Re: A question!

Sharon Liu (Sharon.Liu@eng.sun.com)
Tue, 20 Apr 1999 11:50:06 -0700 (PDT)

Message-Id: <199904201850.LAA18624@shorter.eng.sun.com>
Date: Tue, 20 Apr 1999 11:50:06 -0700 (PDT)
From: Sharon Liu <Sharon.Liu@eng.sun.com>
Subject: Re: A question!
To: java-security@java.sun.com, sym@sun.usst.edu.cn

Yongmei,

The security model in JDK 1.2 is quite different from the one in JDK 1.1.

Netscape 4.05 only supports JDK 1.0. Netscape 4.06 to 4.51 support
JDK 1.1.x.

You may want to upgrade your browser and follow the signed applet
examples for JDK 1.1.x (http://java.sun.com/security/signExample/).

Thanks,
Sharon

> To: "java-security@java.sun.com" <java-security@java.sun.com>
> Subject: A question!
> Mime-Version: 1.0
> Content-Transfer-Encoding: 7bit
>
> Dear author:
>
> I am a Chinese student. I want to use the signed applet to do some work. After
visiting your company's homepage, I follow the
> steps to run the your jdk1.2 signed applet example successfully. But when I
try to put the same applet on my own server, it do
> esn't work.
>
> Server I use is WINNT. Web Server is IIS.
>
> Client is Windows 95.
>
> Browser is Netscape 4.05
>
> My steps as follows:
>
> server:
>
> step 1:
>
> keytool -genkey -alias sym -dname "cn=sym, ou=net manager, o=usst, c=cn"
>
> step 2:
>
> jar cfv signedWriteFile.jar writeFile.class writeFile.html
>
> step 3:
>
> jarsigner -verbose signedWriteFile.jar sym
>
> step 4:
>
> keytool -export -alias sym -file sym.x509 -rfc
>
>
> client:
>
> step 1:
>
> keytool -import -alias sym -file sym.x509
>
> step 2:
>
> policytool
>
> content of .java.policy :
>
> keystore ".keystore";
>
> grant signedBy "sym", codeBase
"http://202.120.223.12/sym/signedWriteFile.jar" {
> permission java.io.FilePermission "C:${/}writetest", "write";
> };
>
> I put the .java.policy and .keystore on the directory C:\Windows.
>
> I don't know why the signed applet still can't access the client resources.
Perhaps something wrong with my
> operation, but I can't find it. Do we need do some configuration on Server?
>
> Please give me some advices. Thank you!
>
>
> Sincerely
>
> Shi Yongmei
> 99/04/20
>
>