Date: Thu, 13 Nov 1997 09:56:37 -0800 (PST)
From: Gigi Ankeny <Gigi.Ankeny@Eng>
Subject: Re: Signed applets
To: java-security@web2.javasoft.com, jim@totem.infohwy.net
Hi,
It looks like your applet when loaded into Netscape browser was not trusted
to write /tmp/foo. The reason is that the jar file is not correctly
verified by netscape jar verification mechanism. Netscape does not follow
Javasoft's jar file format completely and it only honors RSA signatures
not DSA signatures that is in the SignedAppletExample, which was generated
by Javakey.
We are working on solving these interoperability issues with Netscape.
Thanks!
Gigi Ankeny
>=20
> Hi,
>=20
> I'm testing the "Signed Applet Example" on
> http://www.javasoft.com/products/jdk/1.1/docs/guide/security/.
>=20
> Everything works _perfectly_ when I use the appletviewer ( jdk1.1.3
> or jdk1.1.4 does not matter ) to write a file to my disk.=20
> But when I use netscape ( 4.04 or 4.03j1 does not matter ) I keep=20
> getting these messages when viewing the same url:
>=20
> "Error: Invalid Hash of this JAR entry (-7882)
> jar file: /.../.../jzip346B19EF02400D5
> path: writeFile.class
> Error: Strange PKCS7 or RSA failure (-7881)
> jar file: /.../.../jzip346B19EF02400D5
> path: /.../.../signExample/
> Security Exception: checkwrite:/tmp/foo"
>=20
> Please! Any hints how to solve this?
>=20
> N.B. This happens regardless of platform solaris/linux/windows.
>=20
> /jim
> __________________________________________________________________
> Jim Bevenhall S-mail: Information Highway i Gbg AB
> mail: jim.bevenhall@infohwy.se P.O. Box 5071 =20
> http: www.gbg.infohwy.se S-402 22
> Phone: +46-31-849464 Gothenburg
> Cell: +46-708-276979 Sweden
> Fax: +46-31-849443 Visit: =C5v=E4gen 42
> _________________________________________________________________
>=20
>=20
>=20