Claim My Reward browser security error

I experienced an issue today after printing with my Officejet Pro 8610.
Immediately after printing a dialog window popped-up calling on me to Redeem your HP Reward!
I read the dialog and chose to click the Claim My Reward button. After some processing it opened a new Google Chrome browser window that showed a security error that sounded quite serious.
The Chrome browser error page read:
Your connection is not private
Attackers might be trying to steal you information from hprewards.austin.hp.com
The error code shown was
NET::ERR_CERT_DATE_INVALID
The URL that was being opened and showed the error was quite long. I'm including the beginning of it below, with the query string removed, to help HP track down the broken certificate or error.
https://hprewards.austin.hp.com/RRPublic/brRedirection?crver=1&locale=en-AU&
Here is a screen capture of the Windows application and the browser error I am experiencing.
Christopher Hopper

It looks like it might work if you set up a flashplayer trust file.
http://www.adobe.com/cfusion/search/index.cfm?loc=en_US&term=flashplayertrustfile&cat=support

Similar Messages

Browser Security Error When Viewing Published Movie

We've made our Captivate movies, we've published them as
SWF's with 'Export HTML' checked with Flash Player 7 (and also
tried FP 9) selected. When we view our movies in our our browser
(Mac Safari, Mac Firefox, PC I.E., PC Firefox) the following error
message pops up:
Adobe Flash Player has stopped a potentially unsafe
operation.
The following local application on your computer or network:
/Users/admin/Documents/.../filename.swf
is trying to communicate with this Internet-enabled location:
/Users/admin/Documents/.../filename.htm
To let this application communicate with the Internet, click
Settings.
You must restart this application after changing settings.
(OK) (SETTINGS)
We can of course click settings and make adjustments to view
the movies but we're making a stand alone CD and don't want our end
users to have to deal with this error message. Is there a setting
we need to adjust so this message won't pop up every time a movie
is opened in a web browser?

Hi jlee250
See if the following link helps.
Click
here.
Cheers... Rick

When i drag and drop an image on my site. it gives the following error. "Unable to access local files due to browser security settings. To overcome this, follo"

I am using the firefox version 17 and when i drag and drop an image on my website. It gives me the following error.
Unable to access local files due to browser security settings. To overcome this, follow these steps: (1) Enter "about:config" in the URL field; (2) Right click and select New->Boolean; (3) Enter "signed.applets.codebase_principal_support" (without the quotes) as a new preference name; (4) Click OK and try loading the file again. Or go to the homepage for a link to the tutorial on how to do it.
I have completed the above steps and it is still showing the same error message. Any help would be highly appreciated.
Thanks.

Thanks kumars ,
I have a specific drag and drop area on our website. This works fine for all earlier releases of Firefox after these security settings
"(1) Enter "about:config" in the URL field; (2) Right click and select New->Boolean; (3) Enter "signed.applets.codebase_principal_support" (without the quotes) as a new preference name; (4) Click OK and try loading the file again."
Bust these settings not work for me in Firefox 17.
Yes the drag and drop functionality is java script based and i am not using any script blocker addons.

When using the online editor in our wordpress blog on any other online editor I get this error "Your browser security settings don't permit the editor to automatically execute cutting operations. Please use the keyboard for that (Ctrl+X)" Please help.

I have online editors for our blog and websites for generating articles and blog posts. Different editors from different sites and programmers. Firefox doesn't allow me to use the cut/paste/copy functions with these editors. I get this message or something similar every time. "Your browser security settings don't permit the editor to automatically execute cutting operations. Please use the keyboard for that (Ctrl+X)"

See:
*http://kb.mozillazine.org/Granting_JavaScript_access_to_the_clipboard
*https://addons.mozilla.org/firefox/addon/852 - AllowClipboard Helper

Security error while loading pdf file in jsp in firefox?

