Problem with a signed applet and a user machine.

Similar Messages

• Problem with accessing Signed Applet from javascript method

  Hi,
  I am facing the following problem while accessing Signed Applet from javascript method.
  java.security.AccessControlException: access denied (java.io.FilePermission c:/temp.txt read)
       at java.security.AccessControlContext.checkPermission(Unknown Source)
       at java.security.AccessController.checkPermission(Unknown Source)
       at FileTest.testPerm(FileTest.java:19)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
       at java.lang.reflect.Method.invoke(Unknown Source)
       at sun.plugin.javascript.invoke.JSInvoke.invoke(Unknown Source)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
       at java.lang.reflect.Method.invoke(Unknown Source)
       at sun.plugin.javascript.JSClassLoader.invoke(Unknown Source)
       at sun.plugin.com.MethodDispatcher.invoke(Unknown Source)
       at sun.plugin.com.DispatchImpl.invokeImpl(Unknown Source)
       at sun.plugin.com.DispatchImpl$1.run(Unknown Source)
       at java.security.AccessController.doPrivileged(Native Method)
       at sun.plugin.com.DispatchImpl.invoke(Unknown Source)
  I am using jdk1.5 for my development...
  Can anyone help to resolve this security issue. Urgent...
  Thanks in advance.

  Hey thanks. I wasn't able to get it to work with that sample but I did find this very similar code that does allow javascript to call JFileChooser in an applets public method.
  java.security.AccessController.doPrivileged(
  new java.security.PrivilegedAction()
  public Object run(){                           
  //do your special code here
  return null; //return whatever you want
  It seems a bit tempermental in that if you don't select a file quickly, it will hang the browser....no perfect solution but I'm going in the right direction.
  Thanks,
  Scott

• [SOLVED] Problem with privileges (nm-applet and mounting devices)

  Hi,
  I have a little problem after a system update made a few weeks ago. (At least I think it started after that update, but I am not sure.)
  It's something related to lack of privileges or sth...
  When I right-click on nm-applet icon some options are greyd out as well as when I try to add a new network - everything in the dialog is grey. But when I "sudo nm-applet", everything works.
  And the next problem is: When I plug my USB stick/drive to NB it is not mounted automatically but I need to open nautilus, mount it manually and an "Authenticate" dialog shows up and my password is required. But why? It didn't use to work that way. I don't understant what might have changed.
  I use SLiM starting my gnome-session.
  My ~/.xinitrc:
  exec ck-launch-session dbus-launch gnome-session
  My /usr/share/gnome-session/sessions/gnome-fallback.session
  RequiredComponents=gnome-settings-daemon;
  RequiredProviders=windowmanager;
  DefaultProvider-windowmanager=compiz
  DefaultProvider-notifications=notify-osd
  DefaultProvider-displaymanager=slim
  (I don't use gnome-shell nor gnome-panel, but Gnome with xfce4-panel )
  Thank you in advance.
  Last edited by mino.sk (2012-06-22 21:25:57)

  Thank you, headkase, you were right about it! Removing "ck-launch-session" solved my problems. I also removed "dbus-launch" because I didn't have it there originally, I had added "dbus-launch" to exec line just today as I had read somewhere that it might help (it didn't)...
  So, I'm going with "exec gnome-session" and everything works, thanks.
  //Edit: Admin can mark this as "[SOLVED]"
  Last edited by mino.sk (2012-06-22 20:22:39)

• Problem with PE12 sign in and starting: keeps asking me to sign in and then crashes

  Hi all,
  I got PE12 through my wacom tablet, and i just started it for the first time today. It asks me to sign in, and after entering everything, the window disappears (seems like the app crashed). When I click on the app again, it asks me to sign in again.
  Has any body seen this before? Please help.
  Thank you.

  Hi,
  On Mac, opm.db is present in User's Library.
  Since User's Library is hidden on Mac,follow the steps mentioned in the link below:
  Access hidden user library files | Mac OS 10.7 and later
  Once you enter User's Library browse to Application Support/Adobe/OOBE/opm.db
  Thanks,
  Shikha

• Problems with GNOME 2.24 and fast-user-switch-applet

  Since I upgraded my GNOME installation the fast-user-switch-applet keeps crashing on me everytime I run it. I can't figure out what is causing it.
  Regards
  André

  fettouhi wrote:
  Since I upgraded my GNOME installation the fast-user-switch-applet keeps crashing on me everytime I run it. I can't figure out what is causing it.
  Regards
  André
  do you have gdm running ? if not turn it on and try again.

