[HPCC-21371] Add option to disallow code in manifest - HPCC

XML

Word

Printable

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 7.2.0
Fix Version/s: 7.2.0
Component/s: eclcc
Labels:
- RedBook7.2

Compatibility:
Minor

Description

JAR files embedded in manifests could represent a security risk, and should therefore have an option to disallow them or only allow them when signed.

Probably we will want to check the signature on the manifest, and require that the manifest specify a CRC for the files it links to.

Attachments

Activity

People

Assignee:: Richard Chapman

Reporter:: Richard Chapman

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 28/Jan/19 10:28 AM

Updated:: 18/Mar/19 12:33 PM

Resolved:: 12/Feb/19 11:17 AM