When i type in the following link manually in firefox as " file://///172.16.2.1/copyediting/ELS/mallet.pdf", pdf file is loaded successfully in the firefox browser. PDF file is located in remote server which is referred by IP 172.16.2.1.
I've assigned the Same link in a String in jsp page and tested it through my tomcat application as
<%
String linktotest="file://///172.16.2.1/copyediting/ELS/mallet.pdf";
%>
<a href="<%=linktotest%>">link</a>
when i click on the hyperlink , the pdf is not loaded in firefox and i'm getting the following error in firefox error console
Security Error: Content at http://172.16.3.222:8080/FMS/source/journal/ProductionEntry.jsp may not load or link to file://///172.16.2.1/copyediting/ELS/mallet.pdf
can any one please give me the solution.

Links and forms in HTML should point to public URL´s (with http:// or https:// protocol), not to the file system (with file://).
If those files are not public accessible by URL, then you need to create a servlet which does the file streaming task. This example may be useful then: [http://balusc.blogspot.com/2007/07/fileservlet.html].

Security Error when trying to access web service

I have an app that connects over HTTPS to a web service on
our internal network. The interface to the web service was created
by using the WSDL Import function of the Flex IDE.
I can run the app and retrieve data without a problem when I
run from the debug-bin folder that the Flex IDE compiles to.
However, I cannot connect to the web service from anywhere else,
such as a different location on my own local drives, a network
drive, or another persons machine.
I've setup a local instance of Apache with mod_ssl so I could
host the app under an HTTPS connection itself, which the
documentation seemed to imply that would work. However, when I run
the app, I get:
[FaultEvent fault=[RPC Fault faultString="Security error
accessing url" faultCode="Channel.Security.Error"
faultDetail="Destination: DefaultHTTPS"] messageId=null
type="fault" bubbles=true cancelable=true eventPhase=2]
I am accessing the app by going to
https://mymachine.companydomain.com/myapp.html, and the web service
is being accessed through https://webservice.companydomain.com/.
Anybody have any thoughts on what I should be looking at?
I've been searching and trying things for a few days with no luck.
Any help would be appreciated. Thanks.

The SSL handshake works differently to a browser as it is making the connections automatically.
The browser asks every time if you want to trust an expired certificate, and it also recommends not to. Its impractical to manually check every service call to say do you trust the certificate so the functionality doesn't exist. I doubt any integration product does this. Therefore there isn't a option to ignore the certificate if it has expired.
This makes sence as the certificate is untrustworthy. The whole idea around SSL is trusting the site you are communicating with, all parties need to be trusted. This stops hackers from replicating their site and intercepting data.
If the administrator of the remote site is not willing to renew the certificate, are they really interested in SSL. I suggest they expose a non SSL service.
cheers
James

I can no longer leave a comment on my or others facebook pages. Some tab said that my browser security is blocking it. How do I change this? Sarah Clark

I can't add comments to my or others facebook pages. This was not previously the case. I don't know if I accidentally clicked on some update or what.
It is when I want to leave text as a comment. No mouse cursor shows up, and I can't type in anything.
I have tried to disable all addons that I thought might be related, but still nothing can be typed in the comment.
One popup box said that my browser security is not allowing.
Sarah Clark
[email protected]

A lot of folks have found that running a DVD Lens Cleaner disc through can often fix this sort of calibration and sensor problem, it only takes a small spec of dirt or dust to cause errors ...

Security Error in the same domain

Hi all
I've been trying to access servlets from within my flex
application on a different server, but on the same domain.
The domains are something like:
http://server-1.domain.test.co.uk
- Flex Application
http://server-2.domain.test.co.uk
- Java Servlets
They are both deployed on Tomcat 5 servers, on separate
machines.
i.e. If I try to call
http://server-2.domain.test.co.uk/Servlet?param1=test
from within Flex under
http://server-1.domain.test.co.uk
I will get an RPC Security Error.
If the addresses are typed directly into the browser there
are no communication issues.
I have run with similar configurations in the past and not
had this problem. I've deployed crossdomain files (although I
shouldn't need them) and it has not made any difference.
I do not want to use a proxy if I can help it, and I am NOT
using dataservices.
If anyone has any ideas let me know, cheers.

