Weblogic 6.1 security exception

Similar Messages

• Stocks RMI example not working - Security Exception

  Hi,
  I was trying to run the "Stocks" RMI example that comes with
  Weblogic server(see
  http://www.weblogic.com/docs45/classdocs/API_rmi.html#clientside)
  I compiled and configured the appropriate files, and tried to
  load the sample applet (StockApplet.java) loaded on the
  StockApplet.html page (using Microsoft IE browser).
  However, the applet generated the following exception :
  java.lang.ExceptionInInitializerError: com/ms/security/SecurityExceptionEx
       at weblogic/common/internal/TengahClassLoaders.registerURL (TengahClassLoaders.java:51)
       at weblogic/rjvm/RJVMImpl.loadFromCluster (RJVMImpl.java:1106)
       at weblogic/jndi/WLInitialContextFactoryDelegate.newContext (WLInitialContextFactoryDelegate.java:247)
       at weblogic/jndi/WLInitialContextFactoryDelegate.getInitialContext (WLInitialContextFactoryDelegate.java:205)
       at weblogic/jndi/Environment.getContext (Environment.java:122)
       at weblogic/jndi/Environment.getInitialContext (Environment.java:105)
       at weblogic/rmi/Naming.getContext (Naming.java:225)
       at weblogic/rmi/Naming.lookup (Naming.java:67)
       at examples/rmi/stock/StockApplet.init (StockApplet.java:127)
       at com/ms/applet/AppletPanel.securedCall0 (AppletPanel.java)
       at com/ms/applet/AppletPanel.securedCall (AppletPanel.java)
       at com/ms/applet/AppletPanel.processSentEvent (AppletPanel.java)
       at com/ms/applet/AppletPanel.processSentEvent (AppletPanel.java)
       at com/ms/applet/AppletPanel.run (AppletPanel.java)
       at java/lang/Thread.run (Thread.java)
  As you can see this looks like some sort of security exception. (StockApplet.java:127)
  in the above exception is the line where StockApplet calls Naming.lookup(). So
  I'm guessing it has something to do with it getting the Weblogic's RMI support
  classes to the local VM and deserializing and installing them, which generates
  a security exception.
  What needs to be done to make the example work properly?
  Thanks,
  Leonid Portnoy
  (In addition, two more types of exceptions are generated, which might be related
  to the cause of the above exception. These exceptions are :
  com.ms.security.SecurityExceptionEx[weblogic/rjvm/JVMID.setLocalID]: cannot connect
  to "testserver"
       at com/ms/security/permissions/NetIOPermission.check (NetIOPermission.java)
       at com/ms/security/PolicyEngine.deepCheck (PolicyEngine.java)
       at com/ms/security/PolicyEngine.checkPermission (PolicyEngine.java)
       at com/ms/security/StandardSecurityManager.chk (StandardSecurityManager.java)
       at com/ms/security/StandardSecurityManager.chkex (StandardSecurityManager.java)
       at com/ms/security/StandardSecurityManager.checkConnect (StandardSecurityManager.java)
       at java/net/InetAddress.getLocalHost (InetAddress.java)
       at weblogic/rjvm/JVMID.setLocalID (JVMID.java:59)
       at weblogic/rjvm/JVMID.localID (JVMID.java:43)
       at weblogic/rjvm/LocalRJVM.getID (LocalRJVM.java:143)
       at weblogic/rmi/extensions/BasicServerObjectReference.<init> (BasicServerObjectReference.java:44)
       at weblogic/rmi/extensions/BasicServerObjectAdapter.<init> (BasicServerObjectAdapter.java:43)
       at weblogic/rmi/extensions/BasicRequestHandler.<init> (BasicRequestHandler.java:30)
       at weblogic/rmi/extensions/BasicRequestDispatcher.<init> (BasicRequestDispatcher.java:42)
       at weblogic/rmi/internal/OIDManager.initializeDGCServer (OIDManager.java:267)
       at weblogic/rmi/internal/OIDManager.getReplacement (OIDManager.java:176)
       at weblogic/rmi/internal/OIDManager.replaceObject (OIDManager.java:84)
       at weblogic/rmi/server/UnicastRemoteObject.exportObject (UnicastRemoteObject.java:25)
       at examples/rmi/stock/StockApplet.init (StockApplet.java:110)
       at com/ms/applet/AppletPanel.securedCall0 (AppletPanel.java)
       at com/ms/applet/AppletPanel.securedCall (AppletPanel.java)
       at com/ms/applet/AppletPanel.processSentEvent (AppletPanel.java)
       at com/ms/applet/AppletPanel.processSentEvent (AppletPanel.java)
       at com/ms/applet/AppletPanel.run (AppletPanel.java)
       at java/lang/Thread.run (Thread.java)
  and
  com.ms.security.SecurityExceptionEx[weblogic/jndi/Environment.getProperty]: Unable
  to access system property: weblogic.jndi.provider.rjvm
       at com/ms/security/permissions/PropertyPermission.check (PropertyPermission.java)
       at com/ms/security/PolicyEngine.shallowCheck (PolicyEngine.java)
       at com/ms/security/PolicyEngine.checkCallersPermission (PolicyEngine.java)
       at com/ms/security/StandardSecurityManager.chk (StandardSecurityManager.java)
       at com/ms/security/StandardSecurityManager.checkPropertyAccess (StandardSecurityManager.java)
       at java/lang/System.getProperty (System.java)
       at weblogic/jndi/Environment.getProperty (Environment.java:598)
       at weblogic/jndi/Environment.getProviderRJVM (Environment.java:691)
       at weblogic/jndi/WLInitialContextFactoryDelegate.getInitialContext (WLInitialContextFactoryDelegate.java:166)
       at weblogic/jndi/Environment.getContext (Environment.java:122)
       at weblogic/jndi/Environment.getInitialContext (Environment.java:105)
       at weblogic/rmi/Naming.getContext (Naming.java:225)
       at weblogic/rmi/Naming.lookup (Naming.java:67)
       at examples/rmi/stock/StockApplet.init (StockApplet.java:127)
       at com/ms/applet/AppletPanel.securedCall0 (AppletPanel.java)
       at com/ms/applet/AppletPanel.securedCall (AppletPanel.java)
       at com/ms/applet/AppletPanel.processSentEvent (AppletPanel.java)
       at com/ms/applet/AppletPanel.processSentEvent (AppletPanel.java)
       at com/ms/applet/AppletPanel.run (AppletPanel.java)
       at java/lang/Thread.run (Thread.java)

