When I tried to list that file D:\JRE\Sun\1.4.2\lib\security\cacertskeytool asked for a password. I do not know what that password is. I was the one who installed JRE1.4.2 but was never asked to assign any password.What should I do?

Hi,I am new to this group. I need an urgent help. My requirement goes this way: I have a portal application. I have 2 groupd internal and external and 2 roles interaluser role and external user role. the groups are assigned specifically to these roles. I have to configure such that internal ...

I have been digging around on this for a while now, with little success.I have a valid X509 certificate from a trusted CA that I purchased recently. I need to know if there is a way to get the private key from this cert into a java keystore.I've been able to load the private key into a ...

I'm writing an apllication in JSF. I decided to use JAAS to secure it. Logging in is carried with j_security_check mechanism. It works fine. I can log in and use the functionalities that are secured from anonymous users.After logging in it is reasonable to log off. I've read using ...

Hi all,I'm building an digital signature application using java, one of it's module is private/public key+certificate management.How can i create keystore file or edit using API not keytool ?Best regards-Lorenz-

Hello,Guys can I use Java ACC without J2EE server? I mean I need to intercept permissions checks.I know people can say that if you need Java ACC use J2EE. But I don't need 90% of its features. I only need to set Principal in thread which processes users requests:Subject subject = new ...

I have a folder in WinXP that is set up with access for all users. I have also turned on inheritance of the security settings for all subfolders and files. I am logged in to windows as Administrator, and runs my Java program that deletes a file in this directory, and downloads a new instance of ...

Hi,my problem was load jaas.config in the web application, the way that I suppose was best it's to load a configuration file in the web.xml of my application, but I they are not a veteran of xml and I have a problem of implementation for this solution.I hope you know a solution of my problem ...

Right now I'm looking into creating an installer for our software and one of the features that we would like to have is the ability to have a CD-Key or some mechanism to keep people from just freely passing the software around. I don't think the installers I'm looking into (namely ...

Hi all,im going to be really desperate from this error message during the authentization to the Win2003 server where the Active Directory is running ... Im using Krb5LoginModule. - Our administrator of the AD service has enabled DES encryption at the tested account. - Im sure that entered ...

I found that xml.apache.org/security project is without new releases from long time. Also the documentation is missing and the only way to understand how it works is through debuging line by line.I need of XML encapsulation for simple and nested hierarchical signature, encryption and ...

Hi!I have a project to do in networking security. One of the moduls is building a secured login system. It suppose to be on same level like unix works. Encrypting 0 with DES like 25 times using salt+password and storing it with the username.Now we didn't learn anything about security in java, ...

Hi,I wonder if someone can help me.Short version of the question.I do not understand how I can get my form based login to redirect to https rather than http. Long version of the question.Here抯 the scenario:a)we have two servers sitting behind a web switch. Connection between the client and the ...

I have a working J2EE application (A), which uses internal authentication and authorization without JAAS as well as a custom engine library. I need to replace the old engine with a new one.The new application (B) should use JAAS. But the old application should be rebuilt step-by-step. So, ...

Hey all,I completely am not following the JAAS overview, nor do i fully understand if it can do what i need it to do. I'm trying to prompt a user for the username and password of the sysadmin on windows. Is it really possible to get that information from windows to authenticate it?Can someone ...

I am trying to write XML Digital signature code using xmldsig.jar from JAVA Web Services Developer Pack 2.0.It works fine if I sign whole document. If I try to sign only reference..i.e. part of document by specifying URI while creatig Reference, it doesnt work. Its throwing below error...Any ...

Hi!I created login module using java security (JAAS). In that 'logout' link is working properly at client side. but it is not working at server side.It is giving following exception at Browser.The requested URL could not be retrievedWhile trying to retrieve the URL: ...

Hi everybody,is there any common way to retrieve authenticated user subject?For example, Tomcat/JBoss store it in "javax.security.auth.subject" session attribute after successful authentication, but WebSphere does not.Stricktly speaking LoginModule cannot access session or application context ...

Hello,I have designed a client/server application using RMI. The client is calling 2 third-party program (non-java, hybrid-min and hybrid-ss-min in the example below) for one step of the computation. I use a policy file to grant file access on the client side. If I grant the execute permission ...

Are there any workarounds for the fact that Kerberos usernames are case sensitive, when trying to authenticate (Active Directory) users that don't know (or care) what the correct capitalization of their username is? Logging into a windows workstation isn't case sensitive, so nobody would ...

Hi,I'm trying to configure Weblogic 8.1 to use SPNEGO with AD 2003. The Weblogic server is installed in Windows machine (separate machine from KDC).I've configured AD according to BEA documentation "Configuring Single Sign-On with Microsoft Clients" ...

I need of help how to organize a XML structure for hierarchical (nested) signature scheme. For example:Signed Object 1: O1Signatures Level 1: - S1.1 signs O1; - S1.2 signs O1;Signature Level 2: - S2.1 signs O1, S1.1 and S1.2 - S2.2 signs O1, S1.1 and S1.2Signature Level 3: - S3.1 signs O1, S2.1 ...

Hi Friends,I got a ssl-certs question,hope someone helps...becuase I am relative new to this.I have an app.that allows user to connect through 2 different ports(say A and B).I have different keystores for both of them that contain SSL-cert,CA-cert and Root- cert.But,when I try to connect to ...

HiI am writing an stand-alone application and want to protect my resouces. For example i have an image file and i donot want anyone using the application to have access to the file, although the application can make use of it and display it on screen but no one should be able to access that ...