Have you used a crossdomain.xml file?
Google it or try
http://www.cflex.net/showFileDetails.cfm?ObjectID=287&Object=Fi

Security Error in accessing Web service from Flex.Where to put crossdomain.xml in axis container?

Hi guys.
Typically webservices are invoked across domains. Flash has defined certain policies which prevent crossdomain access. The only way to bypass this security feature is to put a crossdomain.xml file within the server root of the webservice provider i.e. in our case at http://abc.com. A sample example of crossdomain.xml is as below:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
     <site-control permitted-cross-domain-policies="all" />
     <allow-access-from domain="*" secure="false"/>
     <allow-http-request-headers-from domain="*" headers="*" secure="false" />
</cross-domain-policy>
If the crossdomain.xml is not added the developer will get “Security Error accessing URL” type of messages.
The above mentioned information should be enough for you to get your flex based WebService client up and running.
We are using axis2 to build webservices. We deployed the webservices under axis2 container under repository/srvices folder . But in Flex when we try to call the webservices we were getting the exception saying security error in accessing url. The solution is we need to put the crossdomain.xml o that it is loaded at runtime and allow us to access. In tomcat if we put the file under ROOT directory we could accss the file and we were able to access the webservices deployed under Tomcat. But I googled for Axis2 container and couldnt find any solution.
Please post the reply if anyone knows the solution to it.
Thanks
Raja

Hi. So, I did take a quick look at the Axis2 standalone server and didn't see any way to server up a file such as crossdomain.xml. It seems like it might be a useful enhancement to have the ability to serve up files even if this functionality was very simple/limited and nothing like a full blown http server.
I'd log an enhancement request against axis2 if this is something you'd like to have.
http://issues.apache.org/jira/browse/AXIS2
-Alex

Security error since upgrade to JDK 7u13

I've developed an application with javaFX embedded into a browser.
No problem since 2 month.
But since the upgrade to JRE 7u13, I've a security error (my previous version was 7u11).
Caused by: java.security.AccessControlException: access denied ("java.util.PropertyPermission" "mapAnyUriToUri" "read")
     at java.security.AccessControlContext.checkPermission(Unknown Source)
     at java.security.AccessController.checkPermission(Unknown Source)
     at java.lang.SecurityManager.checkPermission(Unknown Source)
My javaFX component is signed with a custom certificat and use JAXB.
Is anyone have the same problem? Somebody have found a solution?

Log a bug against the Runtime => http://javafx-jira.kenai.com
There was a somewhat similar issue with Ensemble earlier (also a signed embedded app)
http://javafx-jira.kenai.com/browse/RT-26971"Sample Showcase (Ensemble) does not start"
Ensemble also wasn't starting due to access permissions on a property lookup. It was an issue with a different property though as ensemble's encountered the error trying to access "java.net.useSystemProxies".
I'm sure what was done to fix Ensemble as I don't have access to the patch link.

Publishing my flex application in external server (Channel.Security.Error error Error #2048)

when i publish my flex application in an external server i get that error if my flash builder beta 2 is closed in my system , i did configure an endpoint to the dataservice to point to the external server and if i run my flash builder and any body browser the site it open and they can access the data from my application but if i close my flash builder we have this error all of us
Send failed
Channel.Security.Error error Error #2048: Security sandbox violation:
http://www.dcecrak.com/Maine.swf cannot load data from
http://localhost:37813/flex2gateway/?hostport=www.dcecrak.com&https=N&id=-1. url:
'http://www.dcecrak.com/flex2gateway/'
i created a crossdomain.xml file and put it in the web root , if i try to open the link http://www.dcecrak.com/flex2gateway it open with blank page this means that every thing is oky , my service-config file looks like that :
<?xml version="1.0" encoding="UTF-8"?>
<services-config>
    <services>
        <service-include file-path="remoting-config.xml" />
        <service-include file-path="proxy-config.xml" />
        <service-include file-path="messaging-config.xml" />
    </services>
    <security>
        <login-command class="flex.messaging.security.JRunLoginCommand" server="JRun"/>
        
