Solaris 10 login banner security warning

Similar Messages

• WLC cert to avoid the security warning page

  Hi guys,
  I am doing some tests with installiing a 3rd party cert on a WLC to avoid the security warning page when trying to access the WLC through https, and I am following the following configuration example:
  http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00806e367a.shtml
  I have followed the same precedures given in the above document, and I am using windows CA to sign the CSR just for a test, I could install the final .pem cert successfully onto the WLC however I am still getting the same warning page when I was trying to login to the WLC through https. I have checked in my certificate store and I have trusted the root CA which is the windows CA in this case.
  I have also tried to access the WLC from the CA server (windows 2008 box) still getting the same warning message.
  so what should I do in order to make this to work with windows CA? did I missed something in the configuration?
  Thanks in advance for your time and help.
  Andy

  ok guys.... I was wrong last time... actually after double check again it was NOT working .... I think i just simply trusted the cert last time when i was using firefox....
  I have tried a number of different things and double checked the places that mentioned previously in this thread however I could not pick up anything wrong in particular, although I know there must be something I have missed out.....
  so this time I have also read through some other references on the web, and found the following:
  http://www.my80211.com/home/2011/1/16/wlcgenerate-third-party-web-authentication-certificate-for-a.html
  I think I did very similar config and only difference is that I am using unchained cert.
  I have double checked the following:
  on virtual interface configuration, I have ip address 1.1.1.1 and DNS host name as "wlc2112.mydomain.local"
  from the controller GUI --> Security --> web auth --> certificate, under subject name, I have CN=wlc2112.mydomain.local, however under Issuer name, I have CN=mydomain, this is a bit different from the last screen shot in the above link. could this be a problem?
  in windows 2003 server, with DNS server I have a field called "wlc2112" with IP address 1.1.1.1
  as mentioned by Scott previously, I went to the mmc certificate snap in, and under trusted root certificate authorities, I have installed the WLC cert there and I could see it there as well.
  now if I try to access the WLC GUI from here I am still getting the error message same as the one below:
  http://www.vistaclues.com/the-security-certificate-presented-by-this-website-was-issues-for-a-different-website%E2%80%99s-address/
  I then followed the instruction and continue to the website, and when I go file --> properties --> certificate, it actually shows the certificate is issued to 169.254.1.1 and issued by 169.254.1.1, with a red cross on the cert itself....... I have no idea where is this come from, so I just want to ask when I try to access the WLC GUI through a web browser, after I type in https://wlc-ip-address, how does the browser know / search for which certificate it needs to look into? I think in my case here it clearly points to the wrong certificate?
  also on the server I went to http://127.0.0.1/certsrv and selected "download a CA certificate, certificate chain or CRL" and then "install this CA certificate chain", does this mean I acknowledge to trust the root CA by doing this?
  I am not sure what I have missed out but it just does not work for some reason... is there any other places that I need to check/verify?
  Sorry for the long writing but any comments would be highly appreciated.
  Thanks in advance for your help.

• Change language on the security warning popup when using signed applets

  Hi
  Today when we use a signed applet the user get a security warning popup box where the langauge is English.
  Is it possible to change the language to other that English and if possible how can this be done ?
  Thanks in Advance,
  Henrik Rasmussen
  Denmark

  The Microsoft one is especially annoying because they should know better than to submit from secure to insecure.
  Let's say you are currently logged in to a Microsoft account and you click Sign in on MSDN. The site redirects to login.live.com, which recognizes that you are logged in, and generates a page with a hidden form and submits it back to MSDN using a script. This is where the problem is, because the hidden form action URL is not secure, yet it is on a secure page. (See Screen shots)
  The workaround (hack, whatever) is to modify the form to a secure address before it is submitted. How can you do that? Since it is impractical to do by hand, you can use an add-on.
  In an earlier thread, user thx1200 posted a link to a userscript that fixes this issue on login.live.com. The userscripts''.''org site has seemingly died, but there is a copy on a mirror of that site.
  * Earlier thread (long): [https://support.mozilla.org/questions/964250 How do disable this Warning? Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection]
  * You need Greasemonkey to run user scripts: https://addons.mozilla.org/firefox/addon/greasemonkey/
  * User script install page: [http://userscripts-mirror.org/scripts/show/173384.html Fix security warning for Microsoft Live login]

• Internet Security Warning on every Send/recieve

  Hi Experts,
  We are using self-signed certificate for our server and all the accounts are using POP3/TLS as their account setting. As expected whenever we open Outlook 2007, we get the Internet Security Warning, to which we answer YES and it works perfectly fine.
  But from last few days, on one of the laptop the warning comes on every send/receive and everytime we try to send an email. I haven't changed anything on that laptop and all the settings are same on all the other laptops.
  Any suggestions?
  Thanks in advance..