  Can you post the Stock Applet and other source files...
  Jamal
  ([email protected])

• Monitoring WebLogic Using JMX - Security issue

  Hi I'm trying to run the following code, which try to connect to 2 domain and retrieve their names. When I try to connect to each domain separately, everything works fine. When I try to connect to both domain I get a security exception:
  MBeanHome home1 = null;
  MBeanHome home2 = null;
  try { 
       Environment env = new Environment();
       env.setProviderUrl(url1);
       env.setSecurityPrincipal("weblogic");
       env.setSecurityCredentials("weblogic");
       Context ctx = env.getInitialContext();
  //getting the local MBeanHome
       home1 = (MBeanHome) ctx.lookup(MBeanHome.ADMIN_JNDI_NAME);
       } catch (Exception e) {
       System.out.println("Caught exception"+e);          }
       try { 
       Environment env = new Environment();
       env.setProviderUrl(url2);
       env.setSecurityPrincipal("weblogic");
       env.setSecurityCredentials("weblogic");
       Context ctx = env.getInitialContext();
  //getting the local MBeanHome
       home2 = (MBeanHome) ctx.lookup(MBeanHome.ADMIN_JNDI_NAME);
       } catch (Exception e) {
       System.out.println("Caught exception" + e);
       System.out.println("domain1: "+home1.getDomainName());
       System.out.println("domain1: "+home2.getDomainName());
  And the exception I get is:
  java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[weblogic, Administrators, IntegrationAdministrators]
       at weblogic.rjvm.BasicOutboundRequest.sendReceive(BasicOutboundRequest.java:108)
       at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:137)
       at weblogic.management.internal.AdminMBeanHomeImpl_814_WLStub.getDomainName(Unknown Source)
       at com.jacada.weblogic.WLDomainMonitor.main(WLDomainMonitor.java:200)
  Caused by: java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[weblogic, Administrators, IntegrationAdministrators]
       at weblogic.security.service.SecurityServiceManager.seal(SecurityServiceManager.java:697)
       at weblogic.rjvm.MsgAbbrevInputStream.getSubject(MsgAbbrevInputStream.java:190)
       at weblogic.rmi.internal.BasicServerRef.acceptRequest(BasicServerRef.java:827)
       at weblogic.rmi.internal.BasicServerRef.dispatch(BasicServerRef.java:300)
       at weblogic.rjvm.RJVMImpl.dispatchRequest(RJVMImpl.java:1023)
       at weblogic.rjvm.RJVMImpl.dispatch(RJVMImpl.java:943)
       at weblogic.rjvm.ConnectionManagerServer.handleRJVM(ConnectionManagerServer.java:225)
       at weblogic.rjvm.ConnectionManager.dispatch(ConnectionManager.java:796)
       at weblogic.rjvm.t3.T3JVMConnection.dispatch(T3JVMConnection.java:760)
       at weblogic.socket.NTSocketMuxer.processSockets(NTSocketMuxer.java:105)
       at weblogic.socket.SocketReaderRequest.execute(SocketReaderRequest.java:32)
       at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
       at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)
  Exception in thread "main"
  Thanks!

