From: Charlie.Lai@Eng (Charlie Lai)
Message-Id: <199801142051.MAA05600@angeles.eng.sun.com>
Subject: Re: security failure
To: Kirill.Rybaltchenko@cern.ch (K.Rybaltchenko)
Date: Wed, 14 Jan 1998 12:51:53 -0800 (PST)
In-Reply-To: <34BCD466.527475C3@mail.cern.ch> from "K.Rybaltchenko" at Jan 14, 98 04:06:15 pm
hi,
> I've followed to your rules in security/signExample/ to make applet
> signWriteFile.jar executable on my machine, but I'm still catching
> security exception. What I have in java console:
>
> # Error: Invalid Hash of this JAR entry (-7882)
> # jar file: /tmp/netscape/jzip34BCD1D200F0115
> # path: writeFile.class
> # Error: Strange PKCS7 or RSA failure (-7881)
> # jar file: /tmp/netscape/jzip34BCD1D200F0115
> # path: /tmp/netscape/jzip34BCD1D200F0115
> # Error: loading of signatures has failed (-1)
> # jar file: /tmp/netscape/jzip34BCD1D200F0115
> # path: /security/signExample/
> # Security Exception: checkwrite:/tmp/foo
> # Security Exception: checkwrite:/tmp/foo
>
> I'm using HP-UX 10.20 and Netscape communicator 4.04j2.
> But appletviewer works well. What about compatibility of your security
> mechanism with Netscape?
compatibility with netscape? unfortunately, that's the problem right now.
netscape has its own security architecture. to get signed applets
to work with netscape you'll have to refer to:
http://developer.netscape.com/software/signedobj/index.html
also, you can try SUN's new activator, which allows you to replace
netscape's build-in JVM with SUN's JRE, which would allow the signExample
to work. however, the activator product is currently available for
IE. a version for netscape should be out soon. for more information:
http://java.sun.com/products/activator/index.html
thanks,
charlie