• Problems with RSA Signed Applets methods called by JavaScript

  Hi Folks,
  I need to give all permissions to an Applet used in an Intranet application, so I signed the jar containing it with a RSA self-cert and I did the same for all the other jar files userd by the applet.
  The applet runs under Java Plugin with JRE 1.5.0_06: I am requested by the browser to install the cert and all works fine.
  When a JavaScript function calls a public method of the applet I received a security exception when the code tries to read a system property.
  The same method works fine if called by the applet itself or by a gui event (i.e. a button click) inside the applet, so the problem seems to be related to the fact the applet is used by JavaScript (in Explorer 6).
  Does anyone know some way to overcome this problem????
  Message was edited by:
  piero

  If I may be so bold as to ask you to elaborate on this fix? I have encountered an identical issue, but I have no idea about your reference to your fix, sorry.

• Permissioning problems with TimeCapsule AFP share and multiple users

  Hi,
  I am currently sharing my TimeCapsule filesystem (guest perms) as AFP, I have it automounting via automounter. Problem is that whoever hit's the automounter dir first is marked as the owner of all the shared files, other users then cannot delete/modify them (i want the share completely world read/writeable). The mount_afp command does not seem to support the relevant fmask/dmask params that mount_nfs does (which would cause the mount to be mounted with consistent ownership.)
  So..
  1. I presume NFS is not supported (boo!)
  2. Does anyone else have this working? I would imagine that I should also be able to get this working through group permissions, but for the same reason i cannot force automounter to mount the filesystem with the user/group ownership I want.
  thoughts?suggestions?
  Thanks
  Liam
  P.S. I could also try SMB but playing movies on Frontrow off a networked SMB filesystem is usually poor (compared to NFS anyway)

  Yes, you can turn off photos in icloud. (settings - icloud- photos)
  You can also allow users to use their own apple id's for imessages and facetime. Unlike icloud those can be changed any time, so that does not present security problem. Settings -messages and settings- facetime.
  If you dead set on using same apple id, you can make sure that every user only has their phone number checked in messages, so everyone has to go to settings- messages- send and receive and uncheck apple id.

• Problems with 1 icloud account and multiple users.

  We have multiple users all on 1 icloud so we can share apps but also see what people have installed and because IT control the password its upto us what apps get installed. So in that sense this was a good idea. The problem we are having is that the iphone users photos, messages and other things are becoming available on other iphones on this 1 icloud account. So for example one user went on her photos to discover someone elses photos was in their and then also had messages from a contact who only her manager has (also one of the icloud users)
  Is there any settings we could change to keep the 1 icloud acount but make it so peoples photos and messages dont sync.

  Yes, you can turn off photos in icloud. (settings - icloud- photos)
  You can also allow users to use their own apple id's for imessages and facetime. Unlike icloud those can be changed any time, so that does not present security problem. Settings -messages and settings- facetime.
  If you dead set on using same apple id, you can make sure that every user only has their phone number checked in messages, so everyone has to go to settings- messages- send and receive and uncheck apple id.

• Problem with a sign Applet - certificate isn't recognized

  Hello to all the java experts
  I have created a certificate using keytool. I have exported the certificate and installed it on the computers of the users. The certificate worked well on all the computers except one. I have got a message:
  java.security.cert.certificateException unable to verify the certificate CA root
  I want to add that when I installed this certificate I got a message that it was imported successfully and I have also seen that the certificate is valid. I imported it by double-clicking on the crt file and choosing "install certificate". I also tried to import it by using the command: keytool -import -alias company -keystore carets -storepass changeit -file c:\crtfile.crt.
  I have checked that the certificate was imported by the command:
  keytool -list -v -keystore company
  The only thing which is different on this computer is the plugin of swing (1.3.01 and not 1.3.02)
  What can cause to this problem? How can I fix it?

  Noone has any idea?

