Socket security error problem

Similar Messages

• Socket Security Error 2048

  Hi,
  I'm trying to make a socket connection using AS3. I am aware
  of the new Security policies. I've read all the articles and set up
  a socket policy file server and a socket server to handle the
  socket.connect().
  Im calling
  Security.loadPolicyFile("xmlsocket://myhost.com:843") but
  continually get this message in the debugger:
  Error: Failed to load policy file from
  xmlsocket://myhost.com:843 // why did it fail?? the file is there
  and port is open
  and then:
  Error: Request for resource at xmlsocket://myhost.com:11500
  by requestor from
  http://myhost.com/myswf.swf
  has failed because the server cannot be reached. // why can't the
  server be reached?? the port is open
  I've made sure I have no firewall blocking the port, no
  SELinux enabled policies, and I've verified port 843 and 11500 are
  actually open using a custom php script.
  Also when I type nmap localhost port 843 shows up as open
  using tcp. It does however say that the service is unknown. I don't
  understand that since I have edited the /etc/services file and
  created the service "flashpolicy" in /etc/xinetd.d and restarted
  inetd using: /etc/rc.d/init.d/xinetd restart.
  Heres the string my socket policy file server is suppose to
  return when it receives <policy-file-request/> :
  <cross-domain-policy><site-control
  permitted-cross-domain-policies="master-only"/><allow-access-from
  domain="myhost.com" to-ports="11500"
  /></cross-domain-policy>\0
  Can anyone give me some clues as to what I'm doing wrong? I
  think I've read every article out there regarding this subject. I
  even see that there are two bugs listed for the flash player:
  http://bugs.adobe.com/jira/browse/FP-67
  and
  https://bugs.adobe.com/jira/browse/FP-269.
  But it seems likes someone out there has achieved socket
  connections with AS3.
  Thank You

  You might try to force Flash to load the policy file first:
  Security.allowDomain(“*”);
  Security.loadPolicyFile(“http://server.com/crossdomain.xml”);

• Air + sockets = security error

  Hello All,
  I'm trying to create a socket connection to a java progam locally, I'm able to connect to the java sockets locally with flex, but when I build Air with the same piece of code, I'm not able to go and get a connection, as it has security restrictions, I read somewhere that an application which is local to the file system, it cannot call sockets, but, how do I make it local to file system + networking? I mean atleast get the sockets to work?
  Thanks much!

  bump!

• Problem with socket security

  Hi,
  I'm trying to make socket connection from within air application, but no way. I'm browsing google for almost 2 days, follow all possible solutions, but avidently I dont understund somthing cause I'm not able to do anything.
  Every time sandbox security violation.....  I need make some simple socket data exchange between my air, and OS. I do not have any web server and no any other kind of network ability. I write down stupid socket server, which is waiting for policy request, and for my other requests (it function 100%, tested with Telnet, so no way to have problem on my socket server side).
  The strange thing is that my application do not produce any request for socket policy file, neither at 843 port (for default), neither at my custom location with namual
  Security.loadPolicyFile("xmlsocket://ip:port"); call
  This is my primitive code:
  <?xml version="1.0" encoding="utf-8"?>
  <mx:WindowedApplication xmlns:mx="http://www.adobe.com/2006/mxml"
      layout="vertical">
      <mx:Script>
          <![CDATA[
              private var s:XMLSocket = null;
              private function test():void{
                  Security.loadPolicyFile("xmlsocket://127.0.0.1:25013");
                  if(!s){
                      s = new XMLSocket();
                      s.addEventListener(DataEvent.DATA, onData);
                      s.addEventListener(Event.ACTIVATE, onActivate);
                      s.addEventListener(Event.CONNECT, onConnect);
                      s.addEventListener(Event.DEACTIVATE, onDeactivate);
                      s.addEventListener(IOErrorEvent.IO_ERROR, onError);
                      s.addEventListener(SecurityErrorEvent.SECURITY_ERROR, onSecurity);
                  s.connect("127.0.0.1", 25013);
              private function onActivate(e:Event):void{
                  debug.text += "Activated\r";
              private function onConnect(e:Event):void{
                  debug.text += "Connected\r";
                  var o:XML = <request cmd="10"/>;
                  s.send(o);
              private function onDeactivate(e:Event):void{
                  debug.text += "Deactivated\r";
              private function onError(e:IOErrorEvent):void{
                  debug.text += e.text + "\r";
              private function onSecurity(e:SecurityErrorEvent):void{
                  debug.text += e.text + "\r";
              private function onData(e:DataEvent):void{
                  debug.text += e.data;
                  s.close();
          ]]>
      </mx:Script>
      <mx:Button label="Test" click="test()"/>
      <mx:TextArea id="debug" width="100%" height="100%"/>
  </mx:WindowedApplication>
  Any help will be apresciated.
  Ladislav.

  Hi,
  It pass some time but if i remember well, my problem was that i did
  not terminate stream output form my server vs air application, and it
  returns this security error.
  When I send  '\0' at the end of my message it work correctly. Yes the
  server was my own written socket server (c++ using boost libraries).
  Laco.
  Sorry late response I'm on hollydays
  Staney G ha scritto:
  So, how did you walk around the problem?  Did you have a control on how server responds?
  My test case failed similarly.  However, the target server is a public web service.
  Will appreciate your answers!
  >

• Security error in flex,sockets

  Hi,
  I have a chat application in flex  using sockets.
  It works fine on Flash player 9, but while uisng flash player 10 , prompts the following  error
  Error: [SecurityErrorEvent type="securityError" bubbles=false cancelable=false eventPhase=2 text="Error #2048"]
  whats wrong?? iam  keep searching througth the web for a solution…  …Im using .Net framework 2.0 for socket server
  and flex 2

  Hi George,
  I'm pretty sure I know the cause of your security sandbox problem.
  In the move from Flash Player 9 to 10, Adobe increased the security constraints on sockets. As you might already know, when you use HTTP to connect to a server other than the one from which your SWF was downloaded, the Flash Player requires that a Cross-Domain Policy file be served up from the root of the target server. Prior to FP10, this constraint also existed for sockets as well, but since FP10 the requirement is more stringent: if you are using sockets to connect to an "un-trusted" server, then you will still need a Cross-Domain Policy file, however that policy file must also be served up through sockets.
  In other words, you will need to set up and run a socket server on the server you are connecting to, in order to serve up the appropriate XML document through port 843 (by default). This socket server can be implemented in any number of ways, but I use a Java socket server that Thomas over at LessRain has posted on their blog. You can find it here: http://www.blog.lessrain.com/as3-java-socket-connections-to-ports-below-1024/
  Good luck,
  Taylor
  4Point Solutions Ltd.
  http://blogs.4point.com/taylor.bastien/

• I receive an error in Firefox 4.0 Beta 11: Secure Connection Failed An error occurred during a connection. Renegotiation is not allowed on this SSL socket. (Error code: ssl_error_renegotiation_not_allowed) Anyone know how to fix this?

  I have installed the Firefox 4.0 Beta 11 (+updates), I try to connect to our https: website and I receive the following error:
  Secure Connection Failed An error occurred during a connection.
  Renegotiation is not allowed on this SSL socket.
  (Error code: ssl_error_renegotiation_not_allowed)
  I have installed this certificate on Firefox 3.6.13 and I am able to connect to our HTTPS site but it will not work with the Beta 4.0 11

  I read about this for ages. I had problems setting up a certificate for my online banking. This one solution genuinely worked for me (finally!) ...Fingers crossed it will for you too:
  1) In the address bar type in '''about:config''' ...Firefox will say it's dangerous, but I just went ahead anyway lol - It's fine. Thank god there's always an edit-undo!
  2) Copy and paste this into the ''filter'' at the top: '''security.ssl.allow_unrestricted_renego_everywhere'''
  3) Then change ''false'' to ''true'' (I think I just clicked it, and it changed)
  That's it! Refresh your bank page, and it should work!
  (Spanish source: '''http://translate.google.com/translate?sl=es&tl=en&js=n&prev=_t&hl=en&ie=UTF-8&layout=2&eotf=1&u=http%3A%2F%2Fwww.fedora-ve.org%2F2011%2F09%2F14%2Ferror-error-code-ssl_error_renegotiation_not_allowed-en-firefox-4-x.html&act=url''')

• Because of security error...... - X509 Certificates problem

  Good Morning everyone.
  I`ve got W2008 R2 with Terminal License already activated by telephone. My server is running and is active, I`ve got licenses (CAL 5 per User). Despite this fact my server still creates X509 Certifictates, which block my second, third, etc connection to
  server.
  Other workstation - Windows XP - try to connect via RDP to server and use RemoteApps (IE, Acrobat Reader). Connection was working in "trial version" of Terminal Server - 120 days, but when I`ve activated it, install all licenses can`t connect
  to server, cause "Security error" message. I found that X509 Cert. are the reason and I should activate server as Terminal License Server using phone activation with Microsoft and then other certificate will be create, but not. I`ve done this
  several times, with deleting X509 entriers in Windows Registry, restart server. Every time, when workstation is trying to connect to W2008 Server new X509 are creating in Registry and error message apears.
  Could You help me please in this case?
  Best Regards.
  Dawid

  Hi Dawid,
  Thank you for your posting in Windows Server Forum.
  Initially please check whether you have RDP 7 installed on Windows XP as suggested by TP. In addition, suggest you to try creating new certificate and check the result. please check below articles.
  1.  Create Trusted Remote Desktop Services (RDP) SSL Certificate
  2.  Remote Desktop disconnected or can’t connect to remote computer or to Remote Desktop server (Terminal Server) that is running Windows Server 2008 R2
  Hope it helps! 
  Thanks,
  Dharmesh

