Netscape 6 plugin applet security

Similar Messages

• Oracle8i JDBC Guide Example Not Working-applet security

  I was having problems with a JDK1.1.7 applet that I want to get
  working with Netscape 4.07 and my Oracle 8.0.5 installation. I
  am using Netscape's Signtool, the Capabilities classes, and I
  have packaged the Oracle classes111.zip contents into my Signed
  JAR file. I got a copy of the Oracle 8i JDBC Developer's Guide
  and Reference which has an example of what I'm trying to do.
  However, I get the same error running the example. Can anyone
  tell me what I'm doing wrong?
  Please help...
  stephen
  The Java console output is as follows:
  # Applet debug level set to 9
  netscape.security.AppletSecurityException: security.Couldn't
  connect to '47.129.164.42' with origin from ''.
  at
  netscape.security.AppletSecurity.checkConnect(AppletSecurity.java
  :914)
  at
  netscape.security.AppletSecurity.checkConnect(AppletSecurity.java
  :926)
  at
  netscape.security.AppletSecurity.checkConnect(AppletSecurity.java
  :795)
  at
  java.lang.SecurityManager.checkConnect(SecurityManager.java:718)
  at java.net.Socket.<init>(Socket.java:245)
  at java.net.Socket.<init>(Socket.java:123)
  at oracle.sqlnet.SQLnet.Connect(SQLnet.java:176)
  at oracle.sqlnet.SQLnet.Connect(SQLnet.java:146)
  at oracle.sqlnet.SQLnet.Connect(SQLnet.java:120)
  at oracle.jdbc.ttc7.TTC7Protocol.connect(TTC7Protocol.java:983)
  at oracle.jdbc.ttc7.TTC7Protocol.logon(TTC7Protocol.java:158)
  at
  oracle.jdbc.driver.OracleConnection.<init>(OracleConnection.java:
  93)
  at
  oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:146)
  at java.sql.DriverManager.getConnection(DriverManager.java:90)
  * at java.sql.DriverManager.getConnection(DriverManager.java:132)
  at MainApplet.button2_actionPerformed(MainApplet.java:196)
  at
  MainApplet$MainApplet_button2_actionAdapter.actionPerformed(MainA
  pplet.java:255)
  at java.awt.Button.processActionEvent(Button.java:267)
  at java.awt.Button.processEvent(Button.java:240)
  at java.awt.Component.dispatchEventImpl(Component.java:1789)
  at java.awt.Component.dispatchEvent(Component.java:1715)
  at
  java.awt.EventDispatchThread$EventPump.dispatchEvents(EventDispat
  chThread.java:83)
  at
  java.awt.EventDispatchThread.run(EventDispatchThread.java:135)
  at
  netscape.applet.DerivedAppletFrame$AppletEventDispatchThread.run(
  DerivedAppletFrame.java:911)
  null

  No, it is not, but this is the reason for using Netscape's
  Capabilities API. It contains a PrivilegeManager that works with
  Java's Applet Security Manager to grant permissions for the
  applet.
  Stephen Brewell (guest) wrote:
  : Is the database server on the same machine as your web server?
  : I don't think applets can connect to a machine other than that
  : from which it was served.
  null

