Bug 124354 (DEFECT000291646)

Summary: LDAPConnection.setSocketFactory does not verify the user's rights
Product: [Novell Products] NDS SDK Reporter: Cameron Morris <cmorris>
Component: LDAP Java SDKAssignee: Jeff Vincent <jvincent>
Status: VERIFIED FIXED QA Contact: Sundar Swamy <ssundar>
Severity: Normal    
Priority: P5 - None CC: aclark
Version: OCT 2006 NDKKeywords: English, security
Target Milestone: FCS   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: Development Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Rajkumar V 2005-10-10 22:54:39 UTC 


------- Bug moved to this database by vrajkumar@novell.com 2005-10-10 16:54 -------

This bug previously known as bug DEFECT000291646 at remedy/
remedy/show_bug.cgi?id=DEFECT000291646
Originally filed under the NDS SDK product and LDAP Java SDK component.

---------
<remedy_version_found_in> BLANK </remedy_version_found_in>
---------
<remedy_details> LDAPConnection.setSocketFactory does not
      verify the user's rights.  Draft 17 states, "If a security
      manager exists and the caller does not have permission
      to set a factory, SecurityException is thrown.  To use the
      setSocketFactory method, the caller needs the following permission:
      java.land.RuntimePermission("setFactory"); </remedy_details>