Help!1)need Doc on pakage sun.security.pkcs.*This tools placed in rt.jar, but I not find JavaDoc :((-java.sun.com.search - not find-Google - not find2)need any Tutorial on <bouncycastle>lib for "zero". May be anybody lets me ...

I am using UnixLoginModule to do authentication as suggested in the JAAS tutorial. The issue is that the UnixLoginModule newer asks for user name and password. After looking into the source code of this file i realised it calls a class called UnixSystem which loads a library jass_engine which ...

HiHow can I access authentication information in different tiers of a project? We are working on a multi tier J2EE project, and we want to authenticate user (we are not sure whether using JAAS or not). Is there any simple way to have access to authentication information in all tiers including ...

HiI think Subject.doAs doesn't work properly in JDK 1.4.2 (I didn't test in previous versions), the whole scenario is available in http://www.jguru.com/forums/view.jsp?EID=1126478 (it is a long scenario including source codes), I didn't get any answers in JGuru so I post message here, if I ...

I need to find out if a user is in 2 different groups. If they are in group a, I display results a.m. If they are in group b, I display results b.n. If they are in a and b, then I display a.m union b.n. Any ideas?I am validating the user through kerberos already. Windows NT domain says they ...

Can someone seeing an applet on the web get the class files of this applet?I must put an applet on the web but I don't know if it is safe...Can someone with the URL of my page where my applet is can retrieve the class from this html page?Thanks

Hello there!This situation it's getting me nuts!We have JRun 4.0 and we got the Verisign (VS) certificate.* We created the keystore file:keytool -genkey -keyalg RSA -alias jrun -keystore mykeystore* Now, we created the request for VS:keytool -certreq -keystore mykeystore -alias jrun -file ...

SecurityExceptionEx[Host]: cannot access 11110My applet is signed.I use netscape security:PrivilegeManager.enablePrivilege("UniversalConnect");PrivilegeManager.enablePrivilege("UniversalListen");PrivilegeManager.enablePrivilege("UniversalAccept");but no use because there is an ...

Hi,I am trying to read my gpg key from file into the KeyStore. however, it gives me an error when compiling, something to do with the FileInputStream and InputStream.. can someone help..

Hi All,I'm facing a problem that is:I encrypt data in Java client using 3DES algorithm("DESede/ECB/NoPadding" for the Cipher object and "DESede" for the SecretKey one). Our server is made on C# and it decrypts the data using .NET TripleDESCryptoServiceProvider class. No problem at all...The ...

Hi!,Does anybody know a way to access the certificates installed in client's browser from an applet?.I've found an applet that works with IE+JNI, so it should be possible, but I need it for Mozilla too. It could be diferent implementations, that isn't so important.Have anyone done ...

Hello,When I like import a big certificate in the keystore, i use keytool for importing my x509 Certificate I have 'an' errorsun.security.pkcs.ParsingException: X509.ObjectIdentifier() -- data isn't an object ID (tag = 48)at sun.security.pkcs.PKCS7.parse(PKCS7.java:118)at ...

I have Kerberos code that I know works fine in my environment and have no problem making a secure LDAP connection using it. However when I use it in another enivronment I get the following error.GSSException: No valid credentials provided (Mechanism level: Failed to find any Kerberos Ticket)at ...

Hi,After searching for information on authenticating web clients (using browser or java app) attempting to connect to a server I have some questions.I have found many different applications of authenticating, Apache HTTPClient and JAAS to name a couple. So, are there any real differences ...

Is it possible to generate SSL certificate using jdk keytol if yes how to create?please help

Hello,i have a problem. My programm encrypt a String using "MessageDigest" class, but i need to decrypt it. Do you have simple code example ? Thank you.My encrypting source code is : ////////////////////////////////////////////////////////////////////////public String encrypt(String ...

hi.i generated a md5 digest using the program md5sum under linux: echo test | md5sumd8e8fca2dc0f896fd7cb4cb0031ba249then i tried to generate the same sun with java using:public synchronized String encrypt(String plaintext) {MessageDigest md = null;byte[] buffer= null;try{buffer = ...

Hi,I am using the class below called TripleDesEncryption to encrypt a string. I have got this code of someone else and not sure how i works. I need to somehow generate a key (private I think) to encrypt my string. How do I do this - can the key be a file with any content, or do I have to use ...

I have an application that is signed using a valid certificate from Verisign.Most users are able to run my application.However, one of the users sent me a screenshot of a dialog with the following text:"Security WarningWarning: failed to verify the authenticity of this certificate because ...

Hi!I am using JAAS for authentication of my application. In my java.security file, I am giving the login module path as follows:login.config.url.1=file:${java.home}/lib/security/app.loginWhat I would like to do is: put all my login modules in a jar file and be able to access them.I have tried ...

i was wondering if there is a way to prevent multiple people from sharing a copy of a java prog.

Folks I was reading through the article in theserverside.com where the author was talking about extending the permission to police access to URLs. Couldnt this be done using web.xml only? Why would one have to jump through hoofs doing all the JAAZ when one could do the same in web.xml or am I ...

Dear Sir/Madam,Do you know how to build and secure FTP connection using sun.net.ftp.FtpClient? Thanks in advanced for the help.Regards,Stanley

Can anybody help me? I have to implement user authentication and cannot decide whether I need to user JAAS or not. There is no JAAS in java pet store. May someone give me more examples of the applications(quite big) where JAAS is used or not used for the authentication. Accordingly, during user ...

I am a fairly experienced Java programmer, but I have never worked with any of the security measures in Java. If I write a java program and give it to people who would love to decompile it, how can I ensure that it is impossible for them to do so?Cheers,PAUL.

hi all, I have some problem with basic authentification. So, I try an other way. A basic Applet is on "parsrv048" server and the HTML page is on "parsrv020" server. Client Host use JRE 1.4.x . When I modify (or not) .java.policy with: grant {permission java.net.SocketPermission "rcbparsrv048", ...