        
    </security>
    <channels>
        
<channel-definition id="dcecrak" class="mx.messaging.channels.AMFChannel">
            <endpoint uri="http://www.dcecrak.com/flex2gateway/" class="coldfusion.flash.messaging.CFAMFEndPoint"/>
            <properties>
                  <add-no-cache-headers>false</add-no-cache-headers>
                        <polling-interval-seconds>8</polling-interval-seconds>
                        <serialization>
                              <enable-small-messages>false</enable-small-messages>
                        </serialization>
                        <coldfusion>
                            
                              <access>
                                    
                                    <use-mappings>true</use-mappings>
                                    
                                    <method-access-level>remote</method-access-level>
                              </access>
                              
                              <use-accessors>true</use-accessors>
                              
                              <use-structs>false</use-structs>
                    <property-case>
                        
                        <force-cfc-lowercase>false</force-cfc-lowercase>
                        
                        <force-query-lowercase>false</force-query-lowercase>
                        
                        <force-struct-lowercase>false</force-struct-lowercase>
                    </property-case>
                        </coldfusion>
            </properties>
        </channel-definition>
        <channel-definition id="cf-polling-amf" class="mx.messaging.channels.AMFChannel">
            <endpoint uri="http://{server.name}:{server.port}{context.root}/flex2gateway/cfamfpolling" class="coldfusion.flash.messaging.CFAMFEndPoint"/>
            <properties>
                <polling-enabled>true</polling-enabled>
                <polling-interval-seconds>8</polling-interval-seconds>
                        <serialization>
                              <enable-small-messages>false</enable-small-messages>
                        </serialization>
                        <coldfusion>
                            
                              <access>
                                    
                                    <use-mappings>true</use-mappings>
                                    
                                    <method-access-level>remote</method-access-level>
                              </access>
                              
                              <use-accessors>true</use-accessors>
                              
                              <use-structs>false</use-structs>
                    <property-case>
                        
                        <force-cfc-lowercase>false</force-cfc-lowercase>
                        
                        <force-query-lowercase>false</force-query-lowercase>
                        
                        <force-struct-lowercase>false</force-struct-lowercase>
                    </property-case>
                        </coldfusion>
            </properties>
        </channel-definition>
        <channel-definition id="my-cfamf-secure" class="mx.messaging.channels.SecureAMFChannel">
            <endpoint uri="https://{server.name}:{server.port}{context.root}/flex2gateway/cfamfsecure" class="coldfusion.flash.messaging.SecureCFAMFEndPoint"/>
            <properties>
                <polling-enabled>false</polling-enabled>
                        <add-no-cache-headers>false</add-no-cache-headers>
                        <serialization>
                              <enable-small-messages>false</enable-small-messages>
                        </serialization>
                        <coldfusion>
                            
                              <access>
                                    
                                    <use-mappings>true</use-mappings>
                                    
                                    <method-access-level>remote</method-access-level>
                              </access>
                              
                              <use-accessors>true</use-accessors>
                              
                              <use-structs>false</use-structs>
                              <property-case>
                        
                        <force-cfc-lowercase>false</force-cfc-lowercase>
                        
                        <force-query-lowercase>false</force-query-lowercase>
                        
                        <force-struct-lowercase>false</force-struct-lowercase>
                    </property-case>
                        </coldfusion>
            </properties>
        </channel-definition>
        
