Re: "Java Plug-In Security Warning" dialog gone / broken under 1.2.2 px (FCS)?

Jan Luehe (luehe@laguna.eng.sun.com)
Wed, 21 Jul 1999 13:20:57 -0700 (PDT)

Message-Id: <199907212020.NAA01918@laguna.eng.sun.com>
Date: Wed, 21 Jul 1999 13:20:57 -0700 (PDT)
From: Jan Luehe <luehe@laguna.eng.sun.com>
Subject: Re: "Java Plug-In Security Warning" dialog gone / broken under 1.2.2 px (FCS)?
To: java-security@java.sun.com, cforster@i-review.com

Chris:

> If I try the same JAR on Win95 machines with JRE 1.2.2 RC1 (pu), they
> properly show the security dialog... machines with JRE 1.2.2 FCS (px) do
> not.... . The JAR was compiled with jdk 1.2.2FCS and JARed/signed with
> Netscape's signtool. If I install 1.2.2 RC1 (plug-in ver. 1.2.2 pu) over
> 1.2.2 FCS (plug-in ver. 1.2.2 px) on the machines, the Security Dialog shows
> and all is well, but obviously I cannot ship under a RC release.
>
> Perhaps the required signing procedure has changed from 1.2.2 RC -> 1.2.2
> FCS or I'm overlooking something, but I've read & tried everything I can
> think of and can't get the dialog to show under 1.2.2 FCS. I checked the
> cacerts (identical under RC1 & FCS) and my browsers certs DB (IE 4, NN 4).
> All the relevant Versign CA certs are enabled.
>
> I've read & followed
> http://java.sun.com/products/plugin/1.2/docs/nsobjsigning.html and
> http://java.sun.com/products/plugin/1.2/docs/netscape.html and I'm worried
> that the addition of the new "usePolicy" runtime permission may have broken
> the facility.

No, the "usePolicy" feature was already present in JRE 1.2.2 RC1.
The pop-up mechanism will be disabled if that permission is
implied by the permissions granted to the applet (where the permissions
granted to the applet are specified in the system policy).

Please send me your signed JAR file (in uuencoded format).

Jan