[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[debian-users:37883] Re: webからJDBC接続する方法

From: Takashi Okamoto <toraneko@xxxxxxxxx>
Subject: [debian-users:37883] Re: webからJDBC接続する方法
Date: Wed, 30 Jul 2003 23:08:48 +0900
List-help: <mailto:debian-users-ctl@debian.or.jp?body=help>
List-id: debian-users.debian.or.jp
List-owner: <mailto:debian-users-admin@debian.or.jp>
List-post: <mailto:debian-users@debian.or.jp>
List-software: fml [fml 4.0.3 release (20011202/4.0.3)]
List-unsubscribe: <mailto:debian-users-ctl@debian.or.jp?body=unsubscribe>
X-fingerprint: 8B37 1FE6 76B2 7BA6 D59A 9BF7 E7F4 46C8 5293 6E17
X-gpg-key: http://db.debian.org/fetchkey.cgi?fingerprint=8B371FE676B27BA6D59A9BF7E7F446C852936E17
X-ml-info: If you have a question, send e-mail with the body "help" (without quotes) to the address debian-users-ctl@debian.or.jp; help=<mailto:debian-users-ctl@debian.or.jp?body=help>
X-ml-name: debian-users
X-mlserver: fml [fml 4.0.3 release (20011202/4.0.3)]; post only (only members can post)
X-spam-level:
X-spam-status: No, hits=-1.3 required=10.0 tests=ISO2022JP_BODY,SPAM_PHRASE_03_05,SUPERLONG_LINE version=2.44
References: <20030730172304.9238.HIBAYASHI@xxxxxxxxxxxxxxx>
Message-id: <20030730.230843.74755744.toraneko@xxxxxxxxx>
X-mail-count: 37883
X-mailer: Mew version 3.2 on Emacs 20.7 / Mule 4.1 (AOI)

おかもとです。

From: hibayashi yoshiki <hibayashi@xxxxxxxxxxxxxxx>
Subject: [debian-users:37876] webからJDBC接続する方法
Date: Wed, 30 Jul 2003 18:15:12 +0900
> Something unusual has occured to cause the driver to fail. Please report this exception: Exception: java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)
> Stack Trace:
> 
> java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)
> 	at java.security.AccessControlContext.checkPermission(AccessControlContext.java:272)
> 	at java.security.AccessController.checkPermission(AccessController.java:399)
.. snip..
> 	at java.net.InetAddress.getByName(InetAddress.java:449)
> 	at java.net.Socket.<init>(Socket.java:100)
> 	at org.postgresql.PG_Stream.<init>(Unknown Source)

PostgreSQLのJDBCがlocalhostのソケットを使おうとしていますが、JVMのセキュ
リティマネージャのパーミッションが許されていないのでエラーになっていま
す。

/usr/share/doc/tomcat/README.Debianを読むと、次の様に書いています。

- Tomcat is started using a security manager, you can define the permissions
  for your servlets and JSPs in /etc/tomcat4/policy.d/*. All files in this
  directory are joined to /etc/tomcat4/catalina.policy. Other Debian packages
  that contain web applications might provide their own security rules in a
  file in this directory, e.g. for JDBC access. You can also completely
  disable the security manager in /etc/default/tomcat4 but this is not
  recommended since a call to System.exit() in a servlet of JSP page
  would then stop the whole virtual machine that is running Tomcat.

ということで、/etc/tomcat4/policy.d/99examples.policy 辺りを読むと、

// The permission granted to your JDBC driver
// grant codeBase "file:${catalina.home}/webapps/examples/WEB-INF/lib/driver.jar!/-" {
//      permission java.net.SocketPermission "dbhost.mycompany.com:5432", "connect";
// };

この部分を書き換えてコメントアウトすれば動きませんか?
----
おかもとたかし

References:
- [debian-users:37876] webからJDBC接続する方法
  - From: hibayashi yoshiki

Prev by Date: [debian-users:37882] Re: webからJDBC接続する方法
Next by Date: [debian-users:37884] Forward: [SECURITY] [DSA-355-1] New gallery packages fix cross-site scripting
Previous by thread: [debian-users:37882] Re: webからJDBC接続する方法
Next by thread: [debian-users:37885] Re: webからJDBC接続する方法
Index(es):
- Date
- Thread