David Hopwood has put together an excellent resource for tracking bugs in
Java's security model and related developments. All the 'cracker' papers,
bug reports, software patchlevel info, etc. It's a pessimistic site, to be
sure, but you gotta go check out the locked-and-loaded Duke logo :-)
Rohit "We Do More Surfing By Eight AM Than 97% Do All Day..." Khare