Robert Collins wrote:
> I'm not a java hacker... but I thought the point of the sandbox was to
> ensure the applet couldn't make such calls?
Well.. the sandbox is mostly implemented in Java and has restrictions on
what kinds of network operations the applet may perform, basically
restricting applets to only contact the same server it came from. It can
however contact that server quite freely.
In addition to the Java runtime sandbox environment, applets also has
(restriected) access to the browser it embedded in.
This leaves Java applets with two options for fetching URL's:
a) Use Java native HTTP/FTP/whatever client implementation for full
freedom in talking to the originating host(name), but will have problems
with proxy settings (simple proxy settings may work in some
environments).
b) Kindly ask the browser to fetch the object. However, this mechanism
is only available for certain data classes (Image, Audio, ...) by
special calls in the Applet class.
Both methods are subject to the sandbox security policy. One talks
"directly" to the network via Java, the other gets objects from the
browser.
-- Henrik Nordstrom Squid HackerReceived on Thu Jun 21 2001 - 21:09:55 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:00:49 MST