In comp.os.linux.advocacy, thufir
<hawat.thufir@xxxxxxxxx>
wrote
on Fri, 25 Jul 2008 06:33:04 GMT
<Aseik.29080$nD.25715@pd7urf1no>:
> On Wed, 23 Jul 2008 19:02:59 -0700, The Ghost In The Machine wrote:
>
>>> what's wrong with jnlp? are there security holes?
>>>
>>>
>> Nothing I'm aware of, actually, but a signed set of .JAR files can do
>> quite a bit, permissions in the main filesystem permitting. Also,
>> signed .JAR files do not have the indicator "Signed Java Applet Window"
>> in the main JNLP frame -- a form of impersonation, or a welcome removal.
>
>
> Thanks for the post, quite interesting.
>
>
> What do you mean by the main JNLP frame? When the app launches?
Erm...I'll have to backtrack a bit on that; *any* instance of
java.awt.Frame (which includes javax.swing.JFrame) should
display this message. There's no one frame, really, though
presumably most apps launched by JNLP will display one frame
and a bunch of dialogs. However, it's not difficult to program
a JNLP app to display many frames -- or none at all (though in
the latter case I frankly don't know how it gets input; output
will probably go to the browser's Java Console ).
>
>
>
> -Thufir
--
#191, ewill3@xxxxxxxxxxxxx
/dev/signature/pedantry: Resource temporarily unavailable
** Posted from http://www.teranews.com **
|
|