  try enabling the trust between the weblogic server domains.
  http://e-docs.bea.com/wls/docs81/secmanage/domain.html#1173731
  If you want two WebLogic Server domains to interoperate, perform the following procedure in both domains:
  Expand the Domains node (for example, Examples).
  Click the View Domain-Wide Security Settings link on the Domain-->General page.
  Select the Security Configuration-->Advanced tab.
  Uncheck the Enable Generated Credential attribute.
  Enter a password for the domain in the Credential text field. Choose the password carefully. BEA Systems recommends using a combination of upper and lower case letters and numbers.
  Confirm the password by entering it in the Confirm Credential text field.
  Click Apply
  Sowjanya

• Catching security exception on user lockout

  Hi,
  We want to show a message to the user when his id is locked by weblogic after
  exceeding invalid login attempts. So when the user tries to login, we are not
  able to differentiate between the invalid password failure and the failure due
  to user-lockout. The documentation mentions that once a user account is locked,
  any subsequent attempts to access the account raise a Security exception. We are
  using FORM authentication, and are forwarded to same login-error-page in both
  cases. Perhaps that exception is getting caught by the web server and we end up
  seeing the same login-error-page.
  http://edocs.bea.com/wls/docs70/secmanage/passwords.html
  http://edocs.bea.com/wls/docs81/messages/Security.html#BEA-090078
  Any way around this?
  Priyank

  I don't think that there is a way to catch this case. I believe the
  thought was that if you give a potential attacker an indication of why
  authentication failed you are giving them too much information. With no
  indication of the failure an attacker doesn't know if the authentication
  failed due to a bad username, a bad password or what. I agree that it
  makes it hard for the "good" user who mistyped their password once too
  many times.
  PaulF
  On Wed, 26 Nov 2003 10:38:10 -0500, Peter <PeterB> wrote:
  >
  "Priyank" <[email protected]> wrote in message
  news:3fbc445b$[email protected]..
  Hi,
  We want to show a message to the user when his id is locked by weblogicafter
  exceeding invalid login attempts. So when the user tries to login, we
  arenot
  able to differentiate between the invalid password failure and the
  failuredue
  to user-lockout. The documentation mentions that once a user account islocked,
  any subsequent attempts to access the account raise a Security
  exception.We are
  using FORM authentication, and are forwarded to same login-error-page inboth
  cases. Perhaps that exception is getting caught by the web server and weend up
  seeing the same login-error-page.
  http://edocs.bea.com/wls/docs70/secmanage/passwords.html
  http://edocs.bea.com/wls/docs81/messages/Security.html#BEA-090078
  Any way around this?
  I would ask in the weblogic.developer.interest.servlet newsgroup.
  Using M2, Opera's revolutionary e-mail client: http://www.opera.com/m2/

• Untrusted Connection - when I try to add a security exception, NOTHING happens

  A game company Web site I go to all the time has just started giving me Untrusted Connection messages. I was able to visit it with no problems as recently as a few hours ago, but now I just get a page that says "You have asked Firefox to connect securely to [site], but we can't confirm that your connection is secure" and goes on to explain about security certificates and so on.
  When I click "I understand the risks" then "Add exception", an "Add Security Exception" dialog box comes up as expected. However, when I click "Confirm Security Exception" on that dialog box (with or without clicking "Get Certificate" first), LITERALLY NOTHING happens. I don't mean I get an error message, or some result I'm not expecting, or even that the dialog box disappears. When I say nothing happens, I mean quite literally NOTHING happens. The button is not greyed out, yet clicking it has absolutely no effect. This leaves me with no means of closing the dialog box except clicking "Cancel", and therefore no means of accessing the site.
  I've seen similar problems mentioned on this site, but mostly they either have the button greyed out (mine isn't) or they get a conflicting message saying the certificate is fine and doesn't need replacing (I don't). I have not seen anyone else post about my version, where everything looks normal and internally consistent yet the "Confirm Security Exception" button is non-functional.
  This is not the first time I've had this problem, but it's the most annoying in that this time, it's affecting a site I normally visit several times a day rather than one I don't care that much about. As far as I recall, in my hands the "Confirm Security Exception" button has NEVER functioned, with the problem even surviving a near-total replacement of the hardware including the hard drive Firefox lives on.

  Make sure that you do not run Firefox in (permanent) Private Browsing mode (Never Remember History).
  *https://support.mozilla.org/kb/Private+Browsing
  *Tools > Options > Privacy > Firefox will: "Use custom settings for history"
  *Deselect: [ ] "Always use private browsing mode"
  Check out why the site is untrusted (click "Technical Details to expand that section) and if this is caused by a missing intermediate certificate then see if you can install this intermediate certificate from another source.
  You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.
  *Click the link at the bottom of the error page: "I Understand the Risks"
  Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".
  *Click the "View..." button and inspect the certificate and check who is the issuer of the certificate.
  You can see more Details like intermediate certificates that are used in the Details pane.
  If "I Understand the Risks" is missing then this page may be opened in an (i)frame and in that case try the right-click context menu and use "This Frame: Open Frame in New Tab".
  Note that some firewalls monitor secure (https) connections and send their own certificate instead of the website's certificate.

• How can I get Firefox to load pages properly and stop asking me to add every single page I visit as a "security exception"?