  Hi,
  Please follow the instructions to remove the warning :
  Log in as the administrator. Enter Password and Username when prompted into the corresponding fields in the login screen.
  Launch the Start Menu by clicking on the
  Start icon located on the bottom left corner of the Home Screen Taskbar.
  Launch the Internet Explorer browser
  application. To launch Internet Explorer browser, click on the label that reads the same, in the
  Start Menu Pop. Alternately, you can launch it by clicking on
  Internet Explorer browser the shortcut icon. The explorer browser can also be accessed by clicking on the Internet Explorer icon on the Quick Launch bar.
  Select the label that reads Tools from the toolbar. From the submenu that drops down, select the
  Internet Options option. This will launch the Internet Properties
  window.
  Microsoft Outlook 2007
  From the internet options Window, select the tab that reads Content.
  Select the Clear SSL State button under the label that reads
  Use certificates to positively identify yourself, certification, authorities and publishers. You will be prompted with the confirmation box as soon as you hit the Clear SSL State. Hit the OK button to confirm your selection. Next, select the Advanced
  Tab. (you will find the  )
  The advanced tab will list down all the Setting details of the browser. Hit the option that reads
  Reset. Click on the Apply button after you are done with Resetting. Close all the programs and initiate system restart.
  Re-launch the Microsoft Outlook application and check whether your system will receive any further error warnings regarding Outlook 2007 Internet Security. The above technique will fix your issues with Internet Security warnings.
  In case you still have an issue then I would suggest you to open phone case with Microsoft support to help out in correcting the issue caused .You can create case by calling toll free 1-800-936-4900 or alternately you can also visit
  http://support.microsoft.com/oas
   Hope this helps
  Thanks

• JAAS - Solaris Login Module

  Hi all,
  Iam trying to use Solaris Authentication as backend.Iam using JAAS 1.0, jdk1.3.x
  I downloaded the tutorial from Sun's web site and changed the JAAS configuration file to use SolarisLoginModule
  In the code, i call the LoginContext's login() method passing
  lc.login(cfgEntryName, new myCallbackClass() )
  where cfgEntryName in the jaas config file has value like
  osgLogin {
  com.sun.security.auth.module.SolarisLoginModule required debug=true;
  I Dont know why the Solaris Login module is not calling my handle() method in myCallbackClass. Its just succeeding, without prompting me for user password.
  Does anyone know how to make SolarisLoginModule call my callback.?
  Thanks in advance!
  Madhu

  I am using jdk1.4 which has the JAAS included and I am having the same problems trying to get NTLoginModule and UnixLoginModule to using the handle() method in my callbackClass.
  I was able to get a different NT login module to do my authentication. The loginModule is called com.tagish.auth.win32.NTSystemLogin and is available from:
  http://free.tagish.net/jaas/
  I can not however find another LoginModule to do my solaris/unix authentication. Surely somebody has done this before. If so please let all of us know.
  thanks
  Mark

• How to disable security warning "Your current security settings put your computer at risk"

  Hi,
  I wonder if able to disable the security warning bar at the bottom of the IE window.  I enabled the ActiveX control and plug-ins in the IE Option settings, this caused the  security warning "Your current security settings put
  your computer at risk" pop up whenever load the pages.  Is there a way can turn off this warning?
  Thanks a lot for helping!

