473,387 Members | 1,812 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > javascript > questions > netscape signtool 1.3 problem

Join Bytes to post your question to a community of 473,387 software developers and data experts.

Netscape signtool 1.3 problem

Hi Netscape gurus,

I'ne just installed Netscape 7.0 to my Windows PC and I'm trying to
sign JavaScripts, but get errors right on the beginning. Can anyone
tell me what am I doing wrong?

I went to Edit->Preferences->Software Security Device->Change Password
and set my password. Then I copied the updated cert7.db and key3.db to
my folder signdir. Now I do:
cd signdir
signtool -L


Alas, I get this:

using certificate directory: .
S Certificates
- ------------
You don't appear to have any object signing certificates.

Please help.

Thanks in advance
Sruli Ganor
Jul 20 '05 #1
5 3778
Sruli Ganor wrote:
Hi Netscape gurus,

I'ne just installed Netscape 7.0 to my Windows PC and I'm trying to
sign JavaScripts, but get errors right on the beginning. Can anyone
tell me what am I doing wrong?

I went to Edit->Preferences->Software Security Device->Change Password
and set my password. Then I copied the updated cert7.db and key3.db to
my folder signdir. Now I do:
> cd signdir
> signtool -L


Alas, I get this:

using certificate directory: .
S Certificates
- ------------
You don't appear to have any object signing certificates.

Please help.

Thanks in advance
Sruli Ganor


If I had to guess I'd say that "You don't appear to have any object
signing certificates".

Have you purchased a signing certificate from VeriSign or Thawte (or any
other signing authority)?

--
| Grant Wagner <gw*****@agricoreunited.com>

* Client-side Javascript and Netscape 4 DOM Reference available at:
*
http://devedge.netscape.com/library/...ce/frames.html

* Internet Explorer DOM Reference available at:
*
http://msdn.microsoft.com/workshop/a...ence_entry.asp

* Netscape 6/7 DOM Reference available at:
* http://www.mozilla.org/docs/dom/domref/
* Tips for upgrading JavaScript for Netscape 6/7 and Mozilla
* http://www.mozilla.org/docs/web-deve...upgrade_2.html
Jul 20 '05 #2
Grant Wagner <gw*****@agricoreunited.com> wrote in message
If I had to guess I'd say that "You don't appear to have any object
signing certificates".

Have you purchased a signing certificate from VeriSign or Thawte (or any
other signing authority)?


I have not purchased such a certificate yet, but the point is the
signtool -L is supposed to show me all the installed certificates,
including CA certificates, and only mark with '*' the object signing
certificates. I was worried that signtool didn't even show me the CA
certificates.

After generating a self-signed certificate, signtool -L worked
correctly and showed me all the CA certificates. This still seems like
a misbehaviour of signtool.

Our major target is to sign HTML pages containing JavaScript functions
that call Java functions included in a jar. The Java functions access
local resources (e.g., getProperties()) and therefore the JavaScript
must be signed (a burden that does not exist in Internet Explorer,
thanks God and MicroSoft).
We have read dozens of articles and examples how to do it, and
signtool apperas to sign correctly but still the JavaScript functions
fails with Access Denied exceptions. Do you know of a working example
or instructions how to do it?

Thanks in advance
Sruli Ganor
Jul 20 '05 #3
Roedy Green <ro***@mindprod.com> wrote in message news:<bp********************************@4ax.com>. ..
On 15 Jul 2003 00:35:31 -0700, ga***@softlink.com (Sruli Ganor) wrote
or quoted :
After generating a self-signed certificate, signtool -L worked
correctly and showed me all the CA certificates. This still seems like
a misbehaviour of signtool.


You might want to try IBM's tool. see
http://mindprod.com/jgloss/keyman.html


I tried it but in vain. It appears that there is a bug in the current
mozilla/netscape and java combination. The bug is registered in the
bugzilla. It does not look like it will be solved soon.
http://developer.java.sun.com/develo...s/4857726.html

This means that I cannot sign Netscape JavaScripts at all.
Why does Netscape require to sign scripts that call privileges Java
jar functions, while Microsoft Explorer only requires to sign the jar?

