Contradiciting advice in the Java Tutorial.

david.berglund@ac.com
Wed, 10 Jun 1998 17:13:07 +0100

From: david.berglund@ac.com
To: java-security@web1.javasoft.com
Date: Wed, 10 Jun 1998 17:13:07 +0100
Subject: Contradiciting advice in the Java Tutorial.

Hello,

I have been looking for help in your java tutorial and other documents. I
am trying to create a tool
to run in a browser environment with but without a server connection. I
want to be able to run an applet
(loaded from the client) over several browser pages which can read and
write to a file on the client.
The exerpt, below, from your java tutorial indicates that this should be
posssible.

http://java.sun.com/docs/books/tutorial/applet/overview/security.html

<Here are some other things that current browers and other applet viewers
let applets do:

Applets that are loaded from the local file system (from a
directory in the user's CLASSPATH)
have none of the restrictions that applets loaded over the
network do.
Although most applets stop running once you leave their
page, they don't have to. >

However:

1. In your document Frequently Asked Questions - Java
Security(http://java.sun.com/sfaq), point 13 states that,
because browsers use the applet class loader, they are not able to read or
write to files on the client. This seems to contradict
the statement included above. Is there any way round this? Can someone
point me to some more details about this?

2. I can't find any further references how to keep an applet running after
leaving the page. Is there some documentation
about this?

I will be very grateful for any help.

Regards,

David Berglund