• Here's how you use JavaMail in a Netscape 4.x applet

  First of all... Sun has said that they are working on patching JavaMail for the next minor release so that it will be usable with Netscape.
  But for those with itchy pants... here's how you do to send mail from a Netscape 4.x applet without using the Java Plug-in.
  First of all... you'll need to sign the applet. Now I'm not so good with singing tools so I don't know if Netscape 4.x allows using Sun's signing tools. I used Netscapes own "signtool" just to be sure.
  You'll need to unjar activation.jar and mail.jar (or mailapi.jar plus smtp.jar). Use signtool to sign and jar your own classfiles plus those from the jar-files mentioned.
  This creates a small problem though: atcivation.jar and mail.jar has files in the META-INF directory. Netscapes signtool ignores these files. So you'll have to patch around that.
  Using the "sendfile.java" demo as basis... here's how you deal with the missing configuration files.
      // You'll have to request this privilige or Netscape will bolt on you.
      // If you need cross-platfor compatibility you'll need to wrap this up or IE
      // will be really cranky at this. Try by doing something you know
      // IE accepts but that Netscape don't. Catch the  exception as just an
      // Exception and do the following in the catch.
      try {
        PrivilegeManager.enablePrivilege("UniversalPropertyRead");
      } catch (netscape.security.ForbiddenTargetException e2) {
        System.out.println("Failed! Permission to read system properties denied by user.");
      } catch (Exception e2) {
        System.out.println("Failed! Unknown exception while enabling privilege.");
        e2.printStackTrace(System.out);
      // create some properties and get the default Session
      Properties props = null;
      props = System.getProperties();
      props.put("mail.smtp.host", mailhost);
      // The mailcap command map needs a missing
      // config file. So you'll have to hardwire the different
      // commands like this.
      javax.activation.MailcapCommandMap commandMap = new javax.activation.MailcapCommandMap();
      commandMap.addMailcap("text/plain;;          x-java-content-handler=com.sun.mail.handlers.text_plain");
      commandMap.addMailcap("text/html;;          x-java-content-handler=com.sun.mail.handlers.text_html");
      commandMap.addMailcap("text/xml;;          x-java-content-handler=com.sun.mail.handlers.text_xml");
      commandMap.addMailcap("multipart/*;;          x-java-content-handler=com.sun.mail.handlers.multipart_mixed");
      commandMap.addMailcap("message/rfc822;;     x-java-content-handler=com.sun.mail.handlers.message_rfc822");
      commandMap.addMailcap("image/gif;;          x-java-view=com.sun.activation.viewers.ImageViewer");
      commandMap.addMailcap("image/jpeg;;          x-java-view=com.sun.activation.viewers.ImageViewer");
      commandMap.addMailcap("text/*;;          x-java-view=com.sun.activation.viewers.TextViewer");
      commandMap.addMailcap("text/*;;          x-java-edit=com.sun.activation.viewers.TextEditor");
      javax.activation.MailcapCommandMap.setDefaultCommandMap(commandMap);
      // Now here is a really weird thing. This class - MimeUtility - will
      // be used later on. But the ClassLoader in Netscape seems
      // to be broken. I downloaded J2EE and fiddled with this class a bit.
      // It seems that the following line will get you around this problem.
      Object o = MimeUtility.class;
      try {
        // create a message
        Session session = Session.getDefaultInstance(props, null);
        session.setDebug(true);
        MimeMessage msg = new MimeMessage(session);
        msg.setFrom(new InternetAddress(from));
        InternetAddress[] address = {new InternetAddress(to)};
        msg.setRecipients(Message.RecipientType.TO, address);
        msg.setSubject("Message from scratchpad");
        // create and fill the first message part
        MimeBodyPart mbp1 = new MimeBodyPart();
        mbp1.setText(message);
        // create the second message part
        MimeBodyPart mbp2 = new MimeBodyPart();
        // attach the file to the message
        // This is not the same as the original.
        // The ByteArrayDataSource class helps you attach an arbitrary file-type.
        // The code for that is found here:
        // http://forums.java.sun.com/thread.jsp?forum=43&thread=73819
        DataSource ds = new ByteArrayDataSource(imageData, "image/gif", "image.gif");
        mbp2.setDataHandler(new DataHandler(ds));
        mbp2.setFileName("image.gif");
        // create the Multipart and its parts to it
        Multipart mp = new MimeMultipart();
        mp.addBodyPart(mbp1);
        mp.addBodyPart(mbp2);
        // add the Multipart to the message
        msg.setContent(mp);
        // set the Date: header
        msg.setSentDate(new Date());
        // send the message
        // Transport.send() will give you exception in Netscape.
        // Here is how you do what that method does.
        msg.saveChanges();
        com.sun.mail.smtp.SMTPTransport transport = new com.sun.mail.smtp.SMTPTransport(session, null);
        transport.connect();
        transport.sendMessage(msg, address);
        transport.close();     
      catch (MessagingException mex) {
        mex.printStackTrace();
        Exception ex = null;
        if ((ex = mex.getNextException()) != null) {
          ex.printStackTrace();
      }Enjoy
  /Michael

  Typical... i knew I'd fumble. There is one more thing you need to do.
  Download J2EE, source code edition and patch the file javax.mail.internet.MimeUtility.java
  Change the line
  InputStream is = javax.mail.internet.MimeUtility.class.getResourceAsStream("/META-INF/javamail.charset.map");...to...
  InputStream is = javax.mail.internet.MimeUtility.class.getResourceAsStream("/javamail.charset.map");Also, after you unjar the jarfiles and before you run the signtool, move the file META-INF/javamail.charset.map to the partent of the META-INF directory.
  /Michael

• Re: Getting around Applet security

  I don't think this is an Applet Security problem associated with accessing the xml files on the server using URL connection. This will not in itself produce the exception unless the files are on a different server to the one the Applet was loaded from.

