sandbox

Can I trust Java SecurityManager sandbox?

南笙酒味 提交于 2019-12-30 07:20:32
问题 I'm writing a JavaFX2 application that accepts arbitrary code to be loaded from remote locations. For me using a custom SecurityManager, ClassLoader and ProtectionDomain was the way to go. Unfortunately this seems to be the same setup that's used to sandbox applets, which has caused a lot of security exploits and that in turn has persuaded people to fear Java Web Plugin and removing it from their OS entirely. Is Java sandbox a secure environment to run untrusted code onto, or is it just the

Add HTML5 sandbox attribute to an iframe using Javascript

泪湿孤枕 提交于 2019-12-30 07:00:33
问题 I've got an empty iframe and a button: <input type="button" name="B1" value="google" onclick="frames['IFrameName1'].location.href='https://www.google.com/'"> But (besides .location.href) i need to set the attribute sandbox="allow-forms allow-scripts allow-same-origin , because the framed site "deframes". How to set location AND sandbox? 回答1: If you want to do two things on one click event. Have a function do both of those things and fire that function on click. window.onload = function(){ var

How to run java code in a restricted sandbox (without network, filesystem access)

故事扮演 提交于 2019-12-30 03:11:05
问题 Say some programmer gives me an executable jar (from Java code) along with the entry point to use. I want to run this jar (programmatically) from Java code in a restricted sandbox environment with no network or filesystem access or database access and a fixed amount of CPU and memory. I.e., the Java code should not cause any side effects on other programs running on the my jvm. Ideally I would like to allow certain access based on situation (say for example, only files in a certain directory

RSA 2019安全大会:企业资产管理成行业新风向标,云上安全占优势

一个人想着一个人 提交于 2019-12-29 19:57:22
【推荐】2019 Java 开发者跳槽指南.pdf(吐血整理) >>> 美国时间3月4-8日,国际知名信息安全峰会RSA Conference在美国旧金山开幕, 云安全及云可以为企业提供更可靠的资产管理方式成为大会热点。 此次峰会共吸引全球700多家机构参展,其中近42%为云安全和网络安全相关企业,在所有演讲主题中,云安全超过网络安全和数据安全,成为热门关键词第一。作为全球首家也是唯一一家审计报告覆盖所有C5标准基础要求和附加要求的云服务提供商,阿里云也带去了最核心的云安全产品、行业解决方案、云安全生态。 在RSA经典项目、也是安全行业风向标的Innovation Sandbox(创新沙盒)评选中,线下和云端都可提供资产管理服务的初创公司Axonius夺得冠军,大会认为云上可以提供更好的解决方案、更好的创新技术。 对这一新趋势,阿里云也认为, 整个安全行业对资产管理的重视程度正在提高,而云上资产管理能力在整个企业安全构建中将成为基石且优势明显。 据IDC发布的相关数据显示,到2020年,50%的教育和大型企业将考虑使用VR/AR、大屏幕电子白板、智能手环等产品来提升企业的办公效率。随着越来越多的智能设备进入企业网络,企业资产管理的重要性也逐年增加。 只有做好资产的“看见”能力,才能更好地保障数据安全。在传统IT部署方式下,一次企业资产盘点可能需要花上十个小时

MySQL的open_file_limit配置迷雾

僤鯓⒐⒋嵵緔 提交于 2019-12-26 09:46:23
【推荐】2019 Java 开发者跳槽指南.pdf(吐血整理) >>> 导读 : 作者:魏新平,知数堂第5期MySQL实战班学员,第10期MySQL优化班学员,现任职助教。 一、官方解释 mysqld进程能使用的最大文件描述符数量,mysql实际的取值会从下面四个值当中获取最大的。 10 + maxconnections + (tableopen_cache * 2) max_connections * 5 operating system limit if positive if operating system limit is Infinity: open_files_limit value specified at startup, 5000 if none 我们接下来测试让mysql分别取上面四种值为实际的取值。 二、测试mysql版本和系统版本 操作系统版本为CentOS Linux release 7.4.1708 (Core),全新安装,没有任何配置。 mysql版本 Percona-Server-5.7.21-20-Linux.x86_64 接下来开始测试了。 没有配置open_files_limit参数(root用户登陆操作) mysql配置文件如 [mysqld] user = mysql port = 5721 socket = /tmp/mysql

sandboxed web parts inside SharePoint 2010

心不动则不痛 提交于 2019-12-25 04:43:31
问题 Is it possible to develop a web-part in ASP.NET (framework > 2.0), to have a sandbox architecture, and deploy those web parts inside Share Point 2010 and/or MOSS 2007 we donot want to use any SharePoint dll reference with web parts we develop. we refer to the url, section at http://msdn.microsoft.com/en-us/library/ee539417.aspx (section Web Parts in Sandboxed Solutions) 回答1: i referred the following How Tos, hope it helps some one .. http://blah.winsmarts.com/2009-12-SharePoint_2010_Sandboxed

How to find files and folders in MAC volume using App sandboxed application

心已入冬 提交于 2019-12-25 02:53:40
问题 I am creating a sand-boxed application on MAC(10.9).When App Sand-boxed is off then i am able to get files and folders from any path. But when I does App Sand-boxed enabled it's not accessing any files and folders from any path. Getting file and folder from path ("/Volumes/DriveName" or "/" etc.) when App Sand-boxed is off using Qt 5.0 // for folders QStringList folderlist; QDir curDir = QDir(path); curDir.setFilter(QDir::Dirs); QFileInfoList list = curDir.entryInfoList(); for(;<list.size;) {

Paypal IPN Validation - Doesn't work despite success page being reached

北城以北 提交于 2019-12-25 02:21:57
问题 I've been bashing my head against a brick wall the last few days on minor problems. This time I am on the final piece to the puzzle. In my php function of a wordpress cart plugin I have the following: Relevant Function - http://codepad.org/uDm3q9yp Paypal Class - http://codepad.org/friBthoO I manage to go through the purchase fine. If I check on the sandbox account the seller receives the correct email from paypal and money etc. The case "IPN" in the function doesn't seem to work however. No

Is creating SharePoint sandbox field types possible?

送分小仙女□ 提交于 2019-12-25 02:15:31
问题 I want to create custom field type for SharePoint Online. Therefore, AFAIK, it must be sandbox solution. Is there any possibility to create this? Or something that allows me to work on "single item level" on the list (not in edit form but on the list). Maybe some option in item menu or sth? 回答1: you have to remember that SharePoint Sandbox Model doesn't offer custom FieldTypes. There is a really good introduction for Sandboxed SharePoint Solutions on MSDN (http://goo.gl/uXGLo). SPIs like

Write multiple files using OS X sandbox

試著忘記壹切 提交于 2019-12-25 01:16:58
问题 I'm writing an OS X sandboxed application. It recieves @3x and @2x image files and transforms them into lower resolution images. I'm getting the image URLs by either the files being dragged into the app window or a directory being chosen using NSOpenPanel. Once the images are dragged or the folder is selected, I run a for loop and resize each image using this method -(BOOL)writeImage:(NSImage*)image toFile:(NSString*)file withRepresentation:(NSString*)extension{ CGImageRef cgRef = [image
订阅 sandbox