  I just downloaded the newest version of Firefox today because it is required for some of the websites I need for my college courses. However, every single website I go to (even the Mozilla site, Google, etc.) says that there's an "untrusted connection." On some sites I have an option between "Get me out of here!" or to add this particular site as a security exception. As you can probably imagine, this is very time consuming and frustrating. I have uninstalled the program (clean uninstall) and reinstalled it. I have reset Firefox, and nothing helps. The problem persists in Safe Mode as well. Along with this issue, every website I manage to get access to is all kinds of messed up. Modules are missing, or the whole page is blank. It can sit there for an hour and nothing loads. I have a good internet connection and fast processor. I was using Chrome before, and Internet Explorer with no issue. About two years ago I used Mozilla Firefox on this same computer and had no issues. I have a 64-bit system, which is the only issue I can think might be causing this problem. I have gone through and tried changing just about every setting, and nothing has helped. I am at my wit's end because I have homework to do and can't because of this problem.

  Glad it is fixed. Thanks for posting back, (even if we are not sure exactly what happened).

• I failed to Confirm Security Exception for a site confirmed to be trusted, but apparently only supported by Internet Explorer, and am now barred from the site, so how do I access it?

  I have been successfully accessing a secure site using a Citrix plugin. The security certificate for the site was renewed on 17 September and is valid, but is apparently supported by Explorer. When I accessed it today, Firefox reported it as Insecure. I attempted to bypass the Firefox block, but must have failed to Confirm Security Exception, so that my access is now denied as I 'have said this is not a trusted site' (error 183). Is there any way I can now access the site.

  Thank you for your reply.
  My problem isn't removing my log-in name and password for a site.
  The problem is I already had the log-in name and password saved by FF, but I was required by the site to change the password. FF did not recognize that it had changed and refuses to prompt me to save the new password.
  After several attempts to force the prompt, I deleted the site from the Saved Password list, hoping that the next time I entered my log-in name and password on that site FF would ask if I wanted to save both. That did not happen even after exiting FF and relaunching it.
  So, right now FF will not save my log-in name and password for a site that it used track for me. Given the complexity of the new password, I really do not want to manually enter it every time I use the site.
  Regards.

• How do I delete a Security Exception from the list of items where 'Confirm Security Exception' has been selected?

  I looked at all the previous solutions, some of which were the same., but they didn't answer my question.
  Firefox 17.01
  Ubuntu 12.04
  If I go to
  Edit --> Preferences --> Advanced --> Encryption
  it looks like 'View Certificates' is the likeliest place to look for the Security Exceptions resulting from me clicking 'Confirm Security Exception'.
  I have looked at the five tabs on the next dialog box 'Certificate Manager', and the most likely looks like the 'Servers' tab.
  On this tab, I can see that there is a button to 'Add Exception...', but nowhere to 'Show Exceptions', and the 'Add Exception...' button only provides means to add a new exception.

  Correct: you can find the exceptions under the '''Servers''' tab. Unlike other entries, your custom exceptions should have the '''Server''' column filled out; this should make them easier to locate. Select an entry, then click the '''Delete...''' button.

• Security exceptions not configurable after release 31 (bug number 1042889 is not fixed)

  We are running Firefox 31 32 and 33 on different machines on windows/XP (updated until end of support).
  Our router has an expired certificate. On the machines updated to Firefox 32 or above the security popup screen does not show. Instead we just get the corresponding error message, when trying to access the router's homepage.
  I looked at the support thread "Secure Connection Failed- can not confirm security exception (since update to 31)" .
  The posted solutions do NOT work!
  Chrome and even IE work fine.
  Please take a look at what was changed and reverse it.
  Or add a possibility to configure exceptions to the always accessible options tab "security", Having only 262 users with the same problem, means all others having the problem just moved to other browsers.
  For someone using Firefox since the beginning and liking it this will be a hard step, so I raise the issue again.
  No, buying a new router is NOT an option, because it manages our network storage and printers and the rule is "never fix a running system".

  hello, the fix of the bug number you have referred to has already landed in firefox 31.2.0 esr and will land in the regular firefox release channel in case there is an update to firefox 33 or else in version 34.

