Security Section Index
What is the klist tool that comes with the JDK?
The klist command-line tool is for Kerberos ticket management. Specifically, it is used to list entries in the credential cache and key table.
What is the ktab tool that comes with the JDK?
The ktab command-line tool is for Kerberos ticket management. Specifically, it is used to help manage entires in the key table. Solaris users can also use the kadmin tool (that isn't part of the J...more
Access Denied error in frames.When I try to access a child frame from parent frame I get "Access Denied Error".
Access Denied error in frames
When I try to access a child frame from parent frame I get "Access Denied Error". I know the reason is because I am trying to access the frame in a different domain. I...more
I have been trying to find a way not only to get the user certificate info - i.e. Authentication via DigitalID, but also to have a digest of the request, signed by the client (Web Browser Only - not the Applet/Application case) or something like that, so I can proove to a 3rd party that the user with the specific certificate has issued the specific request. Is it at all possible?
That's an interesting question. I'm pretty sure the answer is "no," at least not without hacking the server. The request *is* signed by the client, effectively, but (a) since it's SSL, what's si...more
How can I read from a file on the client with Javascript?
Basic security permissions don't permit this but, you can create an ActiveXObject FileSystemObject in IE to read, write, or append.
fs = new ActiveXObject("Scripting.FileSystemObject");
a = fs.Op...more
I have a simple JDBC connection to Oracle using Oracle's thin JDBC driver which works great.
I have a simple JDBC connection to Oracle using Oracle's thin JDBC driver which works great.
Now I would like to modify my program so that the data I send to the DB is encrypted.
The readme no...more
I've got an text password and a string passed to me encrypted with Perl using Blowfish.
I've got an text password and a string passed to me encrypted with Perl using Blowfish.
I am using bouncycastle and cannot figure out how to make a SecretKey and PBEParameterSpec so that I can dec...more
We have a small lightweighted applet which establishes a network connection, sends an http request to some server, and receives a reply in xml format.
We have a small lightweighted applet which establishes a network connection, sends an http request to some server, and receives a reply in xml format. The sandbox principle does not allow us to con...more
Where can I get a list of good code obfuscators currently available?
Here are some good obfuscators currently available:
JProof
JShrink
JReveal
CodeShield for Java
Condensity
Force5
KlassMaster
more
Need secure date based lisence protection that will allow me to kill execution of a servlet after x days without a new key.
Need secure date based lisence protection that will allow me to kill execution of a servlet after x days without a new key.
I need help building a lisence protection scheme into a servlet that will...more
How do I sign a JAR file using jarsigner?
There are many ways by which you can sign a JAR file using jarsigner. One way would be:
jarsigner -keystore C:workingmystore -signedjar sbundle.jar bundle.jar john
On executing the command, you...more
Is there a Java API for PGP?
Yes, there is an implementation available which provides methods for accessing PGP 2.3a. It interacts with PGP via JNI.
The files generated with this API are compatible with those generated with ...more
What is Kerberos? Can I use it from Java?
Kerberos is a trusted third party network authentication protocol, initially developed as a part of MIT's Project Athena. Kerberos was designed to provide exceptionally strong authentication using...more
We have installed a self-signed certificate for apache mod_ssl and JSSE examples complain about the security chain AND the names not being the same, and give an exception.
We have installed a self-signed certificate for apache mod_ssl and JSSE examples complain about the security chain AND the names not being the same, and give an exception.
How can we get around t...more
My domain name is assigned for a specific IP address(normal). Because in the same WebLogic server, in the same Unix box, under the same internal IP address are running 2 applications, if the http address is like a domain name(correct one) I redirect to my application.
My domain name is assigned for a specific IP address(normal). Because in the same WebLogic server, in the same Unix box, under the same internal IP address are running 2 applications, if the http a...more
