[jboss-jira] [JBoss JIRA] Updated: (JBAS-8159) Secure jmx-remoting.sar
Jason Greene (JIRA)
jira-events at lists.jboss.org
Sun Oct 31 11:45:54 EDT 2010
[ https://jira.jboss.org/browse/JBAS-8159?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jason Greene updated JBAS-8159:
-------------------------------
Fix Version/s: 6.0.0.Final
(was: 7.0.0.Alpha1)
This issue is a 6.x and 5.x issue.
> Secure jmx-remoting.sar
> -----------------------
>
> Key: JBAS-8159
> URL: https://jira.jboss.org/browse/JBAS-8159
> Project: JBoss Application Server
> Issue Type: Feature Request
> Security Level: Public(Everyone can see)
> Components: JMX
> Affects Versions: JBossAS-5.1.0.GA
> Environment: JBossAS 5.1.0 GA
> Reporter: Xavier MOGHRABI
> Assignee: Scott Marlow
> Fix For: 6.0.0.Final
>
> Attachments: jboss-service.xml, jbossas-jmx-remoting-src.jar, jmx-remoting-src.zip, jmx-remoting-src.zip
>
>
> JBossAS 5.1.0 GA provides jmx-remoting.sar compliant to JSR 160. Unfortunately the service is not secured and doesn't provide any way to secure it.
> However the JMX API provides several mechanisms allowing authentication and authorization. Authentication can easily done against a login-module.
> A forwarder can be implemented to extend the authorization against a role based mechanism.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list