Download List

项目描述

JBoss is an Open Source, standards-compliant, Enterprise JavaBeans application server implemented in pure Java. JBoss provides JBossServer, the basic EJB container and JMX infrastructure, JBossMQ for JMS messaging, JBossMail for mail, JBossTX for JTA/JTS transactions, JBossSX for JAAS based security, JBossCX for JCA connectivity, and JBossCMP for CMP persistence. It integrates with Tomcat Servlet/JSP container and Jetty Web server/servlet container, and enables you to mix and match these components through JMX by replacing any component you wish with a JMX-compliant implementation for the same APIs. The goal is to provide a full J2EE stack in the Free/Open Source software world.

系统要求

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2004-05-29 06:23 Back to release list
3.2.3 P1

此版本修正了验证的JAAS的科目泄漏回Tomcat的线程池。与线程相关的科目是不被清除,但校长和全权证书。虽然这不影响身份验证或授权,这可能导致以前认证除表现在未经身份背景。应用赞同主题或立足于通过自定义主题与JBoss集成的安全决策的敏感资料可能受到这种泄漏。
标签: Minor security fixes
This version fixed a leak of the authenticated JAAS Subject
back to the Tomcat thread pool. The Subject associated with
the thread was not being cleared, but the the principal and
credentials were. Although this did not affect authentication or
authorization, it could cause a previously authenticated Subject
to be seen in an unauthenticated context. Applications
associating sensitive information with the Subject or basing
security decisions on the Subject via custom integration with
JBoss could have been affected by this leak.

Project Resources