stackoom
  简体   繁体   中英

How to block read write and connect operation in Java

 原文  2015-12-18 13:54:38       java/ security

Question

We are building online grader, a system which accepts some java code, runs it, gets results and verify that results are correct.

Obviously, running untrusted code is unsafe, so we need to make sure code submitter does not break/compromise whole grader system.

For example such sumbitter could read passwords and modify grading entry in database. Or even worse, it could fill out the whole file system, RAM or consume all threads and prevent grading for other submitters.

Is there any API that allows me to block read write and connect operation.

2 answers

solution1
 2 ACCPTED  2015-12-18 13:57:56

使用内置的安全管理器功能。

solution2
 0  2015-12-18 13:59:32

SecurityManager solved this issues. 

class MySecurityManager extends SecurityManager {
@Override
public void checkRead(FileDescriptor fd) {
    throw new SecurityException("File reading is not allowed");
}

@Override
public void checkWrite(FileDescriptor fd) {
    throw new SecurityException("File writing is not allowed");
}

@Override
public void checkConnect(String host, int port) {
    throw new SecurityException("Socket connections are not allowed");
  }
 }

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Atomic operation on read/write variable in java How to read block of memory with java java: Single socket on read write operation. Full duplex java nio cannot read after register a write operation how to read data from mongodb block by block and write to posrgres How to interrupt a read operation using BufferedReader (Java)? how to read and write a ppm in Java How to Read/Write to a Process in Java How to read/write a file in Java Java AsynchronousSocketChannel read operation
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM