Java poker applet- security

Hi
I am playing poker on bwin.com , in browser with java support.
I do not know lot of about java, but I would like to know what can they do to me with this applet.
Can they see my windows processes, can they take screenshots from my desktop, look at my registry files,etc...
What can they do with java.
This is mostly security question because I have official notebook, so I would like to know what can they do to me.
Best regards, poljda

PS: Yes, the Socket Permissions were added to the Class file
and not the HTML file.

Similar Messages

Oracle8i JDBC Guide Example Not Working-applet security

I was having problems with a JDK1.1.7 applet that I want to get
working with Netscape 4.07 and my Oracle 8.0.5 installation. I
am using Netscape's Signtool, the Capabilities classes, and I
have packaged the Oracle classes111.zip contents into my Signed
JAR file. I got a copy of the Oracle 8i JDBC Developer's Guide
and Reference which has an example of what I'm trying to do.
However, I get the same error running the example. Can anyone
tell me what I'm doing wrong?
Please help...
stephen
The Java console output is as follows:
# Applet debug level set to 9
netscape.security.AppletSecurityException: security.Couldn't
connect to '47.129.164.42' with origin from ''.
at
netscape.security.AppletSecurity.checkConnect(AppletSecurity.java
:914)
at
netscape.security.AppletSecurity.checkConnect(AppletSecurity.java
:926)
at
netscape.security.AppletSecurity.checkConnect(AppletSecurity.java
:795)
at
java.lang.SecurityManager.checkConnect(SecurityManager.java:718)
at java.net.Socket.<init>(Socket.java:245)
at java.net.Socket.<init>(Socket.java:123)
at oracle.sqlnet.SQLnet.Connect(SQLnet.java:176)
at oracle.sqlnet.SQLnet.Connect(SQLnet.java:146)
at oracle.sqlnet.SQLnet.Connect(SQLnet.java:120)
at oracle.jdbc.ttc7.TTC7Protocol.connect(TTC7Protocol.java:983)
at oracle.jdbc.ttc7.TTC7Protocol.logon(TTC7Protocol.java:158)
at
oracle.jdbc.driver.OracleConnection.<init>(OracleConnection.java:
93)
at
oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:146)
at java.sql.DriverManager.getConnection(DriverManager.java:90)
* at java.sql.DriverManager.getConnection(DriverManager.java:132)
at MainApplet.button2_actionPerformed(MainApplet.java:196)
at
MainApplet$MainApplet_button2_actionAdapter.actionPerformed(MainA
pplet.java:255)
at java.awt.Button.processActionEvent(Button.java:267)
at java.awt.Button.processEvent(Button.java:240)
at java.awt.Component.dispatchEventImpl(Component.java:1789)
at java.awt.Component.dispatchEvent(Component.java:1715)
at
java.awt.EventDispatchThread$EventPump.dispatchEvents(EventDispat
chThread.java:83)
at
java.awt.EventDispatchThread.run(EventDispatchThread.java:135)
at
netscape.applet.DerivedAppletFrame$AppletEventDispatchThread.run(
DerivedAppletFrame.java:911)
null

No, it is not, but this is the reason for using Netscape's
Capabilities API. It contains a PrivilegeManager that works with
Java's Applet Security Manager to grant permissions for the
applet.
Stephen Brewell (guest) wrote:
: Is the database server on the same machine as your web server?
: I don't think applets can connect to a machine other than that
: from which it was served.
null

How to run java signed applet in vista with changing IE security options

how to run java signed applet in vista with changing IE security options. If i change the IE security settings to low. it works.
without changing the security setting, how to run.

j_nanaji9 wrote:
how to run java signed applet in vista with changing IE security options. If i change the IE security settings to low. it works.
without changing the security setting, how to run.Can't be done without changing the security setting.

Re: Getting around Applet security

I don't think this is an Applet Security problem associated with accessing the xml files on the server using URL connection. This will not in itself produce the exception unless the files are on a different server to the one the Applet was loaded from.

According to http://java.sun.com/sfaq/, There is
no explicit support in the JDK applet API for
persistent state on the client side. However, an
applet can maintain its own persistent state on the
server side. That is, it can create files on the
server side and read files from the server
side.
I believe that if you use Applet.getCodeBase() you
can get the directory containing the applet, and
using that, you can specify exactly which files you
want.Accessing the XML file isn't my problem it is accessing the parser. I can't access the parser on the server and it is not an option to change the policy file on all clients to allow to use their JRE's parser.

How to create an instance (or instances) of the java card applet?

Here I have a backend, a host application (a terminal)
and a Java card that needs to be instanced to multiple cards to different users.
I wonder how you can make instances of Java card applets of different IDs or PINs.

933351 wrote:
Yes, I would like to emulate an environment first, Unfortunately I cannot help with this (never really used this tool).
I'd like to know also how to install them later on real cards.You need something that can perform the secure channel and card content management functions of the GlobalPlatform card specification. A good starting point is GPShell. It provides a simple scripting interface to be able to:
1) Authenticate with a card with developer keys
2) Load you cap file(s)
3) Instantiate any instances you require (you can have multiple instances from a single applet)
4) Send arbitrary APDU's to the card for testing.
GPShell has a README text file that is a good reference and there are sample scripts for a number of card types.
- Shane

Urgent ! writing a java card applet -APDU problem

hi
i'm fairly new to the java programming language. i'm trying to write an RSA java card applet to run on a java card simulator.
I am not sure at all what code i need to write for the CLA byte in the command APDU and what code i need to write for the INS byte in the command APDU, and where exactly to put it in my program.
if anybody knows please could you help me out.
So far i have written the code below.
thanx
louise
import javacard.framework.*;
import java.math.*;
import java.util.*;
/*the public key is the public part of the key. Anyone
can have it. It can only encrypt data, not decrypt.*/
public class publickey extends Applet{
//code of the CLA byte in the command APDU header
final static byte publickey_CLA = (byte)0x00;
//max number of characters for text message is 60
final static char MAX_TXT_MSG = 0x3c;
//MAX number of tries (3) before PIN is blocked
final static byte PIN_TRY_LIMIT = (byte)0x03;
//size of PIN must be 4 digits long
final static byte PIN_SIZE = (byte)0x04;
//below status word(SW) values are returned by applet
//in certain circumstances:
//signal that the PIN verification failed
final static short SW_PIN_VERIFICATION_FAIL = 0x6300;
//signal that PIN validation required for txt msging
final static short SW_PIN_VERIFICATION_REQUIRED = 0x630;
//instance variables declaration
OwnerPIN pin; //variable for holding owners pin
BigInteger n,e;
String owner;//variable for holding owners name
/*make a public key. Do not do it yourself, but
make a public key from a private key.*/
publickey(String iowner,BigInteger in,BigInteger ie){
owner=iowner;
n=in;
e=ie;
public void process (APDU apdu) {
byte[] buffer = apdu.getBuffer();
//check Select APDU command
if((buffer[ISO7816.OFFSET_CLA] ==0) &&
(buffer[ISO7816.OFFSET_INS] ==(byte) (0xA4)) )
return;
if(buffer[ISO7816.OFFSET_CLA] !=publickey_CLA)
ISOException.throwIt
(ISO7816.SW_CLA_NOT_SUPPORTED);
/*read the key back from a string.*/
publickey(String from){
StringTokenizer st=new StringTokenizer(from," ");
owner=st.nextToken();
n=readBI(st.nextToken());
e=readBI(st.nextToken());
/*use the key to encrypt a 'message' m. m should be a
number from 1 to n (n not included).
use makemessage to convert your message to a BigInteger.
BigInteger encrypt(BigInteger m){
return m.modPow(e,n);
/*make a string from this key.*/
public String toString(){
return owner+" "+printBI(n)+" "+printBI(e);
/*help methods for reading and writing:*/
final static int radix=36;
static String printBI(BigInteger b){
return b.toString(radix);
static BigInteger readBI(String s){
return new BigInteger(s,radix);
/* these methods convert an arbitrary message,
in the form of an array of bytes, to a message
suitable for encryption. To do this random bits
are added (this is needed to make cracking of the
system harder), and it is converted to a BigInteger.*/
BigInteger makemessage(byte[] input){
/*to understand this part of the program,
read the description of the BigInteger constructor
(in the standard java help). */
if(input.length>128 ||
input.length*8+24>=n.bitLength())
return new BigInteger("0"); //error! message to long.
byte[] paddedinput=new byte[n.bitLength()/8-1];
for(int i=0;i<input.length;i++)
paddedinput[i+1]=input;
paddedinput[0]=(byte)input.length;
for(int i=input.length+1;i<paddedinput.length;i++)
paddedinput[i]=(byte)(Math.random()*256);
return new BigInteger(paddedinput);
/*the inverse of makemessage.*/
static byte[] getmessage(BigInteger b){
byte[] paddedoutput=b.toByteArray();
byte[] output=new byte[paddedoutput[0]];
for(int i=0;i<output.length;i++)
output[i]=paddedoutput[i+1];
return output;
class privatekey{
/*the data of a key*/
BigInteger n,e,d;
String owner;
int bits;
Random ran;
/*unimportant things, needed for calculations:*/
static int certainty=32;
static BigInteger one=new BigInteger("1"),
three=new BigInteger("3"),
seventeen=new BigInteger("17"),
k65=new BigInteger("65537");
/*make a new key. supply the name of the owner of the
key, and the number of bits.
owner: all spaces will be replaced with underscores.
bits: the more bits the better the security. Every
value above 500 is 'safe'. If you are a really paranoid
person, you should use 2000.*/
privatekey(String iowner,int ibits){
BigInteger p,q;
bits=ibits;
owner=iowner.replace(' ','_');//remove spaces from owner name.
ran=new Random();
p=new BigInteger(bits/2,certainty,ran);
q=new BigInteger((bits+1)/2,certainty,ran);
n=p.multiply(q);
BigInteger fi_n=fi(p,q);
e=chooseprimeto(fi_n);
d=e.modInverse(fi_n);
/*read the key back from a string*/
privatekey(String from){
StringTokenizer st=new StringTokenizer(from," ");
st.nextToken();
n=readBI(st.nextToken());
e=readBI(st.nextToken());
d=readBI(st.nextToken());
/*some help methods:*/
static BigInteger fi(BigInteger prime1,BigInteger prime2){
return prime1.subtract(one).multiply(prime2.subtract(one));
static BigInteger BI(String s)
{return new BigInteger(s);}
BigInteger chooseprimeto(BigInteger f){
/*returns a number relatively prime to f.
this number is not chosen at random, it first
tries a few primes with few 1's in it. This
doesn't matter for security, but speeds up computations.*/
if(f.gcd(three).equals(one))
return three;
if(f.gcd(seventeen).equals(one))
return seventeen;
if(f.gcd(k65).equals(one))
return k65;
BigInteger num;
do{
num=new BigInteger(16,ran);
}while(!f.gcd(num).equals(one));
return num;
final static int radix=36;
static String printBI(BigInteger b){
return b.toString(radix);
static BigInteger readBI(String s){
return new BigInteger(s,radix);
/*returns the public key of this private key.*/
publickey getpublickey(){
return new publickey(owner,n,e);
/*the same encryption that the public key does.*/
BigInteger encrypt(BigInteger m){
return m.modPow(e,n);
/*decryption is the opposite of encryption: it
brings the original message back.*/
BigInteger decrypt(BigInteger m){
return m.modPow(d,n);
public String toString(){
return owner+" "+printBI(n)+" "+printBI(e)+" "+printBI(d);
/*this main demonstrates the use of this program.*/
public static void main(String[] ps){
say("************ make key:");
privatekey priv=new privatekey("sieuwert",92);
publickey pub=priv.getpublickey();
say("the public key:"+priv);
say("************ encrypt message:");
byte[] P="RUOK?".getBytes();
BigInteger Pc=pub.makemessage(P);
say("converted:\t"+printBI(Pc));
BigInteger C=pub.encrypt(Pc);
say("coded message: "+printBI(C));
say("************ decrypt message:");
BigInteger Pc2=priv.decrypt(C);
say("decoded:\t"+printBI(Pc2));
byte[] P2=publickey.getmessage(Pc2);
say("deconverted: "+new String(P2));
static void say(String s){
System.out.println(s);

Command APDU is not written in your source code, rather it is sent from PC or programmed Card Acceptance Device/ Card Reader/ Terminal.
The code installed in the Java Card should be able to handle the Command APDU received and process it accordingly, and finally your code should be able to send out response APDU.
You may think your code as a decoder, to retrieve each byte (CLA, INS, P1, P2, DATA, LC) using the Java Card API, you should be able to do it.
Also, I notice in your code that you want to work out with strings, but Java Card does not support strings, chars, long, float, double ...
to send out reponse APDU, there are certain steps that you can use, not just simply print like ordinary J2SE may use.
hope this will help u

Applet Security loading & running on local PC

I understnd the limits of an Applet loaded from a server to a local PC. What I am trying to do is test my Applet (JApplet actually) as I create it. I have some GIF and JPG files that need to be loaded from the same DIR that the JApplets HTML file is in. When I run the Applet in appletviewer it works fine, when I run it in IE5.5 I get security errors and the Applet fails to initialize.
I have read the online section on applet security. It seems to me that my applet 'thinks' it is being loaded from a remote server.
The online HTML talks about a properties file that can be edited to include the rights to read and/or write to specific local files. Anybody know the name of this file ??
It should not make a difference that I am doing my work on a W2K Server, should it ???
Any specific help would be greatly appreciated !!

java.security.AccessControlException: access denied (java.io.FilePermission CHR.gif read)
All I try to do in my code is place a GIF as am Icon on a JButton.
//add buttons to controlPanel
for(int i=0;i<siteNames.length; i++){
icon = new ImageIcon(icons);
JButton b = new JButton(siteNames[i],icon);
b.addActionListener(listener);
b.setActionCommand(siteNames[i]);
controlPanel.add(b);
Where icons[i] is a string listing of GIF files. The code works fine in IE5.5 without the icons on the buttons. Only when I put the icons on the buttons do I get the access denied error.
Any Ideas ????
Could it be the fact that I am doing my coding and testing on a W2K Server ????

Applet security -- accessing files over the Web.

I guess the topic pretty much sums up my question..
I have an applet and I want to read a file from over the web.
After creating a URL, I try to retrieve an inputstream by calling openStream() but I get all the java.security.AccessControlException: access denied rubbish..
How do I get it working ?

The applet can only read data from the server where it is saved. For security purposes applets have limited capabilities. They can't write data to a remote hard drive or read data from remote machines. A way around this is to create a "trusted applet". Basically what it does is informs any machine you are trying to access that you wrote this applet and are responsible for any negative outcome. There is a tutorial provided by Sun that can explain this better than I can. Here is the link:
http://java.sun.com/security/signExample/index.html
Good luck.

How to load a java card applet into a java card

Dear All,
I am a novice to java card technology..
I have done some search on how to load a java card applet into a smart card but haven't found a satisfactory answer. I have read about installer.jar and scriptgen tool but I want to load the applet from a java program and not from command line. It would be of great help if somebody can help me out.
If somebody can share a sample program which load a javacard applet(.CAP file) into a smart card, I will be very thankful.
I am able to find some client applications which help us send APDU commands and recieve response APDU's to interact with an applet loaded on to the smart card but not application which actually load the applet.
I have heard of OCF and GP.. some say that OCF technology is outdated and no longer in use.. can somebosy throw some light on this too..
cheers,
ganesh

hi siavash,
thanks for the quick response.. i checked out GPShell as suggested, it looked like a tool by which one can load an applet on to card and send some sample apdu commands... but I want to load the applet from the code.
My application should look something like this.. it will be a swing applicaton where I have a drop down with a list of readers, I select the one desired and then click on "LOAD" after inserting a blank java card, at this point my applet which is stored in my DB should get loaded on to the java card. The next step should be to personalize it where I enter the values for the static variables of my applet and click "PERSONALIZE", at this point all these values should be embedded into APDU commands and sent to the java card for processing.
For achieving this I am yet to find a comprehensive sample or documentation on the net.
Please help...
regards,
ganesh

Java application communicate with java card applet without java card

Can I write java application to communicate with java card applet without using java card?
Can I send APDU to java card applet on computer(not install in java card)? If it's not, how can I write?
Best Regard,
Thanawan

Your JCOP simulator implements a JCVM/JCRE according
to specs. The CREF does that same thing excepts it's
only simulates the API without crypto or third party
applets. JCOP simulator is more then that. They are using thesame_ codebase for simulator and for oncard JCVM. Basically you are dealing with the same environment in both cases.

Is it possible to run a website built in Java and applet from Safari browser in iPad

Is it possible to run a website built in Java and applet from Safari browser in iPad?

Java isn't supported on the iPad

Java.lang.SecurityException: [Security:090398]Invalid Subject: WEBLOGIC 9.1

Hi
I am getting this error when I am making an EJB method which resides in a different weblogic 9.1 server.
I have enaled the trust between my two domains. Set the required class path settings.
My client call is from a JSP , say client.jsp.
Here I get remote object of the EJB and calls the required method
Now
1) My EJB calls are succesful when I DO NOT secure it
2) but when I make it is secured , ie when I
include the jsp in secured URL ie. under <security-constraint><url-pattern>client.jsp</> in web.xml
, it gives me the follwing error
The stack trace is given below
java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[com.ebreviate.security.wl9realm.EBRUser@a09a08, ess, everyone]
at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:191)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:315)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:250)
at weblogic.jndi.internal.ServerNamingNode_910_WLStub.lookup(Unknown Source)
at weblogic.jndi.internal.WLContextImpl.lookup(WLContextImpl.java:374)
Truncated. see log file for complete stacktrace
Any idea why it is ?
Please let me know
Thanks
Binu
Edited by binurajkr at 01/25/2008 4:36 AM

Hi. Contact official BEA Support. This is likely
to be a known issue with a patch available to fix it.
Joe
binu raj wrote:
Hi
I am getting this error when I am making an EJB method which resides in a different weblogic 9.1 server.
I have enaled the trust between my two domains. Set the required class path settings.
My client call is from a JSP , say client.jsp.
Here I get remote object of the EJB and calls the required method
Now
1) My EJB calls are succesful when I DO NOT secure it
2) but when I make it is secured , ie when I
include the jsp in secured URL ie. under <security-constraint><url-pattern>client.jsp</> in web.xml
, it gives me the follwing error
The stack trace is given below
java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[com.ebreviate.security.wl9realm.EBRUser@a09a08, ess, everyone]
at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:191)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:315)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:250)
at weblogic.jndi.internal.ServerNamingNode_910_WLStub.lookup(Unknown Source)
at weblogic.jndi.internal.WLContextImpl.lookup(WLContextImpl.java:374)
Truncated. see log file for complete stacktrace
Any idea why it is ?
Please let me know
Thanks
Binu
Edited by binurajkr at 01/25/2008 4:36 AM

Java.lang.SecurityException: [Security:090398]Invalid Subject

Hi
          I am getting this error when I am making an EJB method which resides in a different weblogic 9.1 server.
          I have enaled the trust between my two domains. Set the required class path settings.
          My client call is from a JSP , say client.jsp.
          Here I get remote object of the EJB and calls the required method
          Now
          1) My EJB calls are succesful when I DO NOT secure it
          2) but when I make it is secured , ie when I
          include the jsp in secured URL ie. under <security-constraint><url-pattern>client.jsp</> in web.xml
          , it gives me the follwing error
          The stack trace is given below
          java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[com.ebreviate.security.wl9realm.EBRUser@a09a08, ess, everyone]
          at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:191)
          at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:315)
          at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:250)
          at weblogic.jndi.internal.ServerNamingNode_910_WLStub.lookup(Unknown Source)
          at weblogic.jndi.internal.WLContextImpl.lookup(WLContextImpl.java:374)
          Truncated. see log file for complete stacktrace
          Any idea why it is ?
          Please let me know
          Thanks
          Binu

I got this issue resolved by setting
          Context.SECURITY_PRINCIPAL, "" , before the RMI ejb call
          Binu

Java.lang.SecurityException: [Security:090398]Invalid Subject: admin

I have a class that is used to check the status of all managed server in a domain. I use this class to check on the status of multiple domains.
I have a for loop over all the domains and then invoke the method below, one for each domain (I instantiate the class anew for each domain)
The 1st domain connects and returns the status properly. However on subsequent iterations thru the look I get the following SecuriyException below. I have tried a number of things such as setting MBeanHome to null etc but this error repeats anytime I connect to N+1 domains.
Is there a fix for this.
Note: I am using WLS 8.1 SP3 thru 5. And I know the username & pwd is correct cause I can connect using to the admin console using the same username & password and am part of the Administrators group.
Exception on the client on N+1 connect attemp:
java.lang.SecurityException: [Security:090398]Invalid Subject: admin
at weblogic.rjvm.BasicOutboundRequest.sendReceive(BasicOutboundRequest.j
ava:108)
at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:137)
at weblogic.management.internal.AdminMBeanHomeImpl_815_WLStub.getDomainN
ame(Unknown Source)
Exception on the server:
####<Mar 28, 2006 2:59:51 PM CST> <Warning> <RMI> <htx6056> <AdminServer> <Execu
teThread: '2' for queue: 'weblogic.socket.Muxer'> <<WLS Kernel>> <> <BEA-080003>
<RuntimeException thrown by rmi server: weblogic.rmi.internal.BasicServerRef@10
2 - hostID: '-4547912678907759832S:htx6056.cce.hp.com:[10250,10250,10251,10251,1
0250,10251,-1,0,0]:arc_prd1:AdminServer', oid: '258', implementation: 'weblogic.
management.internal.AdminMBeanHomeImpl@1e22632'
java.lang.SecurityException: [Security:090398]Invalid Subject: admin.
java.lang.SecurityException: [Security:090398]Invalid Subject: admin
The code:
public void checkWebLogicServerState( String user, String pass, String url ) throws Exception {
          MBeanHome home = Helper.getAdminMBeanHome( user, pass, url );
          Set beans = home.getMBeansByType( "Server", home.getDomainName( ));
          for( Iterator iter = beans.iterator( ); iter.hasNext( );){
               WebLogicMBean bean = (WebLogicMBean)iter.next( );
               WebLogicObjectName objName = bean.getObjectName( );
               String serverName = objName.getName( );
               String location = objName.getLocation( );
               ServerRuntimeMBean serverRuntimeMBean = null;
               try {
                    serverRuntimeMBean = (ServerRuntimeMBean)home.getMBean( serverName, "ServerRuntime", home.getDomainName( ), serverName);
                    String state = serverRuntimeMBean.getState( );
                    System.out.println( "\t[" + serverName + "] IS " + state + "." );
               } catch( Exception ex ) {
                    System.out.println( "\t[" + serverName + "] IS NOT RUNNING." );
     }

I worked around the problem by removing the usage of the weblogic.management.Helper and using standard JNDI lookups instead.
Clearly there is a bug in the Helper class that stores securtiy information in a static variable since it cannot be re used within the same JVM/Classloader without sharing the security information.
Used instead:
               Environment env = new Environment();
               env.setProviderUrl( url );
               env.setSecurityPrincipal( user );
               env.setSecurityCredentials( pass );
               Context ctx = env.getInitialContext( );
               home = (MBeanHome)ctx.lookup( MBeanHome.ADMIN_JNDI_NAME );

Java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[

HI,
I am trying to monitor multiple weblogic servers, I am getting the exception when the program is trying to read multiple domains of the same weblogic server version 8.1.
Can any one help me in getting this fix programatically using weblogic.management.*;
I have searched all the sites where I got only a perticular solution which states to maintain the same domain level credentials.
please reply me back if there is a programatical approach to fix this exception.
The exception is given below:
java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[weblogic, Administrators]
     at weblogic.rjvm.BasicOutboundRequest.sendReceive(BasicOutboundRequest.java:108)
     at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:138)
     at weblogic.management.internal.AdminMBeanHomeImpl_811_WLStub.getDomainName(Unknown Source)
     at MonitorServers.getDataWeblogic(MonitorServers.java:138)
     at MonitorServers.getServers(MonitorServers.java:89)
     at MonitorServers.main(MonitorServers.java:352)
Caused by: java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[weblogic, Administrators]
     at weblogic.security.service.SecurityServiceManager.seal(SecurityServiceManager.java:682)
     at weblogic.rjvm.MsgAbbrevInputStream.getSubject(MsgAbbrevInputStream.java:181)
     at weblogic.rmi.internal.BasicServerRef.acceptRequest(BasicServerRef.java:814)
     at weblogic.rmi.internal.BasicServerRef.dispatch(BasicServerRef.java:299)
     at weblogic.rjvm.RJVMImpl.dispatchRequest(RJVMImpl.java:920)
     at weblogic.rjvm.RJVMImpl.dispatch(RJVMImpl.java:841)
     at weblogic.rjvm.ConnectionManagerServer.handleRJVM(ConnectionManagerServer.java:222)
     at weblogic.rjvm.ConnectionManager.dispatch(ConnectionManager.java:794)
     at weblogic.rjvm.t3.T3JVMConnection.dispatch(T3JVMConnection.java:570)
     at weblogic.socket.NTSocketMuxer.processSockets(NTSocketMuxer.java:105)
     at weblogic.socket.SocketReaderRequest.execute(SocketReaderRequest.java:32)
     at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:197)
     at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:170)
Thanks in advance

Hi,
I think that if you don't specify the credentials, the current one will be used to connect to the server.
Try to specify the guest identity by explicitely adding the following properties to override the current identity
               properties.put(Context.SECURITY_PRINCIPAL, "");
properties.put(Context.SECURITY_CREDENTIALS, "");
Otherwise you will need to setup a trust between the servers.
I Hope this helps.
Giorgio Anastopoulos

Java poker applet- security

Similar Messages

Maybe you are looking for