legolas wood wrote:
> Hi
> thank you for reading my post.
> What is solution to secure the JNDI access?
> for example if any one know our application server IP address then
> he/she can lookup the JNDI , is it correct?
>
No. They only way an outsider could perform lookups in your JNDI
namespace is if they were allowed to install applications on your app
server. If they can do that, you've got substantially more serious
issues to think about than just JNDI access :-).
Craig
> if it is correct, then how we should prevent it and secure the JNDI ?
>
> thanks
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe_at_glassfish.dev.java.net
> For additional commands, e-mail: users-help_at_glassfish.dev.java.net
>
>