I attended the Sun technology day in London on Monday (good day!), but
missed your security track. I would be grateful if you could clear the
following up for me:
Obviously any downloaded applet runs in the sandbox unless signed. However
it appears to me that simply signing class files in the jar file
is NOT enough.
My understanding is that if a Netscape browser is used, then the method
requiring access outside of the sandbox needs to request this from
the Netscape capability classes eg: PrivilegeManager.enablePrivilege().
For Explorer's browser a different set of classes controls access to
local resources and PolicyEngine.assertPermission()
must be issued, and so on .. depending upon the browser used.
Is this approach (different for each browser) really the way an applet
gains access to local system resources (files, etc) ?
I look forward to your comments.
Bob.