Java allows root access without permission?
- From: Michael Cronenworth <mike@xxxxxxxxxx>
- Date: Wed, 27 Oct 2010 15:00:00 -0500
Fedora 13 x86_64 with OpenJDK (not Sun) installed.
I was required to login to a web site today to configure a VPN and the
site installed a Cisco VPN Java applet. When it was finished installing
and was running I noticed the processes where running as root and had
installed into /opt. I had not given it my root password or any
permission to do so. It did not install any RPM package. It was all
driven by a Java applet.
$ ps -efw #id 502 is me
502 4791 2668 0 11:16 ? 00:00:19
/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre/lib/amd64/../../bin/java
sun.appl
root 4923 1 0 11:16 ? 00:00:00 /opt/cisco/vpn/bin/vpnagentd
Is this something "allowed" by some configuration setting in OpenJDK
somewhere? I'd like to turn off this "feature" ASAP.
Thanks,
Michael
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
- Follow-Ups:
- Re: Java allows root access without permission?
- From: JD
- Re: Java allows root access without permission?
- From: Michael Cronenworth
- Re: Java allows root access without permission?
- From: Phil Meyer
- Re: Java allows root access without permission?
- From: Kevin Martin
- Re: Java allows root access without permission?
- From: Deepak Bhole
- Re: Java allows root access without permission?
- Prev by Date: How to tell which user is active (which display is up)?
- Next by Date: Re: Java allows root access without permission?
- Previous by thread: How to tell which user is active (which display is up)?
- Next by thread: Re: Java allows root access without permission?
- Index(es):
Relevant Pages
|
