[5086] in java-interest
Re: Netscape security => lame applets
daemon@ATHENA.MIT.EDU (James Waldrop)
Sun Jan 28 18:45:15 1996
To: Cay Horstmann <horstman@jupiter.SJSU.EDU>
cc: "'Gary Cornell'" <75720.1524@compuserve.com>,
"'java-interest@java.sun.com'" <java-interest@java.sun.com>
In-reply-to: Your message of "Sat, 27 Jan 1996 10:51:05 PST."
<01BAECA5.66101940@mg131-038.ricochet.net>
Date: Sun, 28 Jan 1996 14:16:58 -0800
From: James Waldrop <sulam@construct.net>
Cay Horstmann wrote:
>The TOTAL IDIOCY here is that the ambient browser can read all that data,
>but your applet can't.
Actually, this is far from total idiocy. Imagine that you are a user
inside a corporate firewall, downloading web pages as is many people's
wont. Imagine that you grab a page with a Java applet. Imagine that
this Java applet could connect to anything your host could. Suddenly
you've exposed your entire site with this one feature. Yes, this is
far from total idiocy.
The solution to your problem is a packet laundry. Write a simple
program, in Java, Perl, or even C, that connects to a socket on the
host machine and launders requests to other hosts. This is fairly
easy to do, and solves your problem, while still keeping people's
networks secure.
James
--
James Waldrop / Technical Director
sulam@construct.net / Construct Internet Design
sulam@well.com / http://www.construct.net
-
This message was sent to the java-interest mailing list
Info: send 'help' to java-interest-request@java.sun.com