        <channel-definition id="java-amf" class="mx.messaging.channels.AMFChannel">
            <endpoint uri="http://{server.name}:{server.port}{context.root}/flex2gateway/amf" class="flex.messaging.endpoints.AMFEndpoint"/>
        </channel-definition>
        <channel-definition id="java-secure-amf" class="mx.messaging.channels.SecureAMFChannel">
            <endpoint uri="https://{server.name}:{server.port}{context.root}/flex2gateway/amfsecure" class="flex.messaging.endpoints.SecureAMFEndpoint"/>
        </channel-definition>
        <channel-definition id="java-polling-amf" class="mx.messaging.channels.AMFChannel">
            <endpoint uri="http://{server.name}:{server.port}{context.root}/flex2gateway/amfpolling" class="flex.messaging.endpoints.AMFEndpoint"/>
            <properties>
                <polling-enabled>true</polling-enabled>
                <polling-interval-seconds>8</polling-interval-seconds>
            </properties>
        </channel-definition>
        
    </channels>
    <logging>
        <target class="flex.messaging.log.ConsoleTarget" level="Error">
            <properties>
                <prefix>[BlazeDS] </prefix>
                <includeDate>false</includeDate>
                <includeTime>false</includeTime>
                <includeLevel>false</includeLevel>
                <includeCategory>false</includeCategory>
            </properties>
            <filters>
                <pattern>Endpoint.*</pattern>
                <pattern>Service.*</pattern>
                <pattern>Configuration</pattern>
                <pattern>Message.*</pattern>
            </filters>
        </target>
    </logging>
    <system>
        <manageable>false</manageable>
        
    </system>
</services-config>
and my crossdomain.xml looks like that :
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>
<allow-access-from domain="localhost" to-ports="*" secure="false"/>
<allow-access-from domain="*" to-ports="*" secure="false"/>
<allow-http-request-headers-from domain="*"/>
</cross-domain-policy>
really its strange only the site works if my flash builder is running , please help

Thanks all for your attention, i have solved my problem and i think its a bug in the flash builder , the problem was that when you compile the application and you enabling Network Monitoring , the communication of the AMF channels done throw the http://localhost:37813/flex2gateway/
and that was the problem if you close the flash builder on your system that getaway dose not exist and on the hosted server there is no such address localhost by this port also so the client application witch is catch in you system try to access your localhost and that cause a security error and the address is also not exist .
so the solution or we have to compile the project after we disable the Network Monitoring in flash builder .

Security Error

The following code's HttpService request works when the swf
is downloaded from the same server from where the
request is made.
But when I open a browser locally and open the swf without
downloading or in a local Tomcat server, I get a security error. I
did this with FB3 as well as with Flash SDK.
I need to do a HttpService request to different servers from
the same swf so how do I do this or what is my problem

See FB help sys or LiveDocs on crossdomain.xml files.
A cross domain file is necessary even when making a request
of a sub-domain of where the SWF was downloaded, such as when the
SWF coms from www.mysite.com but you are connecting to
data.mysite.com.

IDN domains and upload (IO & Security errors)

I have site with a file-uploader created in Flash. It works great, I have never encountered any security issues, nor would I expect too, because the swf and the serverside files (in this case ASP.NET) are all in the same domain.
My site can be accessed from several hostheaders (domains). This is not a problem, everything works great unless the site is being called from an IDN domain (in this case a domain with special danish characters). When called from an IDN domain, everything starts to fall apart. I get a security error, probably because the browser translates the IDN domain and Flash does not (or vice versa).
I have tried to solve this with a crossdomain.xml file, but the security error still occurs. I can see that the crossdomain.xml file gets called from Flash, but it doesn't seem to honor the contents of the file. The file has the lowest security settings possible ("*") while debugging.
In a different approach, I have tried to call the serverside-scripts from Flash using relative paths instead (no domain) but then I get an IO error because the file cannot be found. Using Fiddler i noticed that the host of the request had been translated into some url-encoded looking string.
I believe the "funny things" happens in the FileReference.upload method because prior to uploading I make a request (to check for file existance on server already) and this serverside call works as expected. Only the upload() call fails.
Is this a known issue, am I doing something wrong or do you have any suggestions? It's very hard to Google information on Flash (upload or security) and IDN domains.
Any help would be greatly appreciated.