• Unable to run a form(FOrms 5.0) on Web. Security exception E

  Hi,
  I am trying to run a simple form developed in Forms 5.0 over our
  intranet.
  Environment: On NT I am using Oracle 8.0.5, Developer/2000
  Server and Internet Information Server 4.0.
  I have created a simple form and deployed on the server.
  (created the virtual directories for Java related directories as
  per some documentation available with me). Made a small html
  document containing the Applet definition to run this form. When
  I tried to execute this, it gives the following security
  exception error.
  ==============================================
  com.ms.security.SecurityExceptionEx
  [oracle/forms/uiClient/v1_4/engine/Runform.initClipboard]:
  Clipboard access denied.
  at com/ms/security/permissions/UIPermission.check
  at com/ms/security/PolicyEngine.deepCheck
  at com/ms/security/PolicyEngine.checkPermission
  at com/ms/security/StandardSecurityManager.chk
  at
  com/ms/security/StandardSecurityManager.checkSystemClipboardAcces
  s
  at com/ms/awt/WToolkit.getSystemClipboard
  at
  oracle/forms/uiClient/v1_4/engine/Runform.initClipboard
  at oracle/forms/uiClient/v1_4/engine/Runform.startRunform
  at oracle/forms/uiClient/v1_4/engine/Runform.run
  at java/lang/Thread.run
  com.ms.security.SecurityExceptionEx
  [oracle/forms/uiClient/v1_4/engine/Runform.initClipboard]:
  Clipboard access denied.:Clipboard access denied.
  Microsoft (R) VM for Java, 4.0 Release 4.79.0.2435
  ==============================================
  ? help
  c clear
  f run finalizers
  g garbage collect
  m memory usage
  q quit
  t thread list
  ==============================================
  Can any body help me, where I might have gone wrong, either in
  the development or deployment.
  I am also, running Oracle Application server 4.0.7 on the
  server, but I am not using the cartridge based deployment of
  forms, beca, I could not find way to create Forms
  application/Cartridge in it. If any one about it please help me.
  Early response is highly appreciated.
  Thanking you in advance ..// Manohar Reddy //
  null

  Hi Mobeen,
  That is one thing that I wanted to know. How do I make Forms
  Server to run as Service. Please explain me the
  procedure/operation.
  I am using IIS 4.0.
  Do you have any Idea, how to implement the Cartridge version of
  the Forms on OAS 4.0
  Thanks for the information though ..// Manohar //
  mobeen (guest) wrote:
  : hi
  : well u can run forms server asa service on NT then even if u
  log
  : out i wont terminate.
  : which web server r u running
  : mobeen
  : Manohar Reddy (guest) wrote:
  : : Thank you Mobeen for your time..
  : : I was able solve the problem.
  : : The problem was, my Forms Server(F50srv32.exe) was
  terminating,
  : : whenever I log out of that box. Now, I need to know, I to
  make
  : : that Process to run continuously, like a servece.
  : : Another issue, which mentioned, in my y'days mail is, How to
  : run
  : : these forms as the CARTRIDGE method ? ..
  : : Does any bdy can help me ..// Manohar //
  : : Mobeen (guest) wrote:
  : : : Hi
  : : : i guesss u have not exported Dev2k.x509 for Developer/2000.
  : : : copy Dev2k.x059 file to ur harddisk from the media
  : : : then
  : : : use javakey -c Developer/2000 true
  : : : javekey -ic Developer/2000 Dev2k.x509
  : : : it would generate identitydb.obj place that file in
  : : /user/profile
  : : : directory.
  : : : plus u have to set forms60_mapping and forms60_output
  : Registry
  : : : Variables
  : : : i hope that would sovle ur problem
  : : : mobeen
  : : : Manohar Reddy (guest) wrote:
  : : : : Hi,
  : : : : I am trying to run a simple form developed in Forms 5.0
  : over
  : : : our
  : : : : intranet.
  : : : : Environment: On NT I am using Oracle 8.0.5,
  Developer/2000
  : : : : Server and Internet Information Server 4.0.
  : : : : I have created a simple form and deployed on the server.
  : : : : (created the virtual directories for Java related
  : directories
  : : : as
  : : : : per some documentation available with me). Made a small
  : html
  : : : : document containing the Applet definition to run this
  form.
  : : : When
  : : : : I tried to execute this, it gives the following security
  : : : : exception error.
  : : : : ==============================================
  : : : : com.ms.security.SecurityExceptionEx
  [oracle/forms/uiClient/v1_4/engine/Runform.initClipboard]:
  : : : : Clipboard access denied.
  : : : : at com/ms/security/permissions/UIPermission.check
  : : : : at com/ms/security/PolicyEngine.deepCheck
  : : : : at com/ms/security/PolicyEngine.checkPermission
  : : : : at com/ms/security/StandardSecurityManager.chk
  : : : : at
  com/ms/security/StandardSecurityManager.checkSystemClipboardAcces
  : : : : s
  : : : : at com/ms/awt/WToolkit.getSystemClipboard
  : : : : at
  : : : : oracle/forms/uiClient/v1_4/engine/Runform.initClipboard
  : : : : at
  oracle/forms/uiClient/v1_4/engine/Runform.startRunform
  : : : : at oracle/forms/uiClient/v1_4/engine/Runform.run
  : : : : at java/lang/Thread.run
  : : : : com.ms.security.SecurityExceptionEx
  [oracle/forms/uiClient/v1_4/engine/Runform.initClipboard]:
  : : : : Clipboard access denied.:Clipboard access denied.
  : : : : Microsoft (R) VM for Java, 4.0 Release 4.79.0.2435
  : : : : ==============================================
  : : : : ? help
  : : : : c clear
  : : : : f run finalizers
  : : : : g garbage collect
  : : : : m memory usage
  : : : : q quit
  : : : : t thread list
  : : : : ==============================================
  : : : : Can any body help me, where I might have gone wrong,
  either
  : : in
  : : : : the development or deployment.
  : : : : I am also, running Oracle Application server 4.0.7 on the
  : : : : server, but I am not using the cartridge based deployment
  : of
  : : : : forms, beca, I could not find way to create Forms
  : : : : application/Cartridge in it. If any one about it please
  : help
  : : : me.
  : : : : Early response is highly appreciated.
  : : : : Thanking you in advance ..// Manohar Reddy //
  null

• All of my previous security exceptions disappeared when I upgraded Firefox and I have NO list of what they were; how do I get them back?

  I was pestered to death by Firefox to upgrade to 12.0. I am really sorry I did. I lost all my Security Exceptions. Tools > Options > Security > Exceptions All of my previous security exceptions disappeared when I upgraded Firefox. They are gone and I have NO list of what they were. Is there ant way to bring them back?

  The security exceptions that allow other sites to install software?
  Which version did you have before -- 3.6.x or Firefox 11?
  I don't know whether you regularly back up your computer, but if you have a backup of your Firefox profile folder, then that data should be in there. If you can locate a backup copy of permissions.sqlite, you could use a utility to extract the list. (Or find a volunteer here to assist you with that.)
  By the way, did your pop-up exceptions and image exceptions carry over? You can check those under Tools > Options > Content.

• Signed applet throws security exceptions

  Since nobody seems to be reading the Signe Applet forum, I decided to try here:
  Hi all
  I have problems with signed applet (self-made cert), and after reading this forum I see this is more or less common.
  The problem that I am having is, that I can not use doPrivilege() and similar tricks, because applet needs to be Java 1.1 compatible.
  So, signing will have to work.
  Applet is signed using 1.5.0_06 jarsigner. Jarsigner verifies it OK.
  It works on JVM 1.5.0_06 but not on 1.4.2_08.
  Please help me make if work under any JVM.
  The error I get is:
  Java(TM) Plug-in: Version 1.4.2_08
  Using JRE version 1.4.2_08 Java HotSpot(TM) Client VM
  User home directory = C:\Documents and Settings\miha
  Proxy Configuration: Automatic Proxy Configuration
       URL: http://orion.nil.si/proxy.pac
  c:   clear console window
  f:   finalize objects on finalization queue
  g:   garbage collect
  h:   display this help message
  l:   dump classloader list
  m:   print memory usage
  o:   trigger logging
  p:   reload proxy configuration
  q:   hide console
  r:   reload policy configuration
  s:   dump system properties
  t:   dump thread list
  v:   dump thread stack
  x:   clear classloader cache
  0-5: set trace level to <n>
  java.security.AccessControlException: access denied (java.net.SocketPermission host.domain.dom resolve)
  TelnetWrapper PROXY: java.security.AccessControlException: access denied (java.net.SocketPermission 127.0.0.1:0 connect,resolve)
  java.lang.NullPointerException
       at net.propero.rdp.ISO.connect(ISO.java:123)
       at net.propero.rdp.MCS.connect(MCS.java:84)
       at net.propero.rdp.Secure.connect(Secure.java:153)
       at net.propero.rdp.Secure.connect(Secure.java:171)
       at net.propero.rdp.Rdp.connect(Rdp.java:498)
       at net.propero.rdp.Rdesktop.main_nonstatic(Rdesktop.java:615)
       at net.propero.rdp.applet.RdpThread.run(RdpApplet.java:222)
  FATAL: java.lang.NullPointerException: nullWhat is funny, is that I have two applets, and one works and the other one doesn't. It is like this:
  Applet A (signed) needs to connect to host1, fails and tries to connect through proxy using my proxy library (also signed - different JAR). Everything works.
  Applet B (signed) needs to connect to host1, fails and tries to connect through proxy using the same proxy library. It gets a security exception.
  All JARs are signed using the same key/certificate.
  Both applets try to connect to the same "host1".
  Both applets try to use the same proxy - which is different from "host1".
  The one thing that might make a difference, is that in the working applet, everything is within one thread, and in the broken applet, the proxy object is in the main applet thread, and this applet may open many windows, that all utilize the same proxy object - only they can't.
  When I tried to move the proxy object down to the child threads, I get the following exception:
  Exception in thread "Thread-1952" java.security.AccessControlException: access denied (java.lang.RuntimePermission accessClassInPackage.sun.misc)
       at java.security.AccessControlContext.checkPermission(Unknown Source)
       at java.security.AccessController.checkPermission(Unknown Source)
       at java.lang.SecurityManager.checkPermission(Unknown Source)
       at java.lang.SecurityManager.checkPackageAccess(Unknown Source)
       at sun.applet.AppletSecurity.checkPackageAccess(Unknown Source)
       at sun.applet.AppletClassLoader.loadClass(Unknown Source)
       at java.lang.ClassLoader.loadClass(Unknown Source)
       at java.lang.ClassLoader.loadClassInternal(Unknown Source)
       at net.propero.rdp.Rdesktop.main_nonstatic(Rdesktop.java:567)
       at net.propero.rdp.applet.RdpThread.run(RdpApplet.java:211)It seems that I can only create the proxy object in the Applet.init() method, to avoid this exception.
  So to, summarize: I would prefer just one object for all threads that I will create, but then my applet behaves like it is not signed (at least under JVM 1.4.2_08). Java 1.5.0_06 doesn't have any problems with this.
  Regards, Miha Vitorovic

  The one thing that might make a difference, is that in the working applet, everything is within one thread, and in the broken applet, the proxy object is in the main applet thread, and this applet may open many windows, that all utilize the same proxy object - only they can't.
  When I tried to move the proxy object down to the child threads, I get the following exception:
  Exception in thread "Thread-1952" java.security.AccessControlException: access denied (java.lang.RuntimePermission accessClassInPackage.sun.misc)
       at java.security.AccessControlContext.checkPermission(Unknown Source)
       at java.security.AccessController.checkPermission(Unknown Source)
       at java.lang.SecurityManager.checkPermission(Unknown Source)
       at java.lang.SecurityManager.checkPackageAccess(Unknown Source)
       at sun.applet.AppletSecurity.checkPackageAccess(Unknown Source)
       at sun.applet.AppletClassLoader.loadClass(Unknown Source)
       at java.lang.ClassLoader.loadClass(Unknown Source)
       at java.lang.ClassLoader.loadClassInternal(Unknown Source)
       at net.propero.rdp.Rdesktop.main_nonstatic(Rdesktop.java:567)
       at net.propero.rdp.applet.RdpThread.run(RdpApplet.java:211)It seems that I can only create the proxy object in the Applet.init() method, to avoid this exception.
  So to, summarize: I would prefer just one object for all threads that I will create, but then my applet behaves like it is not signed (at least under JVM 1.4.2_08). Java 1.5.0_06 doesn't have any problems with this.
  Regards, Miha Vitorovic

• Firefox can't store permanent security exceptions.

  I'm using Firefox 3.16.12 (user-agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3)
  When I try to add security exception for self-signed certificate - I have the same problem as it seen on this video: http://www.youtube.com/watch?v=WatBXY5CxO0
  Temporary exceptions are stored without any problems.

  Found solution for this problem here: http://forums.mozillazine.org/viewtopic.php?f=38&t=1160375&start=0&st=0&sk=t&sd=a
  It seems, that something was wrong with cert_override.txt , cert8.db from profile folder. Deleting those file helps.

• Weblogic 7 SP5 SQL Exceptions follow a JTA transaction timeout

  I have a problem in Weblogic 7 SP5 that was not happening in SP2. I'm using the
  Weblogic jDriver (weblogic.jdbc.mssqlserver4.Driver)
  I have a transaction that times out due to JTA transaction timeout, and then gets
  marked for rollback. For several minutes after the timeout, I get many SQL Exceptions
  with bogus messages like "invalid column name" when the column name is, in fact,
  correct.
  Then the weblogic log file shows "Exception during rollback of transaction" (javax.transaction.SystemException:
  Heuristic hazard). Next, the connection is tested on reserve, this test fails,
  and the connection is refreshed. As soon as the connection is refreshed, I stop
  getting SQL exceptions and everything starts working correctly again.
  It seems like the transaction timeout is making the connection go bad, and somehow
  other requests are using this bad connection before the transaction finishes rolling
  back. What could the problem be? Some excerpts from my app log and weblogic log
  are below.
  com.workpoint.server.ejb.WorkPointEJBException: The transaction is no longer active
  - status: 'Marked rollback. [Reason=weblogic.transaction.internal.TimedOutException:
  Transaction timed out after 901 seconds
  Name=[EJB com.storeperform.taskmgr.ejb.procrelease.ProcReleaseBean.distributeToOrgUnit(com.storeperform.taskmgr.values.DistributionUnit)],Xid=17109:68c10765ba68aaaa(12114044),Status=Active,numRepliesOwedMe=0,numRepliesOwedOthers=0,seconds
  since begin=901,seconds left=60,activeThread=Thread[WorkQueueThread[q=1, qName=ProcReleaseTaskWorkers,
  id=6],5,WorkQueueGroup[id=1, name=ProcReleaseTaskWorkers]],ServerResourceInfo[weblogic.jdbc.jts.Connection]=(state=ended,assigned=none,xar=weblogic.jdbc.jts.Connection@18cd616,re-Registered
  = false),SCInfo[DomainManager+edwards-s1]=(state=active),properties=({weblogic.transaction.name=[EJB
  com.storeperform.taskmgr.ejb.procrelease.ProcReleaseBean.distributeToOrgUnit(com.storeperform.taskmgr.values.DistributionUnit)],
  weblogic.jdbc=t3://10.10.3.17:7001}),OwnerTransactionManager=ServerTM[ServerCoordinatorDescriptor=(CoordinatorURL=edwards-s1+10.10.3.17:7001+DomainManager+t3+,
  Resources={})],CoordinatorURL=edwards-s1+10.10.3.17:7001+DomainManager+t3+)]'.
  No further JDBC access is allowed within this transaction.SQL Command = INSERT
  INTO WP_PROCI_NODE_HIST (NODE_HIST_ID, NODE_HIST_DB, PROCI_ID, PROCI_DB, PROCI_NODE_ID,
  PROCI_NODE_DB, NODE_ITERATION, NODE_STATE_ID, ROW_VERSION, LU_ID, LU_DATE) VALUES
  weblogic.jdbc.mssqlserver4.TdsException: Invalid column name 'user_fname'.
  [from weblogic log]
  ####<Jun 17, 2004 8:14:16 AM MDT> <Error> <EJB> <EDWARDS> <edwards-s1> <WorkQueueThread[q=1,
  qName=ProcReleaseTaskWorkers, id=7]> <kernel identity> <> <010025> <Exception
  during rollback of transaction Name=[EJB com.storeperform.taskmgr.ejb.procrelease.ProcReleaseBean.distributeToOrgUnit(com.storeperform.taskmgr.values.DistributionUnit)],Xid=17439:68c10765ba68aaaa(31878774),Status=Rolled
  back. [Reason=weblogic.transaction.internal.AppSetRollbackOnlyException],HeuristicErrorCode=XA_HEURHAZ,numRepliesOwedMe=0,numRepliesOwedOthers=0,seconds
  since begin=3,seconds left=57,ServerResourceInfo[weblogic.jdbc.jts.Connection]=(state=rolledback,assigned=edwards-s1,xar=weblogic.jdbc.jts.Connection@15e1b7e,re-Registered
  = false),SCInfo[DomainManager+edwards-s1]=(state=rolledback),properties=({weblogic.transaction.name=[EJB
  com.storeperform.taskmgr.ejb.procrelease.ProcReleaseBean.distributeToOrgUnit(com.storeperform.taskmgr.values.DistributionUnit)],
  weblogic.jdbc=t3://10.10.3.17:7001}),OwnerTransactionManager=ServerTM[ServerCoordinatorDescriptor=(CoordinatorURL=edwards-s1+10.10.3.17:7001+DomainManager+t3+,
  Resources={})],CoordinatorURL=edwards-s1+10.10.3.17:7001+DomainManager+t3+): javax.transaction.SystemException:
  Heuristic hazard: (weblogic.jdbc.jts.Connection, HeuristicHazard, (javax.transaction.xa.XAException:
  I/O exception while talking to the server, java.io.EOFException))
  ####<Jun 17, 2004 8:14:17 AM MDT> <Warning> <JDBC> <EDWARDS> <edwards-s1> <ExecuteThread:
  '8' for queue: 'default'> <kernel identity> <> <001094> <A connection from pool
  "sp_connection_pool" was tested during reserve with the SQL "select 1" and failed:
  weblogic.jdbc.mssqlserver4.TdsException: I/O exception while talking to the server,
  java.io.EOFException
  ...[stack trace omitted]...
  This connection will now be refreshed.>

  Brad Swanson wrote:
  According to BEA's documentation, the jDriver is deprecated (no longer supported)
  in WLS 7 SP5. Not sure when they stopped supporting it, but sometime after SP2,
  apparently. Our solution, unfortunately, was to stay with SP2. Using the newer,
  supported JDBC driver would presumably fix the problem, but we didn't have time
  to do a full regression test with a different driver.Hi, no. The jDriver is deprecated, not unsupported. For WLS releases that contain
  the jDriver it will be supported for as long as we support the WLS release!
  Deprecation just means that we may choose to not supply that driver in any future
  release, and will not support it in that or any subsequent release.
  Practically, much depends on which jDriver you're using. In decreasing order
  of practical support we have: The weblogic.jdbc.oci.Driver to Oracle: We do actively
  continue to fix bugs in it. The weblogic.jdbc.mssqlserver4.Driver: Very unlikely that
  we will fix any new problem with it. The weblogic.jdbc.ifmx.Driver: Even less
  likely that we will do anything with it...
  I hope that makes it better for you.
  Joe

• HOW DO I GET RID OF THIS MESSAGE - ADD SECURITY EXCEPTION you are about to over ride how Thunderbird identifies this site. Location pop.shaw.ca.110 no e-mail

  I KEEP GETTING A BOX WITH THIS MESSAGE - ADD SECURITY EXCEPTION
  you are about to over ride how Thunderbird identifies this site
  LOCATION: pop.shaw.ca.110
  then it asks for a security certificate
  I DO NOT KNOW HOW TO FIX OR BETTER YET GET RID OF THIS MESSAGE

  You're supposed to take a screenshot. The link has instructions about how to do that.
  Then attach the resulting image to your post by using the 'Browse' button right above the 'Post Reply' button.