  According to http://java.sun.com/sfaq/, There is
  no explicit support in the JDK applet API for
  persistent state on the client side. However, an
  applet can maintain its own persistent state on the
  server side. That is, it can create files on the
  server side and read files from the server
  side.
  I believe that if you use Applet.getCodeBase() you
  can get the directory containing the applet, and
  using that, you can specify exactly which files you
  want.Accessing the XML file isn't my problem it is accessing the parser. I can't access the parser on the server and it is not an option to change the policy file on all clients to allow to use their JRE's parser.

• Applet Security loading & running on local PC

  I understnd the limits of an Applet loaded from a server to a local PC. What I am trying to do is test my Applet (JApplet actually) as I create it. I have some GIF and JPG files that need to be loaded from the same DIR that the JApplets HTML file is in. When I run the Applet in appletviewer it works fine, when I run it in IE5.5 I get security errors and the Applet fails to initialize.
  I have read the online section on applet security. It seems to me that my applet 'thinks' it is being loaded from a remote server.
  The online HTML talks about a properties file that can be edited to include the rights to read and/or write to specific local files. Anybody know the name of this file ??
  It should not make a difference that I am doing my work on a W2K Server, should it ???
  Any specific help would be greatly appreciated !!

  java.security.AccessControlException: access denied (java.io.FilePermission CHR.gif read)
  All I try to do in my code is place a GIF as am Icon on a JButton.
  //add buttons to controlPanel
          for(int i=0;i<siteNames.length; i++){
              icon = new ImageIcon(icons);
  JButton b = new JButton(siteNames[i],icon);
  b.addActionListener(listener);
  b.setActionCommand(siteNames[i]);
  controlPanel.add(b);
  Where icons[i] is a string listing of GIF files. The code works fine in IE5.5 without the icons on the buttons. Only when I put the icons on the buttons do I get the access denied error.
  Any Ideas ????
  Could it be the fact that I am doing my coding and testing on a W2K Server ????

• ActiveX bridge uses applet security model???

  Hello,
  During execution my ActiveX bean has no permissions to make something, but I need it at least able to access files. ActiveX bridge documentation says that the bean is executed with all permissions. Is something was changed in 1.5 release?
  Anton

  Seems like axbridge doesnt use the applet security model if you have the following folder structure:
  <JRE>\axbridge\bin\mybean.dll
  <JRE>\axbridge\lib\mybean.jar
  But then there are a lot of bugs, and the bug workaround is to rename the lib folder after registering the dll (and updating the path to the jarfile in the registry):
  <JRE>\axbridge\bin\mybean.dll
  <JRE>\axbridge\bug_workaround_lib\mybean.jar
  But then we get another problem: the applet security model is turned on...

• Netscape Applet Security showDocument

  I posted this on the programming forum, but I thought I'd try in here also.
  I am writing a file to the client's filesystem and trying to open that local file in an applet using:
  url = new URL("file", "", filename);
  // Open a new browser window targeting the file url
  this.getAppletContext().showDocument(url, "_blank");
  The.java.policy has been modified to grant all permissions This eventually will be a signed applet. The current configuration works okay on IE (6.0). Unfortunately when I run the applet from Netscape 7.1 Nothing happens. There is no error message. The odd thing about this is that I am able to actually write the file to the client filesystem, but the document does not launch in a new window.
  I tried it also using Netscape 4.8 and got the following error:
  netscape.javascript.JSException: call does not support self.open
  at sun.plugin.javascript.navig.Window.call(Unknown Source)
  at sun.plugin.viewer.context.DefaultPluginAppletContext$1.run(Unknown Source)
  at java.lang.Thread.run(Unknown Source)
  Again I was permitted to write the files to the local filesystem so I can't understand why I cannot show the document.
  What might be the problem? (OS is Windows 2000)

  I don't know if I can help you with this.
  I am able to run the following applet successfully in my Netscape 7.1 browser on Windows 2000 professional. I am including it for you to try. Although I have a feeling it is probably similar enough to what you have already tried, my interest in this topic has to do with the fact that I am having the same error as you when I run an applet in Camino v0.7 on Mac OS X 10.2 and also an older version of Mozilla 1.0.2 also on the Mac. Like you, I don't see any error messages. The browser simply does not redirect to the new page. The thought here is that if you are not able to redirect a user using an applet that will redirect a user on my own Netscape/Windows environment, maybe then the problem will turn out to be one of configuration (? or not) and hopefully I can solve it somehow on Camino. In any case, I'll be watching this thread hoping for a solution for you.
  public class RedirectApplet extends java.applet.Applet
       public void init()
       public void start()
            redirect();
       }// end start
       private void redirect()
            try{
            java.net.URL url
            = new java.net.URL(getCodeBase() + "/WebPage.html");
            this.getAppletContext().showDocument(url, "_self");
            catch(Exception e)
                 System.out.println("Error with redirection - " + e.getMessage());
       }// end method
  }// end applet class

• Netscape problem with applet servlet communication

  Netscape always seems to get in the way when you use applets, right?
  I have a nice set of code from a book that shows how to do applet->servlet stuff.
  But although I'm doing this all in the privacy of my own localhost Netscape immediately put a spanner in the works with a security exception and wouldn't let the servlet respond.
  Anyone know what to do here.
  The answer is to use Internet Explorer, possibly, but I'm in linux, and I can't get Opera to work with java yet.
  Anyone got any ideas? Thanks.