  That is not an option for Koreans...
  In Korea, most of commercial, financial, or governmental operations need to be done on the Internet. In early 2000's, IE could not support high security outside US due to US laws (that was stupid, but happened) , so Korean sites developed cryptography ActiveX
  controls to circumvent it. Korean government made laws to force all sites to use those kind of ActiveX controls at that time.
  A decade has passed, and now the stupid US law has been repealed. But the cryptography ActiveX industry has become so strong (probably bribing the high officers in the government), that all Korean sites are still using those kind of ActiveX controls. And
  you know, they require Windows and IE. Recently some sites started to support other browsers, but still the majority requires IE and ActiveX.
  So, if you live in Korea, you have no choice but to use IE on Windows to get things done, and almost all sites popup ActiveX installation dialogues constantly. If you do not change the security settings, when you approve the installation, the whole site
  refreshes. That is time-consuming and frustrating. 
  To keep my mental heath, I deal with all Korean sites in a virtual machine. To avoid the refresh problem, I have changed the security settings from "prompt" to "enable". The "Your security is at risk..." banner at the bottom
  of IE is surely annoying. I hope Microsoft let us either remove that banner or remove the support of ActiveX controls altogether.

• Stop security warning

  When I login to my.msn.com I get a security warning ref to secure/unsecure data transmission. How do I disable this warning for this site and/or all sites?
  Don
  Win7 Firefox 3.6.12

  That warning comes from the Java plugin when the page runs an unsigned Java applet.
  Do you notice anything important missing if you Cancel it?
  ''If not, you could turn off Java for that site.''
  Call up the Page Info dialog. Either:
  * right-click and choose View Page Info > Permissions
  * Tools menu > Page Info > Permissions
  * click the globe icon in the address bar > More Information > Permissions
  Here you can set the Java(TM) Platform SE 7 plugin to Block.
  ''If the Java applet is important, please complain to the site.'' As noted in the dialog, Oracle is planning to completely disable unsigned applets in the future.

• Login banner

  Hello,
  Would like to add a login banner pop-up when I users connect to my home network.  This will assure me that they have connected correctly and securely.
  thanks

  neighbour_devil wrote:
  Hope this helps
  http://is.depaul.edu/_downloads/2_logonbanners.pdf#search=%22login%20banner%2Bconfiguration%22
  Thanks, I'll assume that Cisco has a banner file and there is a way to edit that, am I correct? If not what is the default verbiage for the banner login script?

• How to disable IE Security Warning on opening a "local" visio file with Visio Viewer ActiveX?

  Hello all,
  Everyone knows that Microsoft released ActiveX based Visio Viewer for free and allow the users to open Visio drawing and view/print via IE browser.
  The problem that I am facing is that some users are complaining about IE browser's security warning on "active content to run in files on My Computer".
  It means that opening .VSD files from the network, internet, intranet would be all OK but if the user wants to open .VSD files from the local hard drive (or open it as a mail attachment, which will extract it to a temp folder), it prompt the user to select "Allow Blocked Content" EVERYTIME they open them.
  I know that I can GLOBALLY disable this warning by going through Tools - Internet Options - Security section and enable "Allow active content to run in files on My Computer" but I hope that there is a way (or workaround) to allow them by file type or location, etc.
  Questions:
  1. Is there any way to disable those warning for all .VSD only while we still UNCHECK the option on Internet Options?
  2. Is there any 3rd party Win32 based viewer which wouldn't have those restriction?
  3. Is it safe assumption that McAfee VirusScan and Host IPS protection is sufficient enough to remove the IE's security warning feature?
  Thanks in advance?
  Young-

  Are you able to host/launch the VSD file via an HTM page? In that case you can format the HTM page as shown below. This will trick IE into thinking it is loading the file off of a website. Commonly called 'mark of the web'.
  <?xml version="1.0" encoding="utf-8" ?>
  <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  <!-- saved from url=(0014)about:internet -->
  <html>
  </html>

• Importing fdf with js always get security warning

  Hi, I have a form with some options (1 category as text with drop down and 5 radio button). The selection get the name of the fdf file to import. On import I get every time the security warning. I select the "Remember this action..." and I click "Allow". In the Settings/Security (Enhanced) the path and the file doesn't appear, so I set it manually, but I still get the security warning everytime. Files are stored locally in a different partion as the system. This happens on 2 machines (Mac 10.7, Mac10.8, Acrobat X, ACrobat XI, Reader XI).
  this is the script
  var A = "/Volumes/Data_Sharing/Projects/.../.../.../";
  var B = getField("Category").valueAsString;
  var C = "-okom-data.fdf";
  var D = A + B + C;
  var E = this.getField("Text1");
  E.value = D;
  this.importAnFDF(D);
  The field Text1 is only a string visualisation for controlling
  If I set an Import Data Event without js I don't have any security warning with fdf (but always with xfdf, xml and text files).
  If you know what I miss, thanks for any suggestion
  Curzio

  Unfortunately i dont think its possible.
  You'd think a deployment could restrict warnings for a local intranet, or have an exception list.
  There was another answer i did see but i would not recommend this at all. Even the person who put the post up does not recommend it.
  http://forums.sun.com/thread.jspa?threadID=5253971
  You have two options, do not have java 1.6 on the desktop as this is the version that brings up the security warning. Or you can try the new
  application with java 1.6 (As long as all functionality is tested). This will satisfy your new app, but not the applications that run of the older
  java runtime environments. (we are going to test the application under 1.6 even though its not a supported certification by the vendor.)

• Removing the "Security Warning" dialogue box on default when a PDF is opened

  Hey
  I have created a pdf document with a specific data written using iText Libraries. I have actually created a beacon that generates a notification sent to the owner's email when the pdf is opened.
  The code is under OpenAction. The problem I am facing is that as I open the document, a dialogue box is opened saying "Security Warning" The document is trying to connect to : URL. How do I get rid of this dialogue box. ? I don't want this dialogue box to appear and allow the connection by default. I have tried playing with the Trust Manager - but that doesn't seem to be the solution, as  am trying to execute my PDF document at a remote machine.

  There was a lot of media fuss years back when it was found out that PDF files could "phone home", i.e. do what you want to do. So Adobe put this warning in. It wouldn't be much good as a warning if the creator of a PDF could choose to turn it off!
  Document creators like to track people opening documents. Privacy advocates consider this a breach of privacy. The latter group shouts louder. http://en.wikipedia.org/wiki/Phoning_home

• How to stop HTTP Security warning message in transactional iview

  When I am trying to access ECC through transactional iview then I am getting HTTP security warning message i.e. This page contains both secure and nonsecure items. Do you want to display the nonsecure items?
  I think it is because portal is accessable using HTTPS protocol and when we access ECC then it uses HTTP Protocol.
  Pl help to resolve.

  Hi AshuGrover_in,
  First, welcome on SDN!
  > I think it is because portal is accessable using HTTPS protocol and when we access ECC then it uses HTTP Protocol.
  > Pl help to resolve.
  This might very well be the root cause of the issue, and if it is, you know the resolution - make all systems accessible via https.
  Anyhow, to examine the exact cause creating this message you could use tools like HttpWatch or something similar and record the client accesses to the server. If you originally have a GET to a https address, the first http request caused by the original request will throw this message.
  Theoretically, on client side, you can switch off this message: Search for "switch off http https warning" on google and you will get all possible instructions for the different clients. Anyhow, a clean landscape design with complete https connections is the aim you should have.
  Hope it helps
  Detlev
  PS: On SDN, if something helps, you might reward the answer, check it out.

• Desktop and startup shortcuts produce security warning

  I have a laptop running Windows 8.1 Pro with all updates installed. It's a domain member and the primary user was using redirected folders which worked well. Due to other reasons, the user's account was removed from the OU linked to with the redirected folders
  GPO. open file security warning The GPO was setup for Desktop and My Documents so that when the policy was removed the files would revert to the local PC. For some odd reason the Favorites was not that way but configured to leave them on the server. I discovered
  that only after the user's account had been moved out of that OU and the laptop rebooted and the user logged in.
  So the user got her desktop and documents folders back just fine. But even though I changed the GPO to revert the Favorites back to the local PC of course it didn't even after I rebooted a few more times. So when the Favorites icon in IE was clicked,
  favo0rites were still pointing to the server. I had to go through the registry and change the entries for that user's profile to point to the proper folder on the local PC.
  However after I did that then something else showed up. Now when she clicks on the IE shortcut which is pinned to the taskbar or any application shortcut on the desktop or when she logs in and the startup program run, they all produce the Open File - Security
  Warning box so she has to click OK for each one. I've tried looking up this problem but none of the fixes work for this case or I'm not going to lower the IE security.
  Oddly, the Microsoft Office shortcuts pinned on the taskbar don't produce the security window but open up the program. It only seems to happen with shortcuts to programs that I create. Also I can take those shortcuts, copy them to another folder outside
  of the user's profile and there is no security warning. So it's only within the profile that this happens.
  Anyone have an idea what is wrong and how to fix it? I don't see how my changing the path to the Favorites folder in a few places in the registry could have done this but I don't see what else since it didn't occur until after I made the registry changes.
  Jonathan

  Why not use RegShot to capture registry changes after favorites folder was modified.

• How do I get rid of the security warning for disc based Flash product

  I have a project that use a program called Articulate to turn
  powerpoint shows into a more rich flash product with audio, search
  capacities, quiz etc. There are multiple sections from multiple
  powerpoint files that generate a dozen or so flash files. The flash
  files reside in an html shell to allow for navigation. The whole
  thing is delivered on disc as a browser based training product.
  The problem is that viewing flash from a disc results in a
  security alert every time the viewer goes to a flash file. There is
  an Articulate theme blog that suggests using a product called
  server2go to make the disc function as a server to kinda fool
  browsers on the local machine into thinking the disc is a web
  server. My client wants the product to allow the users' default
  browser. So far, although server2go is supposed to allow this, it
  doesn't with the latest version of firefox (client's preferred
  browser). I can only get it to work on a select machine or 2 in my
  office with IE (server2go default) but it takes forever to launch.
  I haven't gotten it to work on any of the client's machines. The
  disc (auto launch) just freezes the machines.
  Can anyone recommend a better server emulation product, or
  tell me another solution to delivering a disc based flash product
  without getting the security warning and without making the viewer
  change settings on their machine to allow flash to play?
  I understand security issues but this makes flash virtually
  unusable for this application and I'm dead in the water if I can't
  fix it.

  Sorry, Ralph has already answered your question. If you need to get your security questions reset, you will have to contact iTunes Support:
  ACCOUNT SECURITY CONTACT NUMBERS
  Cheers,
  GB

• Open File - Security Warning with Network-based Silent Install of CS4

  I am attempting to run an enterprise deployment of CS4 Design Standard Edition onto a pool of WinXP Pro workstations. I placed all of the install files on a networked server running Windows 2003, and generated from there all of the requisite .xml files (install, uninstall, and override files). From this network share, I can successfully run a silent install.
  HOWEVER. Multiple times (two or three) during the course of the silent install, I receive the same pop-up security warning from Windows XP (definitely an OS message, not anti-virus or other) that reads as follows:
  Open File - Security Warning
  Do you want to run this file?
  Name: AIRApplicationRunner.exe
  Publisher: Adobe Systems Incorporated
  Type: Application
  From: (server IP address)
  I have tried excluding Adobe Air from the installation package, but I still receive the same security prompt. This is sufficiently a hassle to have to click through these prompts in a silent install. But more importantly I am unable to run the silent install as part of a logoff script because for all intents & purposes it is no longer a silent install (i.e. it requires user intervention). To top it off, I found when testing the logoff script the prompts are suppressed and the installation fails prior to the bulk of the installation (Photoshop, Illustrator, & InDesign).
  I'm sure that I could run the install by copying all of the files to each local workstation, but again that would defeat the purpose of an easy, network-based install. In the past I was able to install CS3 in this fashion with no troubles, which of course did not include Adobe Air.
  Can anybody offer a suggestion as to how to disable these security messages, or alternately, how to entirely exclude Adobe Air from the install package? I have found a VB script that is supposed to address the security warnings issue, but to run the script also requires the user to accept it at a security prompt.
  Thanks in advance for any assistance!
  -Dan

  I'm now able to deploy design suite premium cs4 successfully.
  The issue for me was that the AirapplicationRunner installs some useless software. I worked around the issue with the Airapplicationrunner prompt by removing any apps that are installed using that method. By "removing" I mean marking that app as "donotinstall" in the deployment file. The apps I removed are these adobe codes for adobe media player, adobe.com, adobeair itself. The below is from my deploy.xml file used for the silent workflow:
  donotinstall
  donotinstall
  donotinstall
  If you mark those three adobe codes as "donotinstall" the prompt never appears and the real apps get installed just fine.