Solved

Security manager in IE 3.02

Posted on 1997-05-07
3
175 Views
Last Modified: 2010-04-16
Hi folks,

Can some kind soul explain the security policies enforced by MS IE 3.02? Specifically I want to know if I can load a native library (but that's not essential) and whether I can receive from a UDP socket (that is).

The other thing I really want is to be able to pop up a Java console window to watch for exceptions being thrown... can this be done: I can't see any menu items related to it.

Thanks in advance,
denty.
0
Comment
Question by:denty
  • 2
3 Comments
 
LVL 6

Accepted Solution

by:
jpk041897 earned 70 total points
ID: 1220218
To answer your questions

>Can some kind soul explain the security policies enforced by >MS IE 3.02?

3.02 is a patch that semi-succesfuly plugs two breaches in ActiveX security on win95 and NT. Specificaly, it adds a dialog requesting permition to execute potentialy damaging code when this code is contained in a .URL file. (There is another extention but I have forgotten what it was). Nothing to exiting.

The purpose of the patches is to (potentialy) stop a program that calls keyboard macros (recorders) from doing anything they want on a clients box via OLE/DCOM automation.


>I want to know if I can load a native library

Yes, provided its signed.


>whether I can receive from a UDP socket


Yes, same as always, resticted to firewalls and Proxy servers.


>pop up a Java console window to watch for exceptions being >thrown

No option to actualy do this in IE. But a plausible work arround is to use a debug window class that can print out that kind of info for you.

I believe you can find such a class in:

http://www.gamelan.com

If its not there, post a comment here and I'll look up some addresses for you.
0
 

Author Comment

by:denty
ID: 1220219
Great, thanks jpk. I thought you must be able to do such things but the lack of the console window doesn't make things easy to debug.

One further point though, will IE assume native libraries held locally are signed?

0
 
LVL 6

Expert Comment

by:jpk041897
ID: 1220220
Nope, Applet security specifications under JAVA indicate that anyting running in a browser is to be considered insecure.

Applications, though, are only restricted by OS directory and file access permitions.

As an extra comment regarding debugging, For testing purposes, O'Rielley's Web Site  stores just about every imaginable error in its log files (if you tur on the correct options) and has a free version at http://www.ora.com under the software free software section.

Its not the greates substitute for a console, but can be alot of help.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

For beginner Java programmers or at least those new to the Eclipse IDE, the following tutorial will show some (four) ways in which you can import your Java projects to your Eclipse workbench. Introduction While learning Java can be done with…
Are you developing a Java application and want to create Excel Spreadsheets? You have come to the right place, this article will describe how you can create Excel Spreadsheets from a Java Application. For the purposes of this article, I will be u…
Viewers learn about the scanner class in this video and are introduced to receiving user input for their programs. Additionally, objects, conditional statements, and loops are used to help reinforce the concepts. Introduce Scanner class: Importing…
This video teaches viewers about errors in exception handling.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now