Unix permissions in Java

[frank]

i am going to explain this as best i can.
we are running on a UNIX system.
my question i think concerns the Java runtime exec. (or maybe Java
itself).

INFO: In unix all users have a default login group. In unix you can
create additional UNIX groups and assign users to these groups. to help
explain the problem say we have 3 users.
user1 default login group is 1234
user2 default login group is 1234
user3 default login group is 1122
in unix if i set permissions on a file for group execute , anybody in
the same login group as me can execute this file.
so only user1 and user2 can execute. user3 permission denied.
i create a unix group called project1 and assign user1 user2 and user3
to this group.
now if i go back to the file and use the unix command: chgrp project1
it assigns the group project1 to the file. now anybody in project1 can
execute the file,
now user1 user2 and user3 can extecute this file. this is all ok in
unix. everything works as expected.
heres the problem.
in Java executing a runtime exec command , using the same file with the
project1 for the group,only user1 and user2 can execute. user3 gets
permission denied. i need to give world access for user3 to execute.
what i suspect is somehow Java honors the group permissions but doesn't
know about created unix groups, so it uses the login groups to
determine who is in a group.
can anybody verify this is true. (if it is it is a big security flaw.
people use unix groups to also deny access).
if not can anybody tell me what is going on?
thanks. i hope i explained this ok.

 

[Joan]

i am going to explain this as best i can.
we are running on a UNIX system.
my question i think concerns the Java runtime exec. (or maybe
Java
itself).

INFO: In unix all users have a default login group. In unix you
can
create additional UNIX groups and assign users to these groups.
to help
explain the problem say we have 3 users.
user1 default login group is 1234
user2 default login group is 1234
user3 default login group is 1122
in unix if i set permissions on a file for group execute ,
anybody in
the same login group as me can execute this file.
so only user1 and user2 can execute. user3 permission denied.
i create a unix group called project1 and assign user1 user2
and user3
to this group.
now if i go back to the file and use the unix command: chgrp
project1
it assigns the group project1 to the file. now anybody in
project1 can
execute the file,
now user1 user2 and user3 can extecute this file. this is all
ok in
unix. everything works as expected.
heres the problem.
in Java executing a runtime exec command , using the same file
with the
project1 for the group,only user1 and user2 can execute. user3
gets
permission denied. i need to give world access for user3 to
execute.
what i suspect is somehow Java honors the group permissions but
doesn't
know about created unix groups, so it uses the login groups to
determine who is in a group.
can anybody verify this is true. (if it is it is a big security
flaw.
people use unix groups to also deny access).
if not can anybody tell me what is going on?
thanks. i hope i explained this ok.

Too many words you speak, but did you check out the permissions
on
the path?

 

[Michael Rauscher]

i am going to explain this as best i can.
we are running on a UNIX system.
my question i think concerns the Java runtime exec. (or maybe Java
itself).

Perhaps it's bug 4052517...

Bye
Michael

 

[Joan]

thanks michael.
do you know how i can get info on this bug?

http://bugs.sun.com/bugdatabase/view_bug.do;:YfiG?bug_id=4052517