• MPD: ERROR: problems opening audio device

  Since a day, maybe a little more, mpd is troubling me. When I use mpc, I get the error
  ERROR: problems opening audio device
  This is my mpd.conf
  # An example configuration file for MPD
  # See the mpd.conf man page for a more detailed description of each parameter.
  # Files and directories #######################################################
  # This setting controls the top directory which MPD will search to discover the
  # available audio files and add them to the daemon's online database. This
  # setting defaults to the XDG directory, otherwise the music directory will be
  # be disabled and audio files will only be accepted over ipc socket (using
  # file:// protocol) or streaming files over an accepted protocol.
  music_directory "/home/adriaan/Music"
  # This setting sets the MPD internal playlist directory. The purpose of this
  # directory is storage for playlists created by MPD. The server will use
  # playlist files not created by the server but only if they are in the MPD
  # format. This setting defaults to playlist saving being disabled.
  playlist_directory "/var/lib/mpd/playlists"
  # This setting sets the location of the MPD database. This file is used to
  # load the database at server start up and store the database while the
  # server is not up. This setting defaults to disabled which will allow
  # MPD to accept files over ipc socket (using file:// protocol) or streaming
  # files over an accepted protocol.
  db_file "/var/lib/mpd/mpd.db"
  # These settings are the locations for the daemon log files for the daemon.
  # These logs are great for troubleshooting, depending on your log_level
  # settings.
  # The special value "syslog" makes MPD use the local syslog daemon. This
  # setting defaults to logging to syslog, otherwise logging is disabled.
  log_file "/var/log/mpd/mpd.log"
  # This setting sets the location of the file which stores the process ID
  # for use of mpd --kill and some init scripts. This setting is disabled by
  # default and the pid file will not be stored.
  pid_file "/var/run/mpd/mpd.pid"
  # This setting sets the location of the file which contains information about
  # most variables to get MPD back into the same general shape it was in before
  # it was brought down. This setting is disabled by default and the server
  # state will be reset on server start up.
  state_file "/var/lib/mpd/mpdstate"
  # The location of the sticker database. This is a database which
  # manages dynamic information attached to songs.
  #sticker_file "~/.mpd/sticker.sql"
  # General music daemon options ################################################
  # This setting specifies the user that MPD will run as. MPD should never run as
  # root and you may use this setting to make MPD change its user ID after
  # initialization. This setting is disabled by default and MPD is run as the
  # current user.
  user "adriaan"
  # This setting specifies the group that MPD will run as. If not specified
  # primary group of user specified with "user" setting will be used (if set).
  # This is useful if MPD needs to be a member of group such as "audio" to
  # have permission to use sound card.
  group "users"
  # This setting sets the address for the daemon to listen on. Careful attention
  # should be paid if this is assigned to anything other then the default, any.
  # This setting can deny access to control of the daemon.
  # For network
  #bind_to_address "any"
  # And for Unix Socket
  #bind_to_address "~/.mpd/socket"
  # This setting is the TCP port that is desired for the daemon to get assigned
  # to.
  #port "6600"
  # This setting controls the type of information which is logged. Available
  # setting arguments are "default", "secure" or "verbose". The "verbose" setting
  # argument is recommended for troubleshooting, though can quickly stretch
  # available resources on limited hardware storage.
  #log_level "default"
  # If you have a problem with your MP3s ending abruptly it is recommended that
  # you set this argument to "no" to attempt to fix the problem. If this solves
  # the problem, it is highly recommended to fix the MP3 files with vbrfix
  # (available from <http://www.willwap.co.uk/Programs/vbrfix.php>), at which
  # point gapless MP3 playback can be enabled.
  #gapless_mp3_playback "yes"
  # This setting enables MPD to create playlists in a format usable by other
  # music players.
  #save_absolute_paths_in_playlists "no"
  # This setting defines a list of tag types that will be extracted during the
  # audio file discovery process. Optionally, 'comment' can be added to this
  # list.
  #metadata_to_use "artist,album,title,track,name,genre,date,composer,performer,disc"
  # This setting enables automatic update of MPD's database when files in
  # music_directory are changed.
  auto_update "yes"
  # Limit the depth of the directories being watched, 0 means only watch
  # the music directory itself. There is no limit by default.
  #auto_update_depth "3"
  # Symbolic link behavior ######################################################
  # If this setting is set to "yes", MPD will discover audio files by following
  # symbolic links outside of the configured music_directory.
  #follow_outside_symlinks "yes"
  # If this setting is set to "yes", MPD will discover audio files by following
  # symbolic links inside of the configured music_directory.
  #follow_inside_symlinks "yes"
  # Zeroconf / Avahi Service Discovery ##########################################
  # If this setting is set to "yes", service information will be published with
  # Zeroconf / Avahi.
  #zeroconf_enabled "yes"
  # The argument to this setting will be the Zeroconf / Avahi unique name for
  # this MPD server on the network.
  #zeroconf_name "Music Player"
  # Permissions #################################################################
  # If this setting is set, MPD will require password authorization. The password
  # can setting can be specified multiple times for different password profiles.
  #password "password@read,add,control,admin"
  # This setting specifies the permissions a user has who has not yet logged in.
  #default_permissions "read,add,control,admin"
  # Input #######################################################################
  input {
  plugin "curl"
  # proxy "proxy.isp.com:8080"
  # proxy_user "user"
  # proxy_password "password"
  # Audio Output ################################################################
  # MPD supports various audio output types, as well as playing through multiple
  # audio outputs at the same time, through multiple audio_output settings
  # blocks. Setting this block is optional, though the server will only attempt
  # autodetection for one sound card.
  # See <http://mpd.wikia.com/wiki/Configuration#Audio_Outputs> for examples of
  # other audio outputs.
  # An example of an ALSA output:
  audio_output {
  type "alsa"
  name "My ALSA Device"
  device "hw:0,0" # optional
  # format "44100:16:2" # optional
  # mixer_type "hardware" # optional
  # mixer_device "default" # optional
  # mixer_control "PCM" # optional
  # mixer_index "0" # optional
  #audio_output {
  # type "alsa"
  # name "Sound Card"
  # options "dev=dmixer"
  # device "plug:dmix"
  # An example of an OSS output:
  #audio_output {
  # type "oss"
  # name "My OSS Device"
  ## device "/dev/dsp" # optional
  ## format "44100:16:2" # optional
  ## mixer_type "hardware" # optional
  ## mixer_device "/dev/mixer" # optional
  ## mixer_control "PCM" # optional
  # An example of a shout output (for streaming to Icecast):
  #audio_output {
  # type "shout"
  # encoding "ogg" # optional
  # name "My Shout Stream"
  # host "localhost"
  # port "8000"
  # mount "/mpd.ogg"
  # password "hackme"
  # quality "5.0"
  # bitrate "128"
  # format "44100:16:1"
  ## protocol "icecast2" # optional
  ## user "source" # optional
  ## description "My Stream Description" # optional
  ## genre "jazz" # optional
  ## public "no" # optional
  ## timeout "2" # optional
  ## mixer_type "software" # optional
  # An example of a recorder output:
  #audio_output {
  # type "recorder"
  # name "My recorder"
  # encoder "vorbis" # optional, vorbis or lame
  # path "/var/lib/mpd/recorder/mpd.ogg"
  ## quality "5.0" # do not define if bitrate is defined
  # bitrate "128" # do not define if quality is defined
  # format "44100:16:1"
  # An example of a httpd output (built-in HTTP streaming server):
  #audio_output {
  # type "httpd"
  # name "My HTTP Stream"
  # encoder "vorbis" # optional, vorbis or lame
  # port "8000"
  # bind_to_address "0.0.0.0" # optional, IPv4 or IPv6
  ## quality "5.0" # do not define if bitrate is defined
  # bitrate "128" # do not define if quality is defined
  # format "44100:16:1"
  # max_clients "0" # optional 0=no limit
  # An example of a pulseaudio output (streaming to a remote pulseaudio server)
  #audio_output {
  # type "pulse"
  # name "My Pulse Output"
  ## server "remote_server" # optional
  ## sink "remote_server_sink" # optional
  ## Example "pipe" output:
  #audio_output {
  # type "pipe"
  # name "my pipe"
  # command "aplay -f cd 2>/dev/null"
  ## Or if you're want to use AudioCompress
  # command "AudioCompress -m | aplay -f cd 2>/dev/null"
  ## Or to send raw PCM stream through PCM:
  # command "nc example.org 8765"
  # format "44100:16:2"
  ## An example of a null output (for no audio output):
  #audio_output {
  # type "null"
  # name "My Null Output"
  # mixer_type "none" # optional
  # This setting will change all decoded audio to be converted to the specified
  # format before being passed to the audio outputs. By default, this setting is
  # disabled.
  #audio_output_format "44100:16:2"
  # If MPD has been compiled with libsamplerate support, this setting specifies
  # the sample rate converter to use. Possible values can be found in the
  # mpd.conf man page or the libsamplerate documentation. By default, this is
  # setting is disabled.
  #samplerate_converter "Fastest Sinc Interpolator"
  # Normalization automatic volume adjustments ##################################
  # This setting specifies the type of ReplayGain to use. This setting can have
  # the argument "off", "album" or "track". See <http://www.replaygain.org>
  # for more details. This setting is off by default.
  #replaygain "album"
  # This setting sets the pre-amp used for files that have ReplayGain tags. By
  # default this setting is disabled.
  #replaygain_preamp "0"
  # This setting enables on-the-fly normalization volume adjustment. This will
  # result in the volume of all playing audio to be adjusted so the output has
  # equal "loudness". This setting is disabled by default.
  #volume_normalization "no"
  # MPD Internal Buffering ######################################################
  # This setting adjusts the size of internal decoded audio buffering. Changing
  # this may have undesired effects. Don't change this if you don't know what you
  # are doing.
  #audio_buffer_size "2048"
  # This setting controls the percentage of the buffer which is filled before
  # beginning to play. Increasing this reduces the chance of audio file skipping,
  # at the cost of increased time prior to audio playback.
  #buffer_before_play "10%"
  # Resource Limitations ########################################################
  # These settings are various limitations to prevent MPD from using too many
  # resources. Generally, these settings should be minimized to prevent security
  # risks, depending on the operating resources.
  #connection_timeout "60"
  #max_connections "10"
  #max_playlist_length "16384"
  #max_command_list_size "2048"
  #max_output_buffer_size "8192"
  # Character Encoding ##########################################################
  # If file or directory names do not display correctly for your locale then you
  # may need to modify this setting.
  filesystem_charset "UTF-8"
  # This setting controls the encoding that ID3v1 tags should be converted from.
  #id3v1_encoding "ISO-8859-1"
  # SIDPlay decoder #############################################################
  # songlength_database:
  # Location of your songlengths file, as distributed with the HVSC.
  # The sidplay plugin checks this for matching MD5 fingerprints.
  # See http://www.c64.org/HVSC/DOCUMENTS/Songlengths.faq
  # default_songlength:
  # This is the default playing time in seconds for songs not in the
  # songlength database, or in case you're not using a database.
  # A value of 0 means play indefinitely.
  # filter:
  # Turns the SID filter emulation on or off.
  #decoder {
  # plugin "sidplay"
  # songlength_database "/media/C64Music/DOCUMENTS/Songlengths.txt"
  # default_songlength "120"
  # filter "true"