I am also having problems with UNC paths. But I cannot access the location even if it is mapped as a drive. In JDK VJM I do not have a problem, but in Oracle it says the file cannot be found and say permission denied. I will try to change the user that starts the database and see if that helps.
null

Java security error after 8u31 (Timestamped Jarsigned Applet within valid period of Code Signing certificate)

Hello,
I have an applet running in embeddad systems. This program runs without any problem since 8u31 update! After this update it starts to give java security warning and stops running.
Here is the warning message:
"Your security settings have blocked an application signed with an expired or not-yet-valid certificate from running"
What it says is true; my Code Signing Certificate (CSC) is valid between 24 Jan 2014 and 25 Jan 2015. And it expired! However, while i was signing my applet with this certificate i used "timestamp". The authority i choosed was DigiCert. My signing date was 26 Jan 2014 (when my CSC was valid).
When i started to have this Java Security Error, first i thought i mis-timestamped my code, and check by using the jarsigner -verify command. Here is a partial result:
s      19607 Mon Jan 27 13:17:34 EET 2014 META-INF/MANIFEST.MF
      [entry was signed on 27.01.2014 13:19]
      X.509, CN=TELESIS TELECOMMUNICATION SYSTEMS, OU=ARGE, O=TELESIS TELECOMMUNICATION SYSTEMS, STREET=TURGUT OZAL BLV.NO:68, L=ANKARA, ST=ANKARA, OID.2.5.4.17=06060, C=TR
      [certificate is valid from 24.01.2014 02:00 to 25.01.2015 01:59]
      X.509, CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB
      [certificate is valid from 24.08.2011 03:00 to 30.05.2020 13:48]
      X.509, CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US
      [certificate is valid from 07.06.2005 11:09 to 30.05.2020 13:48]
      X.509, CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
      [certificate is valid from 30.05.2000 13:48 to 30.05.2020 13:48]
sm       495 Thu Jan 23 14:55:22 EET 2014 telesis/WebPhone$1.class
As you may see the timestamp was correctly done. And it is in the valid period of CSC.
Than i started to check how Java confirms the Certificate, and found some flowcharts.
Here is an example from DigiCert:
Code Signature Verification Process
After the Web browser downloads the Applet or Web Start application, it checks for a timestamp, authenticates the publisher and Certificate Authority (CA), and checks to see if the code has been altered/corrupted.
The timestamp is used to identify the validation period for the code signature. If a timestamp is discovered, then the code signature is valid until the end of time, as long as the code remains unchanged. If a timestamp is not discovered, then the code signature is valid as long as the code remains unchanged but only until the Code Signing Certificate expires. The signature is used to authenticate the publisher and the CA, and as long as the publisher (author or developer) has not been blacklisted, the code signature is valid. Finally, the code is checked to make sure that it has not been changed or corrupted.
If the timestamp (or Code Signature Certificate expiration date) is verified, the signature is validated, and the code is unchanged, then the Web browser admits the Applet or Web Start application. If any of these items do not check out, then the Web browser acts accordingly, with actions dependent on its level of security.
So according to this scheme, my applet had to work properly, and without security warning.
However i also found that from Oracle, which also includes the timestamping authorities Certification validity period??? :
The optional timestamping provides a notary-like capability of identifying
when the signature was applied.
    If a certificate passes its natural expiration date without revocation,
trust is extended for the length of the timestamp.
    Timestamps are not considered for certificates that have been revoked,
as the actual date of compromise could have been before the timestamp
occurred.
source: https://blogs.oracle.com/java-platform-group/entry/signing_code_for_the_long
So, could anyone please explain why Java gives security error when someone tries to reach that applet?
Here is a link of applet: http://85.105.68.11/home.asp?dd_056
I know the situation seems a bit complicated, but i tried to explain as simple as i can.
waiting for your help,
regards,
Anıl

