL PROTECTED] > Sent: 21 December 2004 22:29 > To: OJB Users List > Subject: Vulnerabilities > > > Is there a list of OJB security vulnerabilities: current and closed? Is >

Vulnerabilities

2004-12-21 Thread Pulat Yunusov
Is there a list of OJB security vulnerabilities: current and closed? Is this information regularly collected or posted and where, in this list? Thank you, Pulat - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands