Reputation: 36715
SecurityManager surprises
I wanted to create a very restrictive security manager, so I extended SecurityManager and overridden all the custom checkXXX methods.
But then I found out that my security manager is useless, because anyone can just:
System.setSecurityManager(null);
So I have to add:
@Override public void checkPermission(Permission perm) {
if (perm.getName().equals("setSecurityManager")) {
throw new SecurityException("You shall have no other security manager but me!");
}
}
Are there any more surprises? Any other things I have to do to make my SecurityManager hermetic?
Upvotes: 5
Views: 371
Answers (1)
Reputation: 54806
There are at least a couple of things I can think of:
Someone could use reflection to set the
System.securityfield to accessible, and then set it to whatever they want.Someone could use sun.misc.Unsafe to directly overwrite your instance in memory with whatever random thing they want.
I think your SecurityManager can guard against these things, since they both rely on calls to Field.setAccessible(). But better to test it out to make sure.
Upvotes: 8
Related Questions
- Enable the Java SecurityManager with AllPermission
- java.security.properties - changes not applied
- Java default SecurityManager policy
- Load your own SecurityManager or disable existing
- Policy.setPolicy() doesn't seem to work properly
- Security manager java stop override
- Why does this seemingly equivalent SecurityManager code cause spurious exceptions?
- Setting the Java SecurityManager for one method only
- Using Security manager to prevent public method access
- Java Security Manager - What does it check?