Community
Participate
Working Groups
The attached zip file is a doc project containing URLs that expose security bugs already filed against Eclipse. As with all security bugs this will be locked until all bugs have fixes and the community has had time to apply those fixes.
Created attachment 175283 [details] Project containing security tests
Created attachment 175339 [details] Security tests version 2
Instructions for using the test project. 1. Unzip the attachment 2. From Eclipse File->Import existing project into workspace 3. From Eclipse launch an infocenter or an Eclipse instance 4. Open the help book "Security Tests", open each of the topics and follwo teh instructions. I'm open to suggestions on how to make the tests easier to install/run.
Created attachment 175432 [details] Security tests version 3 This version of the tests allows for testing of a web server without having to install the tests on that server.
Created attachment 184968 [details] Security tests version 4
Created attachment 189216 [details] Patch version 5
Patch committed to HEAD. There is no reason to remove the security flag so this bug will remain in the secure state.
Removing security restriction for bugs that have been fixed in 3.6.2 or earlier.