  milso wrote:
  type "alsa"
  name "equal"
  device "default"
  format "44100:16:2" # optional
  mixer_device "default" # optional
  mixer_control "PCM" # optional
  mixer_index "0" # optional
  I have mine set to plug:plugequal as I use an equalizer with alsa, but when I set it to default it works fine, try that.
  That didn't work out.
  Mr.Elendig wrote:Tell mpd to be more verbose. And check that mplayer -ao alsa whatever works.
  Here's the output of mpd -v
  listen: bind to '0.0.0.0:6600' failed: Address already in use (continuing anyway, because binding to '[::]:6600' succeeded)
  path: path_set_fs_charset: fs charset is: UTF-8
  database: reading DB
  disabling the last.fm playlist plugin because account is not configured
  daemon: opening pid file
  daemon: daemonized!
  daemon: writing pid file
  Doesn't contain anything unusual.
  EDIT: oh, and mplayer -ao alsa works fine.
  Last edited by arthd (2011-02-09 15:14:09)

• ADF FACES: ServletException and socket write error

  Using EA17.
  I have (an unfortunately) very complex page that uses a lot of partialTriggers to control components that render based on the state of other components. There are probably a dozen or so components that come and go. There are also a lot of panelGroup components to hold all the optional components and many of the controlling components are autoSubmit radio buttons. There is virtually no code (logic) in my backing bean. All the control work is being done in the .jspx page.
  The exception below occurs after changing a couple of values that make components appear/disappear.
  For starters, what would cause a socket write error from the servlet?
  I know that this is a fairly vague request, but trying to produce a simple test case to reproduce this will be pretty difficult. So, I'm wondering if anyone has seen anything like this? Or has any suggestions on what to poke at??
  Thanks.
  P.S. And worst of all - it's not consistent. I can go through the same series of value/page updates and it will work one time and not the next. :-(
  P.P.S. This error does not occur using Firefox as the browser. This does happen on IE 6. Unfortunately, that's the browser I have to use for internal applications. Maybe this additional information (that it appears to be browser related) will help track down the problem.
  05/07/30 15:47:43 origRenderView failed!
  05/07/30 15:47:43 javax.faces.FacesException: javax.servlet.ServletException: Connection reset by peer: socket write error
  05/07/30 15:47:43      at com.sun.faces.context.ExternalContextImpl.dispatch(ExternalContextImpl.java:327)
  05/07/30 15:47:43      at com.sun.faces.application.ViewHandlerImpl.renderView(ViewHandlerImpl.java:130)
  05/07/30 15:47:43      at oracle.adfinternal.view.faces.application.ViewHandlerImpl.renderView(ViewHandlerImpl.java:146)
  05/07/30 15:47:43      at com.fhm.mwb.ui.view.FHMViewHandler.renderView(FHMViewHandler.java:159)
  05/07/30 15:47:43      at com.sun.faces.lifecycle.RenderResponsePhase.execute(RenderResponsePhase.java:87)
  05/07/30 15:47:43      at com.sun.faces.lifecycle.LifecycleImpl.phase(LifecycleImpl.java:200)
  05/07/30 15:47:43      at com.sun.faces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:117)
  05/07/30 15:47:43      at javax.faces.webapp.FacesServlet.service(FacesServlet.java:198)
  05/07/30 15:47:43      at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:61)
  05/07/30 15:47:43      at oracle.security.jazn.oc4j.JAZNFilter.doFilter(Unknown Source)
  05/07/30 15:47:43      at com.evermind.server.http.EvermindFilterChain.doFilter(EvermindFilterChain.java:15)
  05/07/30 15:47:43      at oracle.adfinternal.view.faces.webapp.AdfFacesFilterImpl._doFilterImpl(AdfFacesFilterImpl.java:310)
  05/07/30 15:47:43      at oracle.adfinternal.view.faces.webapp.AdfFacesFilterImpl.doFilter(AdfFacesFilterImpl.java:183)
  05/07/30 15:47:43      at oracle.adf.view.faces.webapp.AdfFacesFilter.doFilter(AdfFacesFilter.java:87)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:670)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:378)
  05/07/30 15:47:43      at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:869)
  05/07/30 15:47:43      at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:288)
  05/07/30 15:47:43      at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:120)
  05/07/30 15:47:43      at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:299)
  05/07/30 15:47:43      at java.lang.Thread.run(Thread.java:534)
  05/07/30 15:47:43 Caused by: javax.servlet.ServletException: Connection reset by peer: socket write error
  05/07/30 15:47:43      at com.evermind.server.http.EvermindPageContext.handlePageThrowable(EvermindPageContext.java:753)
  05/07/30 15:47:43      at com.evermind.server.http.EvermindPageContext.handlePageException(EvermindPageContext.java:700)
  05/07/30 15:47:43      at qaFollowup2e_jspx._jspService(qaFollowup.jspx:232)
  05/07/30 15:47:43      at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:60)
  05/07/30 15:47:43      at oracle.jsp.runtimev2.JspPageTable.service(JspPageTable.java:343)
  05/07/30 15:47:43      at oracle.jsp.runtimev2.JspServlet.internalService(JspServlet.java:543)
  05/07/30 15:47:43      at oracle.jsp.runtimev2.JspServlet.service(JspServlet.java:441)
  05/07/30 15:47:43      at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
  05/07/30 15:47:43      at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:61)
  05/07/30 15:47:43      at oracle.security.jazn.oc4j.JAZNFilter.doFilter(Unknown Source)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:672)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:378)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher.unprivileged_forward(ServletRequestDispatcher.java:300)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher.access$100(ServletRequestDispatcher.java:36)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher$2.oc4jRun(ServletRequestDispatcher.java:207)
  05/07/30 15:47:43      at oracle.oc4j.security.OC4JAccessController.doPrivilegedWithException(OC4JAccessController.java:186)
  05/07/30 15:47:43      at oracle.oc4j.security.OC4JSecurity.doPrivileged(OC4JSecurity.java:85)
  05/07/30 15:47:43      at com.evermind.server.http.ServletRequestDispatcher.forward(ServletRequestDispatcher.java:211)
  05/07/30 15:47:43      at com.sun.faces.context.ExternalContextImpl.dispatch(ExternalContextImpl.java:322)
  05/07/30 15:47:43      ... 20 more

  Thanks for the information on this.
  What I can't understand is why the first request hasn't finished. I specifically tried waiting several seconds between clicking on various components. From all visual cues (from IE) the previous request has completed and the screen has redrawn. So, the requests shouldn't be overlapping. Is there possibly something happening with the ADF javascript that could be making this happen?
  When the error occurs, the page fails to update properly (i.e., the components that should now be visible due to a change in a radio button selection are not rendered). This leaves the application in an inconsistent state and the page can be filled out improperly by the end user.
  I know that's a long winded way of saying "it doesn't seem innocuous, since the application state gets messed up because of the error."
  Let me know if there's anything I can do to work around this.
  Thanks Adam.

• Binary Socket Security

  Hello,
  The documentation is a bit sparse on what to do with binary sockets and the security model.  Particularily what it means to 'return a cross domain policy file' ( See Section 1.4.3 and 1.5.6 of Cross Domain Policy File Documentation http://learn.adobe.com/wiki/download/attachments/64389123/CrossDomain_PolicyFile_Specifica tion.pdf?version=1 )
  This is what my socket server code looks like in PHP:
  (PHP)
  if (strcmp( substr($input,0,22), "<policy-file-request/>") == 0 ){              
       socket_write($socket,"<?xml version=\"1.0\"?>\n<!DOCTYPE cross-domain-policy SYSTEM\n\"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd\">\n<cross-domain-policy>\n<allow-access-from domain=\"*\" to-ports=\"4041\"/>\n</cross-domain-policy>\n\n");
  When I run my AS3 code
  var socket:Socket = new Socket();      
  socket.endian = Endian.BIG_ENDIAN;
  socket.addEventListener(Event.CLOSE, close);
  socket.addEventListener(Event.CONNECT, connected);
  socket.addEventListener(IOErrorEvent.IO_ERROR, io_error );
  socket.addEventListener(SecurityErrorEvent.SECURITY_ERROR, security_error );
  socket.addEventListener(ProgressEvent.SOCKET_DATA, socket_data);   
  socket.addEventListener(Event.DEACTIVATE, close);
  socket.timeout = 3000;
  socket.connect(host,4041);      
  The client does ask for the security file,  but after the server writes the security file to the socket the client socket shuts down and returns a security error.
  What am I doing wrong?  Should the server be outputting a URL where the crossdomain.xml is located instead?  I don't understand what nuance I am missing.
  Could someone please explain what I am missing?
  Thanks

  My problem was that I was sending binary data through the socket previous to sending the policy file.  I just sent the policy file immediately upon connect and everything worked out fine.   I had to add a chr(0) to the end of the policy file as well.
  Thanks for your time.

• Flex encounters "Security error accessing url.Unable to load WSDL"

  i have created a flex application which connects to SAP via web service.
  when i try to run my flex application i encounter the following error.
  "Security error accessing url.Unable to load WSDL"
  i went through various posts relating a BSP application and crossdomain.xml
  i have created the crossdomain.xml file in the application and
  i tried those options and still not able to figure out the problem.
  the security error is because of the absence of the crossdomain.xml file, and in which path should i be saving the file?
  Kindly help me solve the problem.
  Thanks in advance.

  Have you seen this blog
  "Crossdomain.xml" in ABAP Web AS Server cache

• Security error accessing ur unable to load wsdl

  HI
  I am using a webservice(.net webservice) that is on my
  localhost and using it in flex application that is also on my
  system. Means both the webservice and flex application are on the
  same system.
  But when i gives the reference of the webservice using the
  system ip and run the application by the flex builder it generates
  the error as:
  mx.messaging.messages::ErrorMessage)#0
  body = (Object)#1
  clientId = "DirectHTTPChannel0"
  correlationId = "24CD6542-F141-1A05-BA35-00A108CB30A0"
  destination = ""
  extendedData = (null)
  faultCode = "Channel.Security.Error"
  faultDetail = "Destination: DefaultHTTP"
  faultString = "Security error accessing url"
  headers = (Object)#2
  messageId = "CC123DF0-0E6C-05FF-7894-00A109676283"
  rootCause = (flash.events::SecurityErrorEvent)#3
  bubbles = false
  cancelable = false
  currentTarget = (flash.net::URLLoader)#4
  bytesLoaded = 0
  bytesTotal = 0
  data = (null)
  dataFormat = "text"
  eventPhase = 2
  target = (flash.net::URLLoader)#4
  text = "Error #2170: Security sandbox violation:
  http://localhost:3000/MYCIMS/flex_bin/Design.swf
  cannot send HTTP headers to
  http://myip/MyServer/AdminWS.asmx."
  type = "securityError"
  timestamp = 0
  timeToLive = 0
  I have put crossdomain.xml file in the root of the localhost
  and made every changes possible in the crossdomain.xml file but the
  application is not running.
  Please somebody provide an effective solution, I have spend
  lots of time to resolve the problem but its not being....
  Thanks in advance
  Gopi Saini

  Have you seen this blog
  "Crossdomain.xml" in ABAP Web AS Server cache

• How can I fix 2121 sandbox security error, local swf MP3 player test calls MP3's from website?

  1st Issue.  I am a new user and am fighting #2121, #2044 & #2048 Flash security errors in getting an MP3 player to work as I test the fla file in Flash CS4 on my local computer.  The fla in Flash and swf in Dreamweaver calls mp3 files from our host server on the internet.
  After reading various sparce posts and Adobe articles on this issue, I have added a crossdomain.xml file at our websites root (see file below) and added the code, flash.system.Security.allowDomain in line 1 of the action script of the flash fla to allow our site access (-see script below).  These efforts have helped get the player to work better on our test site.
  But, I am still getting the 2121 error within Flash CS4 as I debug the player or play the swf in live view within Dreamweaver.  Playing the fla or swf will lock-up the Flash 10 player and crash the program. I am having the mp3 player access the mp3 files from our web site as I test the fla.
  Here is the debug message I am getting:
  Attemping to launch and connect to Player using URL C:\Web Site Files\Plank Productions afc\Plank Productions 2010\site\MP3_List_Player_AS3.swf [SWF] C:\Web Site Files\Plank Productions afc\Plank Productions 2010\site\MP3_List_Player_AS3.swf - 209827 bytes after decompression SecurityError: Error #2121: Security sandbox violation: Sound.id3: file:///C/Web%20Site%20Files/Plank%20Productions%20afc/Plank%20Productions%202010/site/MP3%5FList %5FPlayer%5FAS3.swf cannot access . This may be worked around by calling Security.allowDomain.
  at flash.media::Sound/get id3()
  at com.afcomponents.mp3player::MP3Player/get id3()
  at com.afcomponents.mp3player::MP3Player/handleBuffe ring()
  Here is the crossdomain xml code:
  <?xml version="1.0" encoding="utf-8"?>
  <?xml version="1.0"?><!DOCTYPE cross-domain-policySYSTEM "http://www.macromedia.com/xml/dtds/cross-domain- policy.dtd">
  <cross-domain-policy>
  <allow-access-from domain="www.plankproductions.com" secure="false"/>
  <allow-access-from domain="plankproductions.com" secure="false"/>
  </cross-domain-policy>
  Here is the AS3 in line 1 of the Fla file that I added:
  flash.system.Security.allowDomain("www.plankproductions.com", "plankproductions.com");
  2nd Issue.  The online playback of the mp3 player will play about 4-7 mp3’s then lock-up in Internet Explorer 8 on a pc.  I think that is related to flash security, not sure, I do not know how to debug the mp3 player on the web site.
  http://plankproductions.com/pptemplate_afc_mp3.shtml
  Questions.
  -How can I resolve the error 2121?
  -What as3 code do I need to target the local c drive to have security clearance and work properly, is this the problem?
  -Why is the mp3 player locking up on the web page?
  Thank you in advance for any help.
  Operating System: Windows XP Professional, CS4 Web Premium

  Do you have the standard or debug player installed?  Such errors should not occur with the standard player.
  See http://helpx.adobe.com/flash-player/kb/find-version-flash-player.html#main_Find_Flash_Play er_version_type_and_capabilities__Flash_developers_only_

• Socket read error: connection reset by peer

  Hi.
  Has anybody experienced the error message �Socket read error: connection reset by peer�
  Please see below for detailed information.
  Appreciate your help
  Regards
  RT
  Enviroment specification
  Server: HP/UX 11.00 64-bit, Oracle RDBMS 8.1.6.0.0 64-bit
  2 firewalls between client and db.
  Client:
  Win 2000,
  SP3,
  Oracle Client 8.1.7.0.0 ,JDBC OCI (thin JDBC driver,class12.zip)
  JDK 1.3
  JRUN3.0
  The TCP protocol is being used in the communication
  Error messages
  Web Users receive:           Socket read error: connection reset by peer
  Trace files on the sever:      Read unexpected EOF ERROR on 18.
  Explanation: The error in the server sqlnet trace file, suggests that a client connection has terminated abnormally, i.e. client machine powered off, a cable removed or a network connection aborted without warning. No user has complained of such a problem and there is no client trace with an error.
  The problem
  The users of the java web application, experiencing an exception almost once or twice a day.
  The JRUN web-server reports broken connections to the db and client are receiving "connection reset by peer".
  At the moment when the errors occurs the users just have to wait a while(2-10 min) and then they can use the web application again.(no action is taken)
  This problem can not be reproduced. The problem happens only occasionally when the network is under heavy load and new DB connection is being created.
  The application
  The java web-application uses a customized connection pooling against the database. This pool is shared among all the users of the website. whenever a user process needs to fetch data from the database, a free connection from this pool is allocated. The application is testing if the connection is valid before making a transaction (select '1' from dual). When the error occurs a ORA-3113 end-of-file on communication channel is returned to the application.
  The path between the client and db involves at least two firewalls. The firewalls are opened for sql*net traffic. The network group can tell that enquiries from the app.server is not getting feedback from the db. They have not however, identified if the enquiries are reaching the db-srever, or if they are stopped earlier in the network.
  Around 1000 users, are using other applications which uses dedicated sqlnet connections against the db and they have not experienced any problems.
  Issues considered
  Connection pooling
  It is a customized connection pooling, developed by Lindorff developers.
  I have read through the source code for the connection pooling and it does the job as it should, and in case of bad connection, it tries to create a new connection.
  The log file shows that the call to the method DriverManager.getConnection() hangs until the server goes down, which is probably because of the fact that the method DriverManager.setLoginTimeout(), does not take effect and timeout value is Zero. ( According to oracle , Oracle JDBC does not support login timeouts and calling the static DriverManager.setLoginTimeout() method will have no effect).
  Firewall
  One thing to consider is when the firewall may decide to shut down the socket due to long inactivity of a connection. This will cause problems to JDBC Connection Pool because the pool is not aware of this disconnection at the TCP/IP level; until someone checks out the connection from the pool and tries to use it. The user will get a Socket read error: connection reset by peer.
  Jrun timeout paramter is less than the firewall�s timeout so the firewall will not close a connection before Jrun does.
  Number of processes the DB can handle
  Processes parameter is 1300, , they have not experienced the Oracle error msg �max # of processes reached�.
  Port redirection through a firewall:
  Since the firewall has a sql net proxy Port redirection through a firewall is not a problem. Problems with port redirection only appear at connect time, but in this situation the connections fail long after the connection is established.
  The network group
  The network people who investigaged the problem at Lindorff report that there are a significant amount of "dropped packages" between the database server and the jdbc client (web-application) 24 hrs. The reason for this is "unknown established TCP packet" which means that the firewall does not consider these packages to be part of an already established session. The network group believes this happen because one of the hosts send a RESET or FIN signal which the firewall have noticed but are not received by the other host.
  It seems like the firewall are dropping packages bacause of "Unknown
  established TCP packet" from both the JDBC client and the TNSLISTENER on the database server. The dropped packages are SQL*Net v2 traffic so clearly Oracle products are involved

  Presumably something is working.
  Thus the problem is not with your code. At least not the database part that you have control over.
  That error occurs when the other side closes the socket. Presumably you are catching lost connection exceptions and trying to restore it.

• Today I tried to open Safari and what I was presented was several minimized windows stating that there was a security error detected, also a suspicious activity was found in my computer. How do I go by in getting this cleared off?  Help.  Thanks

  MAcBook Pro, 2.4 Ghz Intel Core 2 Duo, 4GB 1067Mhz DDR3, Software Mac OS X Lion 10.7.5 (11G63). 
  Problem:  i tried to open Safari about a couple of hours ago and I was presented with this error message block with an address of http://www.virushealthcheck.com. The message is; Windows detected security error, due to suspicious activity found on your computer.  Contact Windows Certified Live Tech ( 1.866.606.2003).  If I clk the OK button , there are multiple layered windows that will appear after that.  Can't get out of it , except to quit Safari.  earlier today before this happened I was on Facebook, Instagram, responding email cutting and paste transactions and saving it to Microsoft word.  then I turned off my lap top for several hours. When I turned it back on awhile ago, I discovered this problem.  on top of that aI can't even clear the history everything is gray out except for the Earlier today, and the day and date of the month. I tried several times to quit Safari, turn off and turn back on my lap top to no avail.  My question is; How do I go by to in getting this error message when I click on Safari? Does that mean that I might have a virus in my lap top? Please Help.  Thanks.

  Force Quit .
  Press command + option + esc keys together at the same time. Wait.
  When Force Quit window appears, select the Safari if not already.
  Press Force Quit button at the bottom of the window.   Wait.
  Safari will quit.
  Relaunch Safari holding the shift key down.
  http://www.thesafemac.com/fbi-ransomware-virus-rampant/