Is this one of the reasons why Microsoft Explorer is more popular?

Sruli Ganor
Jul 20 '05 #4
"Sruli Ganor" <ga***@softlink.com> wrote in message
news:8e**************************@posting.google.c om...

This means that I cannot sign Netscape JavaScripts at all.
Why does Netscape require to sign scripts that call privileges Java
jar functions, while Microsoft Explorer only requires to sign the jar?


Actually, if there are privileged operations performed within a public
method of a Java applet signed into a cab file, and that public method
is accessed by IE JScript/VBScript, then the developer must explicit
assert the permission within his public method .. which effectively means
that the code-author vouches that a malicious script cannot leverage his/her
applet for mal-use.

Netscape JVM does not have such a model, and thus requires that the script itself
be signed.
I agree, scripted acces of priviled NN java methods is not working properly in
recent releases.
- Michel Gallant
http://pages.istar.ca/~neutron/Thawte
Jul 20 '05 #5
"Michel Gallant" <ne*****@istar.ca> wrote in message news:<8IwSa.52
Actually, if there are privileged operations performed within a public
method of a Java applet signed into a cab file, and that public method
is accessed by IE JScript/VBScript, then the developer must explicit
assert the permission within his public method.


My Java applet is signed into a jar file, and the scripts are
JavaScript.
In this case signing the applet is sufficient, and no permission
assertion is required for running in IE. Does this expose any security
hole?

Sruli Ganor
Jul 20 '05 #6
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

4
Probelm with cfoutput / document.write JS function in Netscape 7
by: Yvan J. Gagnon | last post by:
I am encountering a strange problem in Netscape 7 with a CFM file I am trying to troubleshoot (the page is working fine in NS Communicator and IE). Below is a sample of the problematic line of...
Javascript
1
Javascript, signing, and Netscape 7
by: Thomas Revor | last post by:
I have a script used for automated file uploads (so people can create a list and walk away). It currently works by uploading files all at once. However, for security, tracking, and backups, I...
Javascript
13
JavaScript doesnt run on netscape 7.1
by: Gaurav | last post by:
Hello, i have some java script with in html. It runs fine on IE 6.0 but doesnt run on netscape 7.1 Can someone tell me whats the problem ? And how can i solve it. here is the url ...
Javascript
2
Netscape 7.02 onmouseout not fire up
by: Kevin Ly | last post by:
Consider the test case below. The onmouseout event does NOT fire when my mouse/cusor is moved off the left side of the browser. It does if it is moved off the top, bottom, and the right side that...
Javascript
1
failed to call signtool.exe from ASP.NET web service
by: YC.Seattle | last post by:
Hi, I am developing an internal tool so user permission is not an issue. I need to call the "signtool.exe" to sign a file on the web server through a web service. The web server is running on...
ASP.NET
1
SignTool Error: CoCreateInstance returned error: 0x80040150
by: steveo.uts | last post by:
I've created a web app in C # that creates a self-extracting installation file, and then attempts to digitally sign that file using MS signtool. I'm using the Process class to invoke signtool...
ASP.NET
0
SignTool publishing ClickOnce smartclient
by: arigney | last post by:
I am getting this error publishing a test application as well as my application. This error was reported back in 2005 but there was no reply at that time. Error 2 SignTool reported an error...
.NET Framework
1
Cannot publish a VB app - signtool error
by: Bill Nguyen | last post by:
Windows XP VS 2005 I got the error message below when trying to publish the VB app to a network folder: Publishing location: \\nasserver\customapps$\VS2005\VISUALDISPATCH\ Installation URL:...
Visual Basic .NET
4
SignTool.exe not found.
by: Perry Langla | last post by:
Hi, I try to publish a program and I get an error occured while signing. SignTool.exe not found. I am new to Visual Studio 2008. What is this for? Why do I get that error? Thanks Perry Langla
.NET Framework
0
Batch import of multiple excel files into the database
by: ryjfgjl | last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
Data Management
0
Merging data from multiple Excel files
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
Data Management
0
BarryA
Navigating the Data Structures and Algorithms (DSA)
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
Algorithms / Advanced Math
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!