Hello,
I have an applet running in embeddad systems. This program runs without any problem since 8u31 update! After this update it starts to give java security warning and stops running.
Here is the warning message:
"Your security settings have blocked an application signed with an expired or not-yet-valid certificate from running"
What it says is true; my Code Signing Certificate (CSC) is valid between 24 Jan 2014 and 25 Jan 2015. And it expired! However, while i was signing my applet with this certificate i used "timestamp". The authority i choosed was DigiCert. My signing date was 26 Jan 2014 (when my CSC was valid).
When i started to have this Java Security Error, first i thought i mis-timestamped my code, and check by using the jarsigner -verify command. Here is a partial result:
s      19607 Mon Jan 27 13:17:34 EET 2014 META-INF/MANIFEST.MF
      [entry was signed on 27.01.2014 13:19]
      X.509, CN=TELESIS TELECOMMUNICATION SYSTEMS, OU=ARGE, O=TELESIS TELECOMMUNICATION SYSTEMS, STREET=TURGUT OZAL BLV.NO:68, L=ANKARA, ST=ANKARA, OID.2.5.4.17=06060, C=TR
      [certificate is valid from 24.01.2014 02:00 to 25.01.2015 01:59]
      X.509, CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB
      [certificate is valid from 24.08.2011 03:00 to 30.05.2020 13:48]
      X.509, CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US
      [certificate is valid from 07.06.2005 11:09 to 30.05.2020 13:48]
      X.509, CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
      [certificate is valid from 30.05.2000 13:48 to 30.05.2020 13:48]
sm       495 Thu Jan 23 14:55:22 EET 2014 telesis/WebPhone$1.class
As you may see the timestamp was correctly done. And it is in the valid period of CSC.
Than i started to check how Java confirms the Certificate, and found some flowcharts.
Here is an example from DigiCert:
Code Signature Verification Process
After the Web browser downloads the Applet or Web Start application, it checks for a timestamp, authenticates the publisher and Certificate Authority (CA), and checks to see if the code has been altered/corrupted.
The timestamp is used to identify the validation period for the code signature. If a timestamp is discovered, then the code signature is valid until the end of time, as long as the code remains unchanged. If a timestamp is not discovered, then the code signature is valid as long as the code remains unchanged but only until the Code Signing Certificate expires. The signature is used to authenticate the publisher and the CA, and as long as the publisher (author or developer) has not been blacklisted, the code signature is valid. Finally, the code is checked to make sure that it has not been changed or corrupted.
If the timestamp (or Code Signature Certificate expiration date) is verified, the signature is validated, and the code is unchanged, then the Web browser admits the Applet or Web Start application. If any of these items do not check out, then the Web browser acts accordingly, with actions dependent on its level of security.
So according to this scheme, my applet had to work properly, and without security warning.
However i also found that from Oracle, which also includes the timestamping authorities Certification validity period??? :
The optional timestamping provides a notary-like capability of identifying
when the signature was applied.
    If a certificate passes its natural expiration date without revocation,
trust is extended for the length of the timestamp.
    Timestamps are not considered for certificates that have been revoked,
as the actual date of compromise could have been before the timestamp
occurred.
source: https://blogs.oracle.com/java-platform-group/entry/signing_code_for_the_long
So, could anyone please explain why Java gives security error when someone tries to reach that applet?
Here is a link of applet: http://85.105.68.11/home.asp?dd_056
I know the situation seems a bit complicated, but i tried to explain as simple as i can.
waiting for your help,
regards,
Anıl

Update muse and made changes to home page now getting this error message... error calling selector function: Security error:Failed to read the content document html Iframe element

Made changes on my home page and it looks great in the preview in browser, but when i upload to my server I get the attached error message. PLEASE HELP!!!

It's common for opening a locally exported website that contains Social widgets or other third party code to generate security errors because it will be loaded in the browser using file:// protocol. When a site is previewed from Muse (in Muse or in browser) or uploaded to a hosting provider it's served using http:// (or https://) protocol and the security errors don't occur.
The third party code that comes with using the Social widgets or any other widgets that rely on third party code and/or services is frequently not designed to work over file:// protocol.

Claim My Reward browser security error

Similar Messages

Maybe you are looking for