  I encountered a security exception with Netscape in Linux when attempting applet-servlet stuff but that's prpbably because I haven't got the plugin for that yet...in fact I don't know if a plugin is available for sure...let me know if you do. As a matter of fact I plan on using the HTMLConverter this weekend to find out if it'll download a plugin.
  The applet-servlet thing runs fine in IE and Netscape on my Windows box as long as the plugins are there and I use the appropriate plugin tags in the HTML
  Post what you find out,
  Brad

• Netscape using plugin doesn't display Japanese characters in a tree node

  Hi,
  I have a problem displaying a swing tree node name in Japanese. The problem only occurs on Netscape browsers. When I run the same applet with Internet Explorer, all the Japanese displays correctly. Now, with Netscape, the node name is displayed in little rectangle characters but the tooltip is displayed in Japanese. I don't believe I have any problem with the Java code because it works with IE.
  I am using the java 1.3.1_01 plugin on a Windows NT machine that has a Japanese OS. I've also installed Japanese versions of Netscape. Also, Netscape is able to display my help files in Japanese correctly, so I am wondering if the problem is with the java plugin.
  Any clues?
  Many thanks

  Found the problem. I set a font type of Arial. It's best to set the type to MS Gothic, or dont' set it at all so the system default font is used.

• Java applet security file.list()

  I am trying to read the directory structure from a signed applet. I
  have created the applet and provided it with the
  UniversalFileAccess. I am able to read a specific file, and see all
  the contents of the file. I am wanting to performa simple
  directory listing vie the following code.
  My browser is Communictor 4.76 on Win 2000.
  blah.. blah...
  if(browser.indexOf("netscape") >= 0){
  //Assert Netscape permissions
  try{
  // tried UniversalFileRead, UniversalFileAccess,
  UniversalPropertyWrite,
  PrivilegeManager.enablePrivilege("UniversalFileRead");
  System.out.println("Netscape now has UniversalFileRead
  privilege.");
  } catch (netscape.security.ForbiddenTargetException e1) {
  System.out.println("Permission to read file system denied by
  user.");
  e1.printStackTrace();
  } catch(Throwable e){
  System.out.println("Could not enable privilege." +
  e.getMessage());
  e.printStackTrace();
  try {
  File f = new File("c:\\temp\\");
  String [] fileList = a.list();
  } catch (Throwable e) {
  System.out.println("File List failed");
  e.printStackTrace();
  I keep getting a secuity exception that I do not have priveledes to
  perform this action.
  Can anyone help!!!!!!!! I am on a deadline, and this is working just
  fine with IE.
  Please reply directly to me, as this is the first time I've ever posted
  to this newsgroup. My email is [email protected]
  Thanks,
  James Kurfees

  This question has been asked many times in these forums.
  There is no way to prevent this from a determined reverse engineer.
  Search for java obfuscators, which can help a little bit.
  The only way to prevent code stealing is to run it on your own server,
  which means not to use applets, but servlets/JSP. I am sure this is
  not what you want to hear.

• Java Applet + Security: blacklist: hasBeenModifiedSince

  I am trying to understand java blacklist.
  I am working on an applet and in my java console I get the following errors.
  security: blacklist: hasBeenModifiedSince 1366405605649 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405649631 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405733469 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405327880 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405327880 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405992865 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405327978 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405992725 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405327719 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405993102 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405802813 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405802919 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405324808 (we have 1366405324565)
  security: blacklist: hasBeenModifiedSince 1366405994221 (we have 1366405324565)
  All my jars are signed and if there are any signed third party jars I resign the. Where can i read more about jar blacklisting. or what is causing these errors to be thrown.

  Number looks like a unix timestamp, IfModifiedSince is a HTTP Caching-Header. Maybe plugin calls home, lets someone third party ask for the signed jars, and than compares the two. You are "working on" it, is it possible that the applet you load is another one than the public accessible, maybe from a dev-server renamed to be the original one?
  Sorry, my fault, looks like a new behaviour, the timestamp shown is fix, it has nothing to do with my brain dump above.
  Edited by: 988683 on 23.04.2013 04:38

• Netscape package (plugin???)

  Hey,
  I'm currently doing an applet that requires me interacting with javascript (bidirectional communication). And I apparently don't have the netscape.javascript.* package to import. I've looked around for a day and everything
  http://java.sun.com/products/plugin/index.jsp says this:
  Java Plug-in technology is part of the current version of the Java Runtime Environment, Standard Edition (Java SE)
  but I know i have the current version of JRE on my linux machine (i have a unbuntu box and also a Powerbook G4) and the default JRE for my mac.
  Can anyone please help me? Thanks!

  I've moved this post to the "New to Java" forum
  http://forum.java.sun.com/thread.jspa?threadID=790116

• Opening and closing a frame from an applet security problem

  can I open a frame or a window from an applet and close the frame by using
  System.exit(0) for the frame or will it throw a security problem.

  I am using system.exit(0) to exit the JVM.
  dispose()
  Releases all of the native screen resources used by this Window, its subcomponents, and all of its owned children. That is, the resources for these Components will be destroyed, any memory they consume will be returned to the OS, and they will be marked as undisplayable.
  If this frame have to be close and open again don't use dispose.
  there is no check whether a frame is active? what you can do is set the the new frame to null (frame = null) and also when you dispose it, this will let you know if the frame is active or not.
  Noah

• Apparent gap in java applet security on client machine

  I know about signing applets, and both the new and original security models for applets. For my purposes, the original security model for applets is just about perfect. My applets do not need access to the client machine hardware, nor do they need to access any machine other than that which provides them to the client (at least at present).
  What I have been told is that it is not possible for a server of any kind (DB, servlets, &c.) to authenticate an applet. The claim was made that all the security was designed for client security and that a developer's only option is to trust the client machine.
  I can exchange information among my servers over SSL, and secure communications between by servers and applet clients. However, what is there to prevent a bad guy from breaking into a client machine and then capturing and modifying the applet I am relying on to protect the client's sensitive data? Signing the applet tells the user that the applet has not been modified from what I have produced, and so the user should feel confident enough to run it. But what if the applet and related web page is cached, and someone who has, legitimately or not, access to the machine and tries to use the cached copy for inappropriate purposes?
  If my servers can not verify that the applet code accessing them is mine, rather than a variant created to mimic my applet, then that certainly creates a risk for my code, but doesn't it also create a security risk for the client? After all, it is the client's sensitive data I am trying to protect, and I can envision a situation in which a bogus applet mascerades as mine and sends that sensitive data to a bad guy's machine; all this while giving the user the illusion that his data is safe.
  The gap here is either in my understanding of this technology or a gap in java security, so I'll put the question another way also. Is it possible for a server (e.g. an application server such as Tomcat or Sun's application server) to verify that the applet code used to try to connect with them is in fact the applet code that was signed on and served from the same machine and not malicious code masceraing as my code? If so, how does that work, and how does the programmer do it?
  Thanks,
  Ted

  the jar file reqiured is jmf.jar this jar file will there in
  jmf_home/lib
  for example in my mechine
  C:\Program Files\JMF2.1.1e\lib this jar file contain all the file reqired to run the application
  i think you may need some of the dll files also to run see
  if reqiured the then it may throw exception
  java.lang.UnsatisfiedLinkError then put respective dll file to workiing folder or the system32 folder

• Applet Security help for a newbie

  I have an applet that works as an IRC client, still needs a lot of work. I have the basics working, but before I continue fixing it up I need some help. I've searched all over the forums, and my lack of Java knowhow leaves me confused.
  I have no idea how to use the forte debugger or the J++ debugger, so i'm building the classes everytime and testing them in IE on my own machine.
  I got this error first:
  java.security.AccessControlException: access denied (java.net.SocketPermission irc.enterthegame.com resolve)
  so I did a lot of searching and found that by adding the following lines to my java.policy file in my program files\java\j2re1.4.0\lib\security folder that it would work:
  permission java.net.SocketPermission "*:80", "connect,accept,resolve";
  permission java.net.SocketPermission "*:6667", "connect,accept,resolve";
  Unfortunately if I want to test my applet on another computer or just use it, it means I have to add these lines on every machine I want to use. I think.
  So I did some more searching on here...and now I think I have to sign my applet. I followed the instructions from this link http://developer.java.sun.com/developer/qow/archive/167/index.jsp
  And that all went well. But what do I do now? I took out those two permission lines from my java.policy file and it's back to square one. Do I need to do something with the .jar file that I created? Can someone give me a hand here? Thanks, I appreciate it

  Is this question really hard or something?