Re: checkpackageaccess!!!!

Marianne Mueller (Marianne.Mueller@Eng)
Fri, 24 Jul 1998 11:04:15 -0700 (PDT)

Date: Fri, 24 Jul 1998 11:04:15 -0700 (PDT)
From: Marianne Mueller <Marianne.Mueller@Eng>
Subject: Re: checkpackageaccess!!!!
To: java-security@java.Sun.COM, jgarcila@cicese.mx

http://java.sun.com/sfaq/

Loosely speaking, downloaded applets are prevented from accessing java.*
and sun.* packages, or defining classes in those packages. The browsers
from Netscape and Microsoft probably also restrict access to packages
like netscape.* or microsoft.* (I'm not sure what the exact names of
their packages are)

Downloaded applets are considered untrusted. Trusted applets are allowed
to access packages. There are 2 ways in JDK 1.1.x for an applet to be
considered trusted:

* install the applet locally in a directory on your classpath

* sign the applet with an identity marked as trusted in your
identity database (see http://java.sun.com/security/signExample)