Lookup

Created by info@itofthefuture.com

Welcome Anonimous.User to this quiz related to Java Security.

Read the question and choose the best answer. Time is limited to 40 seconds!

Important! Do not forget to rank the quality of the question (from bad to excellent).
An initiator of the quiz will get royalty score for QnAs created by her/him and can win the Top Creativity Prize.

Question:
You must be VERY careful about checking the parameters - especially if they were derived from the HTTP request. Remember RULE #1 for web app programming is "NEVER trust the HTTP request." A hacker can manipulate all the headers, parameters, form data, hidden fields, etc... Client side checking (JavaScript) is meaningless to security. How the security manager can be used to grant permissions for the servlet to call the java.lang.Runtime.exec() method to run a native application on the server? Assume that the sandbox is enabled on the server.

Grant FilePermission with read option to the application executable file

Invoke exec() method on behalf of a system administrator account

Grant RunPermission to the application executable file

Grant ExecPermission to the application executable file

Grant FilePermission with exec option to the application executable file

Grant FilePermission with read and exec options to the application executable file

Rank the Quality of the Question from "-10" (bad) or "0" (not clear) to 10 (correct) or even 20 (very good!)
-10 (bad/wrong) 0 (not clear) 10 (correct) 20 (very good!)

Your summary report will be available to you and your instructor. Thank you for your work!!!