I cannot set new security manager.
How to set new security manager if there is one that is installed. It always raises an exception.
this is not really a JMS question.
anyway - you can't change a SecurityManager after it has been instatiated. what you can do is run the JVM with the -Dsecuritymanager= propert.y
Similar Messages
-
Cannot assign custom security manager to repository
Hello,
I've been following the details on how to implement a read-only security manager (https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/e2ddd63d-0b01-0010-46bb-e092790068cb) and I have run into the following problem:
After following the instructions for option B in the document (creating a security manager only) and deploying my project, the new security manager appears in the list of managers on the admin screen (Content Management -> Repository Managers -> Security Manager) but it is not available in the drop down list of security managers for my repository. Without that entry I cannot apply the new security manager to my repository.
According to the document, the new security manager should be part of this list but it is not even after I've restarted the J2EE engine.
The document is dated May 2006 so perhaps there have been some changes to the system that are not covered in the document. We are running NW 7.0 SP14.
Any help in determining why my custom security manager is not part of the security manager drop down list would be appreciated.Ok, after much decompiling and inspection of the standard KM security manager implementations I found the answer to my question.
Basically I found that the security manager tutorial only applies if you plan on using your custom security manager with your own custom repository manager. You cannot apply a security manager created using that document to a standard KM repository manager.
In my case I want to apply a custom security manager to a standard KM File System Repository. By inspecting the SFSRepositoryManager.cc.xml file I found the following entry:
<attribute name="securitymgr.ref" type="ref" refType="/cm/repository_managers/security_managers/SecurityManager" mandatory="false" hotReload="true" />
The refType value defines which security managers are displayed in the drop down list of available Security Managers at runtime for the repository manager. In order to get a custom security manager to be available you must define the cc.xml for your custom security manager so that it extends "SecurityManager" not "SecurityManagerMi" as the tutorial describes.
Changing the extension means your security manager implementation must also change so that it extends com.sapportals.wcm.repository.manager.AbstractRepositorySubManager and implements com.sapportals.wcm.repository.manager.ISecurityManager.
Now if only I could figure out how to reward points to myself ..... -
Differences in setting a security manager
Hello,
what is the difference between installing a security manager using a system property like this:
-Djava.security.manager=java.rmi.RMISecurityManagerand by executing the following at the beginning of the main method:
if (System.getSecurityManager() == null) {
System.setSecurityManager(new RMISecurityManager());
}To my understanding of the various reference documentations for java security, they should be equivalent in the obtained result. In my case, however, the system property one doesn't work, that is classes are not downloaded dynamically; everything works fine with the java code solution.
Many thanks,
valerioWorks for me.
-Djava.security.manager=java.rmi.RMISecurityManagerThis argument needs to appear first on the command line, before any other -D and -jar arguments.
NB the RMISecurityManager is obsolete, you can use java.lang.SecurityManager. See the Javadoc. You can just specify:
-Djava.security.manager=defaultor just:
-Djava.security.manager -
HT5622 How to set new security anwser?
Dear Sir or Madam
sorry,i have already forget my security anwser, and didnt set the aid email,now what should i do,how can i reset the new security anwser?You need to ask Apple to reset your security questions; ways of contacting them include clicking here and picking a method for your country, phoning AppleCare and asking for the Account Security team, and filling out and submitting this form.
(97886) -
Cannot set new in points or out points
Just installed Premier Elements 9. These controls are missing in my Preview panel, in the sceneline. I have one inpoint and 1 outpoint per clip, cannot add new ones. I also tried configuring keyboard short cuts for these functions, no effect. What can I do?
You are most welcome.
Video editing is a very intense process, for both the computer and for the user. At first blush, some things do not seem that intuitive. Also, there can be differences in nomenclature and also mechanics, program to program.
For a "quick start," I highly recommend Steve's books on PrE (and PSE too), from Muvipix. He takes the user (new, or old) through the program in a very easy to read fashion. Though I was very familiar with NLE's, editing and even PrPro, I got so much out of his PrE book, that I was up to speed quite quickly. His books helped me to easily locate things that I knew had to be there, but were just placed differently, than in PrPro - also some names had changed and processes grouped differently. He also covers shooting videos, and general editing tips. Much more info than even the best manuals cover. I'd typify his books as a great manual with Adobe Classroom in a Book, all in one place, and at a great price. Make it a holiday present to yourself, and you will not be sorry.
