On 26/03/2012 15:46, Witoslaw Koczewski wrote: >>> Shouldn't there be a switch in Tomcat to turn off this checks? >> >> Why? If you don't want the Security Manager, don't turn it on. > > I don't, WebStart does. Usualy when I turn on a feature in software A, I > don't expect it to affect software B.
You are (or WebStart is) turning the feature on *in the JVM*, not in some arbitrary class running inside the JVM. > Logging for example can be configured separately. It is not comparable. > Does Tomcat use the same Security Manager as WebStart or does it just share > the same switch? It's not Tomcat, it's the JVM. > Is there perhaps a central place in the Tomcat source code where the switch > is evaluated, so I can rename it or hard-code it to "false"? No. The access controls are distributed in the code. p > Best regards, > Witek, > > > --- > http://koczewski.de > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org -- [key:62590808]
signature.asc
Description: OpenPGP digital signature
--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org