NonStop Servlets for JavaServer Pages (NSJSP) 6.0 System Administrator's Guide

Configuring NSJSP

NonStop Servlets for JavaServer Pages (NSJSP) 6.0 System Administrator’s Guide—544548-004

3-21

Enhanced Security Manager

NSJSP 6.0 allows you to configure the NSJSP internal packages that are protected

against package definition and access. This configuration prevents a non-trusted

application from accessing sensitive NSJSP internal packages. For more information

on the Security Manager, see the documentation at http://tomcat.apache.org/tomcat-

6.0-doc/security-manager-howto.html.

Example 3-7. Troubleshooting the NSJSP Security Manager

Arglist -Xmx64m -Xss128k -Xnoclassgc \

-Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager \

-Djava.util.logging.config.file=$env(NSJSP_HOME)/conf/logging.properties

-Djavax.management.builder.initial=com.tandem.servlet.jmx.NSJSPMBeanServ

erBuilder \

-Djava.security.debug=all \

$NSJSP_SECMGR \

$NSJSP_SECMGR_POLICY \

$NSJSP_JAAS_CONFIG \

-Dcatalina.home=$env(NSJSP_HOME) \

-Dcatalina.base=$env(NSJSP_HOME) \

-Djava.io.tmpdir=$env(NSJSP_HOME)/temp \

org.apache.catalina.startup.Bootstrap start

Caution. The configuration in Example 3-7 generates many megabytes of output. You can use

this output to search for any problems that may have occurred: search for the word "FAILED"

and determine which permission was being checked for.