This is the mail archive of the java@gcc.gnu.org mailing list for the Java project.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: JSP Servlet container / WEB server

> >  > I know there are a million ways to secure a webserver, but I kind of
> >  > like the idea of a real JVM being sort of a safety net.

What about standard Un*x practices for securing web servers? Webservers increasingly
run on Linux. Windows deployments rather work with IIS and wouldn't go for this
approach anyway.

> > It's not the jvm that provides this, but the libraries -- there's no
> > reason fully compiled Java can't be just as secure as a conventional
> > VM.

That would require replicating important parts of the OS at the programming
language-level, as done in the JDK. Is that really the way to go?

>From a strategical point of view, GCJ could either develop unique benefits, or else
run after the JDK and end second-place anyway. Developing unique benefits is not even
that difficult, if you think about it. There's quite some stuff you could not write
properly with the JDK, which you can with GCJ. Why not focus on these areas?

You could present this feature as "true and tried Unix-level security" instead of
calling it "not as secure as a conventional VM", which isn't true anyway.
Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]