Using IE browser or Mozilla firefox with a proxy setting pointing to a ISA proxy server on port 8080.The ISA proxy server has either Basic authentication OR, integrated windows authentication enabled. When the applet connection is being made with a secure (SSL) https connection - the connection ...

Hi all,i have two simple questions.....it seems really that GSS-API is not able to handle SPNego tokens, due to this i have decided to parse Kerberos token from it, via my own utility. 1) Please what is the best way of the finding the begin of the Kerberos Token which is being wrapped inside of ...

hi,I wanted to run a UDP listener on 500 port. The java program that listens on port 500 is run by a normal user. Does java provide configurations to allow a normal user access privileged ports? Or is it impossible for a normal user to control privileged ports.?

How i can get KeyStore object from this token

I'm trying to code a login system for a j2ee web app.Environment:Netbeans 5.5Sun Java Systems Application Server 9.0MySQL 5.0JDBCFORM-based authenticationInternet ExplorerFirefoxProblem:When the user tries to log in (username + password) he gets a 403 error (HTTP Status 403 - Access to the ...

I have an application that connects to a SSL-server that requires client authentication. Depending on the type of interaction my client app has to choose one from several client certificates. To complicate things, I need to setup multiple connections concurrently, using a different certificate ...

I'm developing an application where i need to login to the OS and access all resources for that user. Note that i can only get text message on the PC to be controlled. Please reply .....Thanks in advance.

Hi,I tried the sample from jwsdp-2.0/xws-security/samples/jaxws2.0/simple-doclit and the updated keystore files from https://xwss.dev.java.net/.The sample works fine. But if I try my own certificates I get the exception "No X509Certificate was provided".So I think my certificates are not ...

Hi,I have a web application that is using j_security_check. (I have a login page, and login module and everything works fine).I have another application (Swing), that can invoke the web application.Since the user was already authenticated & authorized when entering the swing application ...

Hi,I have two applications: a web application and a rich client application (Swing), both of them are using the same loginModule.In the rich client application, in the in the login dialog I encrypt the password before sending in to the loginModule, and in the login module I decrypt it.I want to ...

Hi,I'm tryting to use a pre login filter for the j_security_checkI want to perform an action before the j_security_check is submitted, and I thought that this is the place to do it.When I undeploy my jar I get to the destroy method, when I redploy it I get to the init method, and right after ...

I am using JAAS with JDK 1.4In my login page, if I enter a user name in East Asian characters, or other non-regular letters, like ? and when I debug my code:Callback[] callbacks = new Callback[] { new NameCallback("Username: "), new PasswordCallback("Password: ", false) ...

Hi all:I know few about the java or applet security and hope someone can help me.I have a MS IIS Web server named win2003stdbase1 and it use Kerberos authentication, and the web server host a jar file.The client machine has jdk1.5 installed.When the client visit a html page which contains a ...

Hi,ALLI am new to Security.One of my customer's public folder is ssl enabled.So when I use Java httpclient to build a connection with the public folder.https://server/publicIt throws and exception:javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted ...

Hi all,I would like to load a ".class" file using a code similar to:Class c = Class.forName("org.somepackage.TestClass");TestClass tc = (TestClass) c.newInstance();tc.run();1) I would like the instance of the TestClass to have restricted priveldges, less than the calling code. How can it be ...

Hi all,i have a simple problem with the Jaas authorization via generated keyTab file. Used encryption was des-cbc-crc and associated SPN kerberos user has "Use Des Only encryption" checked. Preauthentication is disabled.My Jaas config file looks like:Jaas ...

I am running a J2EE application on JBOSS container.I have configured JAAS authentication and it is successfull.<login-config><auth-method>FORM</auth-method><realm-name>Forutne ...

Hi,We are coding new functionallity on a legacy C code. We are using JNI to to comunicate to an opensource library.We faced with the need to create some files and to connect to a remote host, but due to the jvm sandbox we cannot operate as we need.We tried policy files, signed jars,... but ...

hi all!i am working on antispyware.my problem is:how can i apply heuristic rules in my application?is there any api or some other thing , which can help me in the development of the programplz guide me in this regard, so i can proceed in my work.best ...

Hello, I search library java to generate a nt password. This password will be the same in use the Crypt::SmbHash perl library : ntlmgen $password $nt $lm"Thank youfr_unice_brunos

Hi,I am using SUN One Appserver 8.I had Implemented Realm in my web application.Every thing is working fine.I want to set some data in session in the Realm/ LoginModule Class, But i am not able to find any method to do this.Can any body help me out in this , and let me know how to set the data ...

Hello,the project I've just started to work on should include an easy way (from the user's point of view) to grant/revoke access rights on a tree-like structure with inheritance.Basically we are working for several international companies who want to use our application to watch/manage some ...

My java application connecting to a database to read patient information.Do I have to worry about encrypting the data? I am using oracle jdbc driver.Is there any chance, anyone can read the data on transit?

Hi,Could anyone please recommend how to generate good session ids ?(for a servelt container, generating http session IDs).We'll appreciate recommendations for either:- the algorithm - configuration parameters (such as what to put in Tomcat's "entropy" param)- good random number ...

hi,i'm interested to develop either IDS or honeypot using java. i never heard of any java IDS or honeypot API, so it seems I have to start from the scratch, right? Can anyone here show me where should I start?

Our application interfaces with several vendors using HTTPS. One vendor issued us a certificate to authenticate us and we have successfully implemented the interface by setting the keyStore, keyStoreType and keyStorePassword System properties to use the pkcs12 file. How do you handle a ...