Good luck, and happy editing,
Hunt -
I woke up to see an email about an order for a calling subscription to Guatemala added to my account (while I was sleeping)
The first thing I did was log in and change my password. The problem is the site keeps giving me a message that my new password is 'too easy to guess' and won't accept it. It does this when I use a strong password with numbers, symbols and different case letters. - Yet I found the only way to change my password was to use a simple password that really IS easy to guess. - It takes that fine.Open routers set up page using http://192.168.1.1 ....you will see username & password ....leave username blank & in password use admin.....
Click on "wireless" tab.... look for "wireless security" sub-tab ...... it will show you security level ....... you can either make it WEP or disable the seurity .....
In case of WEP have a note of WEP key no-1 ...... click save settings.... -
Error: Cannot set new NIC configuration
I have ACS appliance with 4.2 when i want to the basic ip setting it throws this error ,i did reboot and image recovery nothing appears any idea what s goin on this box ? what a stupid behaviour
My folks there is no
toggle command any such available on the appliance i don't what you r reffering to
please see below
? List commands
unlock guiadmin Unlock GUI Administrator
remove guiadmin Remove GUI Administrator
add guiadmin Add GUI Administrator
backup Backup Appliance
download Download ACS Install Package
exit Log off
exportgroups Export group information to an FTP server
exportlogs Export appliance diagnostic logs to FTP server
exportusers Export user information to an FTP server
help List commands
ntpsync NTP synch with predefined NTP servers
ping Verify connections to remote computers
reboot Soft reboot appliance
restart Restart ACS services
restore Restore Appliance
rollback Rollback patched package
set Set commands
set admin Set administrator's name
set domain Set DNS domain
set hostname Set appliance's hostname
set ip Set IP configuration
set password Set administrator's password
set dbpassword Set database encryption password
set time Set timezone, enable NTP synch or set date and time
set timeout Set the timeout for serial console with no activity
show Show appliance status
shutdown Shutdown appliance
start Start ACS services
stop Stop ACS services
support Collect logs, registry and other useful information
tracert Determine the route taken to a destination
upgrade Upgrade appliance ( stage II )
also i tried setup commands and even in cisco documentation no such command available
http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/solution_engine/cliap.html
if some can elobrate more -
Hi,
I have a typical requirement which asks me to have a security manager which applies to only a part of the code and not to the whole code. I will try to explain it.
Lets say I have a class A which does something (may be it accesses files, open socket connections over network etc etc). This class A is a sort of trusted class and is allowed to do everything. Now suppose this class is built in such a manner that it can load another class B at runtime which could be any class written by any third party. So what exactly class B will do cannot be predicted because it is a third party class. Now what I want is to set a security manager only for class B that will prevent it to do any nasty things like accessing file system, shutting down vm etc. . Please note that class A can do all these things but class B should not be allowed to do these. If class B tries to do any of those things then security exception should be thrown.
Hope I made my point clear.
Please note that I am not talking of Applets but complete application so pls dont forward any replies which applies to applets.
Can anyone help pls........
regards.Hey guys,
crack_it:
If you would rather dismiss the (A)pplication (P)rogramming (I)nterface then go ahead. No disrespect to the folks at O'Reilly, but reading the API is as good as hearing it from the horses mouth. If you could humour me, just test what the API says.
I can't remember if we discussed it somewhere at some point, but I am under the impression you are locking-down you application designed in a plugin-architecture.
If this is true, you simply need to specify two entries in your policy: one for your code in app_home/lib; one for third-party code in app_home/plugins. How you load these classes are irrelevant.
As for detecting which classes trigger security checks, as mmhuda says, you can access the execution stack through the Thread class. You can retrieve information on the calling class and its method which made the call. These 'calls' are stacked i.e. most recent first. You may need to skip 3 or 4 frames (StackTraceElements) which represent the calls to access the stack information. It is troublesome. I recently implemented a similar method wihtin my Policy implementation to prevent it from being wrapped and exploited by other bogus policy implementations. I have a lookup of class.method --> class.method strings that represent permitted calls. All you would need to do is implement a lookup mapping class or class.method --> Permission or Permissions (PermissionCollection) containing what the class can do, and check against them.
Now I have stated it, I am even more convinced; you are simply reimplementing the security infrastructure,or rather, shifting the function of the Policy and AccessController to your XxxxSecurityManager. Perhaps a waste of effort.
mmhuda:
Do not confuse terms; a class can be loaded and not in the execution stack - I wouldn't be surprised if a loaded class spends 99.99% of its life sitting idle off the stack. The stack represents a 'chain' of method calls for a particular Thread. It does not represent all the loaded classes in the JVM, otherwise the stack would be 100's of frames deep.
Warm regards,
D -
Setting security manager for weblogic6.0
I need to be able to get the weblogic6.0 server to use third party security manager. I tried setting "-Dweblogic.security.manager = <security_manager_class>". Unfortunately this doesn't work.. on my test servlet I find no security manager has been set.This argument worked successfully in weblogic5.1.If you have any hints/ideas, please let me know.Thanks!!
I need to be able to get the weblogic6.0 server to use third party security manager. I tried setting "-Dweblogic.security.manager = <security_manager_class>". Unfortunately this doesn't work.. on my test servlet I find no security manager has been set.This argument worked successfully in weblogic5.1.If you have any hints/ideas, please let me know.Thanks!!
-
Security manager - applet - write/read files
Hi.
I've been trying to built a SecurityManager to allow my java applet to construct a file (*.txt or *.doc) on the server (webhosting provider) it came from. Unfortunately when I use the setSecurityManager method to set my Security Manager as the default Security Manager for that specific applet, the applet throws a SecurityException. It wouldn't allow me to change the Security Manager.
I want to change the default Security Manager so that my applet can have permission to read and write to the specified file (*.txt or *.doc). I don't want to save any kind of files on the host computer even if I can do that, I only require to save my file (*.txt or *.doc) to the computer from were the applet's classes came from.
Thank you!If there is a security manager already installed, this method first calls the security manager's checkPermission method with a RuntimePermission("setSecurityManager") permission to ensure it's ok to replace the existing security manager. This may result in throwing a SecurityException. Thus I think that you need to grant the setSecurityManager permission to your current SecurityManager to be able to replace it.
-
I created my itunes account YEARS ago!! And I can't remember the answers to my security questions? Because I cannot remember the answers I cannot make purchases in the app store. Please help me create new security questions. Please help me.
If you have a rescue email address (which is not the same thing as an alternate email address) set up on your account then you can try going to https://appleid.apple.com/and click 'Manage your Apple ID' on the right-hand side of that page and log into your account. Then click on 'Password and Security' on the left-hand side of that page and on the right-hand side you might see an option to send security question reset info to your rescue email address.
If you don't have a rescue email address (you won't be able to add one until you can answer 2 of your questions) then see if this user tip helps you get the questions reset :https://discussions.apple.com/docs/DOC-4551
e.g. you can try contacting iTunes Support :http://www.apple.com/support/itunes/contact/ - click on Contact iTunes Store Support on the right-hand side of the page, then Account Management , and then try Apple ID Account Security
or try ringing the number for Apple in your country and ask to talk to the Account Security Team : http://support.apple.com/kb/HE57 -
Control panel screen does not respond so I cannot set up new router
The printer recognises the new router and I can select it on the touch screen. But I cannot get any further. Several screen prompts do not work on touch screen: I cannot enter new router password in set up wizard or press start before pressing WPSbutton on router.
I apologize if I overlooked your first post. Base on your first pot, you were saying that you can get online wired, right? Here are the things you can do: 1. In accessing the setup page of the router, make sure the firewall on the computer is off. Turn off everything. Be it an anti-virus or a firewall. 2. Reset the router for 30 seconds. Make sure the power light of the router is blinking when you press the reset button. That is the indicator that the reset is properly press. Then power cycle the router and the modem. 3. After that, check if you can ping the IP address of the router: 192.168.1.1 (default). If so, try to access the page. Username: blank Password:admin. 4. You should be able to access the page, if not (incomplete page), adjust the security level of the browser or you can use another browser to isolate the problem. If the problem is still there, try to access the router using a different computer to isolate further. 5. Considering you are able to access the setup page of the router with no problem now, go to the status tab and check your internet IP. In doing that, we will be able to determined if the router is acting just a passthru or the other way around. 6. Then go to the wireless tab, configure the SSID (change the default one, change the channel to 11 then save. 7. Go to wireless security sub tab and enable the wireless security (WPA). Save all the settings and try to connect your wireless computer. If you are using a built-in wireless card, make sure all updates are installed on the PC, drivers and WPA patches. Try to connect using WZC... Hope it works!
-
Security Manager for decryption is not set
Hey,
I am using the Livecycle virtual appliance in a test version to evaluate its features. When I decrypt an encrypted document with the java API I get an error message that says that the security manager is not set.
Is the security Manager part of the appliance?
How can I solve that problem?
My Code:
//Set connection properties required to invoke LiveCycle ES
Properties connectionProps = new Properties();
connectionProps.setProperty(ServiceClientFactoryProperties.DSC_DEFAULT_EJB_ENDPOINT, getConfig("lc.ejb-endpoint.url", "jnp://192.168.56.50:1099"));
connectionProps.setProperty(ServiceClientFactoryProperties.DSC_TRANSPORT_PROTOCOL,Service ClientFactoryProperties.DSC_EJB_PROTOCOL);
connectionProps.setProperty(ServiceClientFactoryProperties.DSC_SERVER_TYPE, "JBoss");
connectionProps.setProperty(ServiceClientFactoryProperties.DSC_CREDENTIAL_USERNAME, getConfig("lc.ejb-endpoint.username", "jjacobs"));
connectionProps.setProperty(ServiceClientFactoryProperties.DSC_CREDENTIAL_PASSWORD, getConfig("lc.ejb-endpoint.password", "password"));
//Create a ServiceClientFactory object
ServiceClientFactory myFactory = ServiceClientFactory.createInstance(connectionProps);
//Create an EncryptionServiceClient object
EncryptionServiceClient encryptClient = new EncryptionServiceClient(myFactory);
//Unlock the password-encrypted PDF document
Document unlockedDoc = encryptClient.unlockPDFUsingPassword(pdf, pdfPassword);
return unlockedDoc;
Exceptions details:
Caused by: com.adobe.internal.pdftoolkit.core.exceptions.PDFSecurityAuthorizationException: Security Manager for decryption is not set
at com.adobe.internal.pdftoolkit.core.encryption.EncryptionImpl.getStreamEncryption(Encrypti onImpl.java:196)
at com.adobe.internal.pdftoolkit.core.encryption.EncryptionImpl.getStreamDecryptionHandler(E ncryptionImpl.java:263)
at com.adobe.internal.pdftoolkit.core.cos.CosEncryption.getStreamDecryptionStateHandler(CosE ncryption.java:675)
at com.adobe.internal.pdftoolkit.core.cos.CosStream.getStreamForCopying(CosStream.java:377)
at com.adobe.internal.pdftoolkit.core.cos.CosStream.copyStream(CosStream.java:310)
at com.adobe.internal.pdftoolkit.core.cos.CosStream.getStream(CosStream.java:422)
at com.adobe.internal.pdftoolkit.core.cos.CosObjectStream.getDataStream(CosObjectStream.java :130)
at com.adobe.internal.pdftoolkit.core.cos.CosObjectStream.<init>(CosObjectStream.java:80)
at com.adobe.internal.pdftoolkit.core.cos.CosToken.readObject(CosToken.java:576)
at com.adobe.internal.pdftoolkit.core.cos.CosToken.readIndirectObject(CosToken.java:108)
at com.adobe.internal.pdftoolkit.core.cos.XRefTable.getIndirectObject(XRefTable.java:607)
at com.adobe.internal.pdftoolkit.core.cos.CosDocument.getIndirectObject(CosDocument.java:287 5)
at com.adobe.internal.pdftoolkit.core.cos.XRefTable.getIndirectObject(XRefTable.java:599)
at com.adobe.internal.pdftoolkit.core.cos.CosDocument.getIndirectObject(CosDocument.java:287 5)
at com.adobe.internal.pdftoolkit.core.cos.CosDocument.resolveReference(CosDocument.java:1067 )
at com.adobe.internal.pdftoolkit.core.cos.CosDictionary.get(CosDictionary.java:278)
at com.adobe.internal.pdftoolkit.pdf.document.PDFCosDictionary.getDictionaryCosObjectValue(P DFCosDictionary.java:423)
at com.adobe.internal.pdftoolkit.pdf.document.PDFCatalog.getInteractiveForm(PDFCatalog.java: 156)
at com.adobe.internal.pdftoolkit.pdf.document.PDFDocument.getInteractiveForm(PDFDocument.jav a:521)
at com.adobe.formServer.utils.CommonGibsonUtils.isForm(CommonGibsonUtils.java:153)
at com.adobe.livecycle.formdataintegration.server.FormData.exportDataInternal(FormData.java: 338)
at com.adobe.livecycle.formdataintegration.server.FormData.exportData2(FormData.java:217)
... 81 moreI think you answered your own question - the PDF is password protected therefore LC can't open it to extract the data.
You'll have to remove the security first. You can do that in a process by using the Common.EncryptionService.Remove PDF Password Encryption operation.
Note that you will need the document's password to remove the security. -
I need to set up a new iPhone5 after my previous one was stolen. The new phone has iOS6 installed, the stolen one has iOS7 installed. So I cannot set it up using the Cloud. If I do a new setup, it asks me to sign in using my Apple ID. Will this not override my backed up data, preventing me from restoring my data on my new phone? I cannot install iOS7 untill the new phone has been set up. What am I to do?
How to sign in using the Apple ID that I initially used to set up the computer? I cant update my iPhoto and download pictures from Iphone :((
Try to remember any AppleID you ever may have used.
In the AppStore Application go to the "Store" menu.
It will show you the AppleiD You are currently using (in the last menu entry "View my account ....".
Use the "Sign out" command and sign in with any AppleID you ever used, ten check the "Purchases" tab of the App Store, if that will show the bundled apps.
And also, where are my pictures stored in my Air?
If you have used iPhoto to download your pictures, the photos will be stored in the iPhoto Library, a package, that is stored in the folder "Pictures" in your Home folder.
Terence Devlin has written some very useful user tips, that describe the iPhoto Library: See the links below:
iPhoto and File Management
How to Access Files in iPhoto
Exporting From iPhoto -
Just set up my new ipad Air and cannot set up my gmail account into mail ?
Just set up my new ipad Air and cannot set up my gmail account into mail ?
EASY SIMPLE FIX....
The problem is Google.
I had the same problem, couldn't install Gmail on my ipad or iphone and kept saying wrong / incorrect password, error messages. Worked for hours and hours on this.
It is Google's (optional) 2-step verification system that is to blame.
Google won't tell you this, and instead, they have come up with work arounds, and even telling people to install the Gmail iPhone/ipad app, which then limites the iphone/pad functionality when not using iphone's native mail.
FIX:
Logon to Google...
Go into your Google account preferenes
DELETE your cell number used for 2-step verification...... leave it blank
(it is optional, Google does not require you use 2-step verification)
Thats it. Your'e done.
Now set up your Gmail (now called Google) as usual on your Apple device.
You don't need 2-step (optional) verification.
There are other secure ways to do this. It is an option, but Google goes out of it's way not to tell you this.
(and a great way for Google to gleen your personal information, in the name of security)
Hope this helps someone.
Maybe you are looking for
-
I have purchased numerous programs that say they'll fix this registry problem but they haven't, From my research, quite a few people are having problems with this, i have installed and uninstalled itunes 6 times trying to figure this out and i'm out
-
Windows 7 and Multiple Monitor Issues
Alright, I have spent the past 3 days searching these forums as well as on Microsoft's support pages and all of Google to find the answer to my issue and it seems as though I'm the only one who is running into this problem. I have a 15 inch Macbook P
-
My ipod after trying to erase it, will not load after 3 days on the same screen
I was trying to erase all my data off my iPod 5th Gen, after I start the process it all starts well until the very last step (I think) will just not complete the job it's just stuck on the same screen it has been for the last 3 days ind the only thin
-
My wife has an aluminum macbook (under hardware it says it is a model 5.1) and I was wondering if the mini-display port has audio? Could I get a mini-display to HDMI adapter to hook it up to the TV and get audio as well as video?
-
Hello cham's, After creating the billing document it was not posted into finance and the system is showing accounting document is not created. How to procede to resolve this error will anyone share your expertise?.