• IIS, Javascript, Signed Applet and ASP Blank Page Problem

  Hi,
  I'm having a problem using a Signed Applet in a site that runs in a IIS (Windows Server 2003).
  My aspx web page uses the applet to read my smart card and get information from it.
  This applet uses an auxiliar dll (stored in a second Signed Jar file) in order to read the information from my smart card.
  The way the solution is design:
  1) Aspx page is asked from server
  2) Internet Explorer recieve the page and asks the server for it content (images, applet, javascripts, etc)
  3) After this the JVM runs (console opens)
  4) After the Aspx page render fully a javascript register onload fires and call an applet method
  5) Applet receive the call and run the logic of the method:
       - reads the smart card;
       - calls Javascript function in order to fill aspx fields with information from smart card
       - calls Javascript function the simulates a click in a botton of aspx page (in order to call server side part sending data readed from smart card to server)
  5) The server makes some logic with the information receive and responds to client registering in aspx page a call to another Javascrit function
  6) The client received the asnwer from server and runs the Javascript function registered on step 5)
       This Javascript calls another method from applet and runs the following logic:
       - reads more information from smart card;
       - call javascript function in order to fill more fields of aspx page with the information readed
       - calls Javascript function the simulates a click in a botton of aspx page (in order to call server side part sending data readed from smart card to server)
  7) The server makes some logic and call another pages with no Applets
  8) Client asks for a second page with the same applet and we start with another logic express on steps 1);2);3),4);5) and then 7).
  This is all ok, until sometimes the server stop responding correcly for requests regarding this two pages with the Applet.
  When this happens the server just responds with a blank page.
       - with fiddler I can seer the request for the aspx page (that uses the applet)
       - but server responds with a blank html page
  The JVM doesn't fire.
  The IIS log don't show errors.
  The eventviewer doesn't show errors.
  The problem is solved with an IIS reset or a Application Pool reset.
  After a while the problem returns.
  This problem occours for other user in another machine, the server just stops responding correcly to request regarding pages with applets, the other pages still continue to work.
  If we disable Java Control Panel->Advanced->Java Plug-in->Enable the next-generation Java Plug-in the problem seend to stop, but we can't force all clients to disable this option right?
  Or there is a way to force the Applet to run with this option disabled?
  As anyone experience similar problem?
  Regards,
  OF

  This is all ok, until sometimes the server stop responding correcly for requests regarding this two pages with the Applet.
  When this happens the server just responds with a blank page.
  - with fiddler I can seer the request for the aspx page (that uses the applet)
  - but server responds with a blank html pageWell, if http requests look identical in case of success and failure (pay attention to cookies, etc) then it has to be something on the server side.
  It could be that server gets into this wrong state because of previous requests made by applet but it is hard to tell.
  I am not clear how old/new plugin can make a difference unless your applets run in the legacy mode (i.e. you are actually trying to reuse SAME instance of the applet when
  it is loaded next time).
  I'd start with
  1) carefully comparing good/bad sessions
  2) checking whether server will serve correct response to another client when it serves "bad" page for current client
  3) add debug statements to aspx - it is scripted page, may be some condition is not met and then it returns blank?
  4) record all http requests in one session until you get to "error" state and then use any http server testing tool to "replay" this set of requests.
  You should be able to get server into the same state without use of applet. Then you can try to tweak set of requests to see what makes a difference.

• HT201210 nowadays have many user have problem with update to ios7 and need active with apple id maybe in the future in order escape from these problems must be stop use these products else. Because of simple user don't know about this technology and somet

  nowadays have many user have problem with update to ios7 and need active with apple id maybe in the future in order escape from these problems must be stop use these products else. Because of simple user don't know about this technology and sometime just hear from other user that it 's difficult to use then force they change phone that use to handle to another.

  It is a feature to discourage the theft of iPhones by making them useless if resold. It's not going anywhere. It's simple: just don't buy a phone until you make sure that the activation lock has been disabled.

• Have the same problem tried the signing in and out, rebooting, uninstalling and back again nothing is working, on 4th download of creative cloud still coming up with lightroom 5 after signing in anf out, also signing out dowloading and signing in, spent 2

  have the same problem tried the signing in and out, rebooting, uninstalling and back again nothing is working, on 4th download of creative cloud still coming up with lightroom 5 after signing in anf out, also signing out dowloading and signing in, spent 2 days on this, just cannot spend days on trying tricks and hacks

  I  am getting so mad because I cant even sign out OR quit! They are both grayed out. I have the spinning blue wheel in my apps and am trying to fix that but none of the solutions are working.

• Changing of the standard port 1521 and afterward problems with Single Sign

  System / Host Environment
  Operating System: HP-UX 11i, Existing Oracle RDBMS Vers. 9.2 x, Listener on standard port 1521
  9iAS System Architecture: 9iAS Infrastructure and Middle tier (AS Instance) on the same machine
  Problem Environment:
  -Before and during the installation of 9iAS infrastructure the Listener of the existing Oracle RDBMS was stopped
  -The installation of 9iAS Infrastructure (db: IASDB) Version 9.0.2.0 works well
  -Afterwards the port 1521 of IASDB changed to 1525. For a detail description of IASB port changing please refer to Doc. ID: 211 929.1 AFTER CHANGE 'IASDB' LISTENER PORT
  -The installation of Patch Set 2 (Common Patch 2703110) follows (9iAS is now up to Release 9.0.2.2).
  -The Installation of 9iAS Middle tier (AS Instance) Version 9.0.3 follows
  Problem description:
  -During the installation of 9iAS Middle tier problems with Single Sign On occurs.
  The reason of this problems seems a communication problem between the Single Sign On login sequence and the IASDB. After a reset of the port changing (back to the standard port 1521) the installation of 9iAS Middle tier works well.
  Through this incorrect and problematic behaviour we have some notes and questions:
  -Well at first the description of the port changing in Doc. ID: 211 929.1 seems us incomplete. Some configuration still carry on the standard port 1521 and not the knew value of the port 1525.
  -So we want to know all configuration files and parts where we have to change the port value manually ?
  -What will happened to the Single Sign On function with this manually port changing. Does Single Sign On works later on correct or have we to change much more ?

  Currently, changing the listener port is not supported. It must stay on 1521. I believe this is to be fixed in a latter release (perhaps 9.0.4)

• TS1646 hello  I have problem with regist my visa and I cannot buy from store the message came in the end of form is says the phone number must be a 7-digit number and I have writed but not accepted iam from saudi arabia my mobile is 966504850992 pls answe

  hello 
  I have problem with regist my visa and I cannot buy from store
  the message came in the end of form is says
  the phone number must be a 7-digit number
  and I have writed but not accepted
  iam from saudi arabia
  my mobile is 966504850992
  pls answer
  thanks
  dfr aldossary

  Wow, Karan Taneja, you've just embarrassed yourself on a worldwide support forum.  Not only is your post ridiculous and completely inappropriate for a technical support forum, but it also shows your ignorance as to whom you think the audience is.  Apple is not here.  It's users, like you. 
  If you would have spent half the time actually reading the Terms of Use of this forum that YOU agreed to by signing up to post, as you did composing that usesless, inappropriate post, you (and the rest of us on this forum) would have been much better off.

• JRE 1.4.x Plugin - Signed Applets and Weird Behaviour (Policy)

  Hello.
  I have recently experienced some strange behaviour related to signed applets and policy files in JRE 1.4.2-b28 ( a friend got the same behaviour in a flavour of 1.4.1-xx as well ). Both tests were on Windows 2000 Professional platforms.
  Initially my unsigned applet, which attempts socket connections to a server different from the download location, fails with security exceptions ( as expected ). Then I did the following to sign the applet jar and configure my environment
  Steps: 1) Import "trusted CA" certificate into ${java.home}/lib/security/cacerts. (JRE home outside the JDK)
  2) Signed the jar using jarsigner and a certificate generated from the "trusted CA" (Entrust CA and certificate).
  3) Imported the signing certificate into the Java plugin using import in the plugin control panel.
  4) Created a new keystore (keytool,jks) and imported the signing certificate into the keystore with alias "developer". The keystore is stored in the user home as .keystore.
  5) Created a .java.policy for the user and attaching the keystore in 4) to it. ( also stored in user home ).
  6) Used the policy tool to grant socketpermissions to the specific codebase ( testing with file:/C:/test/* initially ) signed by "developer"
  After this, when I ran the test page under IE 5.5SP2 and Netscape 7.1 it worked without any security exception. Ditto for using the appletviewer and the policy file I created for the user.
  The weird part occurred when I removed the policy entry from the user policy file. After doing this, Netscape and IE still allow the applet to execute - somehow remembering that it was granted permissions at some point. The appletviewer does not allow it to execute, generating security exceptions.
  It appears the old policy is being cached somewhere, but I cannot find where. If I replace the applet jar with an unsigned version it does fail in IE and Netscape. I tried cleaning the plugin cache and removing the "deployment.certs" files related to the users but still get the same behaviour.
  Does anyone know where the old policy information is being stored ? Does anyone know how to revoke the permissions so that I am restored to my original base environment ( no permissions for "designer" signed applets ) ? Would attempting to utilize the AccessController.doPriveleged( xxxx ) operations in JDK 1.4 avoid all of this confusion with policy files, keystores and certificate storage ? After all the messing about I would like a zero-footprint alternative ( or minimzed footprint anyway ).
  Any ideas would be most welcome.
  Regards,
  James.

  Hello Again.
  I am either enlightened or confused at this point. I found that as long as all of my related Jars are signed ( even by self-signed certificates ) I am granted SocketPermissions for calls outside of the originating server. Unsigned code is refused, but even when the Jars were signed using a self-signed certificate the Socket calls were allowed.
  Am I experiencing the appropriate behaviour in this case ( which would mean not having to utilize policy files to distribute an applet that uses calls to arbitrary servers - e.g. JavaMail ) or am I suffering from something damaged in my environment ?
  It has been a long time since I played with signed applets and I am having difficulty determining what operations require policy file entries/AccessController.doPrivileged() calls and which are granted when a user elects to trust a signed applet without policy.
  Any assistance in clearing up my confusion would be appreciated.
  Regards,
  James.