Uploaded image for project: 'HPCC'
  1. HPCC
  2. HPCC-21371

Add option to disallow code in manifest

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 7.2.0
    • Fix Version/s: 7.2.0
    • Component/s: eclcc
    • Labels:
    • Compatibility:
      Minor

      Description

      JAR files embedded in manifests could represent a security risk, and should therefore have an option to disallow them or only allow them when signed.

      Probably we will want to check the signature on the manifest, and require that the manifest specify a CRC for the files it links to.

        Attachments

          Activity

            People

            Assignee:
            richardkchapman Richard Chapman
            Reporter:
            richardkchapman Richard Chapman
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: