Problems with hostile applets

Jean-philippe VILLAIN (jpv10@yahoo.com)
Fri, 7 May 1999 06:05:24 -0700 (PDT)

Date: Fri, 7 May 1999 06:05:24 -0700 (PDT)
From: Jean-philippe VILLAIN <jpv10@yahoo.com>
Subject: Problems with hostile applets
To: java-security@java.sun.com

Hi!
I'm a french student and I'm actually working on java security. That's
why I'm testing the hostile applets which are on your site.
I test them on my computer and the applets are stored on my hard
disk(I'm not connected to the Web).I've installed the JDK 1.2 and the
plugin (JRE 1.2.1) to view the applets with Internet Explorer 4.0 and
Netscape Communicator 4.5.
----------------------------------------------
Here is my file "properties" in the ".hotjava" directory :
#AppletViewer
#Tue May 04 16:30:21 CEST 1999package.restrict.access.sun=false
package.restrict.access.netscape=false
appletviewer.version=1.2
----------------------------------------------
I've add these lines in my autoexec.bat:

SET PATH=%PATH%;C:\PROGRA~1\MCAFEE~1;C:\jdk1.2\bin;C:\JDK1.2\EDITEURSET

CLASSPATH=.;C:\jdk1.2;C:\jdk1.2\lib\tools.jar;C:\jdk1.2\lib\dt.jar;C:\jdk1.2\jre\lib\rt.jar;C:\jdk1.2\mesprog;C:\jdk1.2\mesprog\hostiles
----------------------------------------------The applets are stored in
:
C:\jdk1.2\mesprog\hostiles

For example, applets can't read or write files .But you explain (in
your FAQ) that we can add permissions to a file by adding a line
likethis :
acl.read=path_of_the_file in my properties file.

But when I do this,nothing change. Why ??
Another thing is strange :
When I test the applets with IE 4.0 they all work (even
replacePropertiesFile) and I don't add any permissions.

It's just the opposite of the Appletviewer and NC 4.5
which throw security exceptions most of the time (even if I add
permissions to write to a file).

Is it a problem of configuration ?
I don't understand anymore !

PLEASE, HELP ME !!
Jean-Philippe.

_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com