We have a large application with its own user management. A recent addition to this application is a single sign-on using the Microsoft Active Directory. Specifically we use the Sun provided Kerberos login provider for JAAS to retrieve the currently logged in user. This works perfectly on ...

Hey guys...I am trying to call an executable from my local unix system inside an applet. As obvious, the security restrictions on the applet do not allow this and java throws SecurityExceptions. I am not sure but is it not true that you can allow applets to run commands on your local system by ...

We are moving towards an authentication mechanism that uses smart cards and client certificates in an Oracle 9iAS platform run on Windows 2000. I have successfully set up the HTTP Server to require client certificates. After setting this up, the application properly asks for the user's smart ...

Hi.I'm having a problem with getting Sun Kerberos implemention to work with Win2000 Active Directory. When I call my program I get an Pre-Authentication exception, but how do I setup my program to use PRE-AUTHENTICATION. (If I use wedgetail's implemention it works... but I want to use sun ...

Hi,I'm investigating how to apply security on our web application.We are using Oracle9iAS as application server.Our requirements are that authorised users shall be able to create new user accounts and all users must be able to change their own password.I played around with JAAS in Oracle 9iAS, ...

Hi java gurus,I check permissions from a policy file like this :POLICY FILE :grant {permission java.util.PropertyPermission "*", "read, write";};JAVA CODE :security.checkPermission(new PropertyPermission("*", "read, write"));So no problems, but how check this permission :POLICY FILE :grant ...

Hi java gurus,I check permissions from a policy file like this :POLICY FILE :grant {permission java.util.PropertyPermission "*", "read, write";};JAVA CODE :security.checkPermission(new PropertyPermission("*", "read, write"));So no problems, but how check this permission :POLICY FILE :grant ...

Hi,I'm trying to confirm that the JAAS now included with the Java SDK 1.4.x is available when you use the 1.4.x version of the JRE.Can someone confirm this for me?Thanks for your help.Andrea

Hello, I have a keystore with two certificates and a key pair I imported from the pfx file using keytool gui. When I try to use that keystore in the program, I get: java.security.InvalidKeyException: key retrieved from keystore is not a private key What does this error ...

Hello, I have a pfx certificate file that I got through the browser, and exported. How can I create a keystore using this file? I did not generate a certificate request for it. ThanksElana

hi all,While connecting from Tomcat4.1.x(using jdk1.4) to Websphere 3.5.6(jdk1.2),we were facing problem of Invalid Class Exception javax.crypto.spec.SecretKeySpec ,so i removed the jce.jar from tomcat and copied the jdk1.2 version of this class in the Tomact server.Now while running ...

Hi, i develope a web application using Jakarta Struts 1.1, web server used is Tomcat 4.1.24I have obfuscate my web application class file with Marvin Obfuscator, which can be downloaded from www.drjava.de However, the tomcat throws an error whenever it intend to start my web application. The ...

I am trying to import a self-signed cert using the keytool. I am running j2re1.4.2_02 om windows 2000.When prompted with the password I enter "changeit" like I have been doing with previous Java release. It seems as though the keystore default password has changed. Because I keep getting the ...

Hello,This is my quetion, i would like to trace, "log" ,in an mysql database the user who enter in the site.I use the form with j_username and j_password,how can i put the j_username in the database , after a good connexion...thanks

I have searched this forum for an answer but in vain. I hope you could help me. So I want to use my custom implementation of Principal. on the server side evrything works fine. BUT on the SERVERSIDE request.getUserPrincipal() return a SimplePrincipal, NOT my principal Any idea how to solve ...

I am trying to implement the JAAS architecture and have created a couple of classes the implement the necessary interfaces and what not.The problem that I am running into is when I attempt to import packages like javax.security.Principal and javax.security.Subject, my IDE (JBuilderX) does not ...

I developing a Swing client that sends and receives serialized objects from a server. I am using HTTP as the protocol because the client may have to go through a proxy server, etc.I am trying to decide the best way to encrypt the data and have come up with these three options. However, I'm not ...

I've implemented JAAS on a web applicationI'm using a URLPermission which is a simple implementation of BasicPermissiomI'd like to be able to give unrestricted access to a Admin Principal without having to specify all permission in the policy file.How can I do that?Is it possible?Is ...

Hi all, i would like to be able to manage my system permission via a web interface, that is store them in a RDBMS and make the SecurityManager able to read the permission from the DB itself.I've read it was possible. I can hardly imagine the JRE accessing a DB though!Has anyone some input on ...

Does anyone know about why HttpsClient throws the error for a hostname starts with a number. I have no problem with other hostname but only for the hostname starts with a number. The certificate works fine with Browser. I am sure the hostname in the certificate and in the request are exactly ...

My program uses URLConnection class (some others) to connect HTTP server under SSL. The program runs fine on unix box fine but has problem on my local machine (XP. I need to debug something else and have to run it on my own machine). It seems a setting problem. The exception is as follows ...

Hi,I am now trying to implement a license control mechanism for a web based application.I've studied several websites about this topic, but they did not provide much about the implementation details. So...could somebody please clarify for me where(websites, paper, books,API...) should I find ...

I need to sftp files to the client, and they have renewed their certificate for the new year. I just took over the project and there is no document. I went through the security documents, and it's all about how to set the certificate on the server side, but none of them is about the client ...

Hello,We have a custom class loader which loads in custom packages from the database or from the file system. We want to ensure that these custom classes do not read or write into the file system. I want to restrict access to these classes when creating them. I read that by setting the proper ...