Solved

Security manager in IE 3.02

Posted on 1997-05-07
3
177 Views
Last Modified: 2010-04-16
Hi folks,

Can some kind soul explain the security policies enforced by MS IE 3.02? Specifically I want to know if I can load a native library (but that's not essential) and whether I can receive from a UDP socket (that is).

The other thing I really want is to be able to pop up a Java console window to watch for exceptions being thrown... can this be done: I can't see any menu items related to it.

Thanks in advance,
denty.
0
Comment
Question by:denty
  • 2
3 Comments
 
LVL 6

Accepted Solution

by:
jpk041897 earned 70 total points
ID: 1220218
To answer your questions

>Can some kind soul explain the security policies enforced by >MS IE 3.02?

3.02 is a patch that semi-succesfuly plugs two breaches in ActiveX security on win95 and NT. Specificaly, it adds a dialog requesting permition to execute potentialy damaging code when this code is contained in a .URL file. (There is another extention but I have forgotten what it was). Nothing to exiting.

The purpose of the patches is to (potentialy) stop a program that calls keyboard macros (recorders) from doing anything they want on a clients box via OLE/DCOM automation.


>I want to know if I can load a native library

Yes, provided its signed.


>whether I can receive from a UDP socket


Yes, same as always, resticted to firewalls and Proxy servers.


>pop up a Java console window to watch for exceptions being >thrown

No option to actualy do this in IE. But a plausible work arround is to use a debug window class that can print out that kind of info for you.

I believe you can find such a class in:

http://www.gamelan.com

If its not there, post a comment here and I'll look up some addresses for you.
0
 

Author Comment

by:denty
ID: 1220219
Great, thanks jpk. I thought you must be able to do such things but the lack of the console window doesn't make things easy to debug.

One further point though, will IE assume native libraries held locally are signed?

0
 
LVL 6

Expert Comment

by:jpk041897
ID: 1220220
Nope, Applet security specifications under JAVA indicate that anyting running in a browser is to be considered insecure.

Applications, though, are only restricted by OS directory and file access permitions.

As an extra comment regarding debugging, For testing purposes, O'Rielley's Web Site  stores just about every imaginable error in its log files (if you tur on the correct options) and has a free version at http://www.ora.com under the software free software section.

Its not the greates substitute for a console, but can be alot of help.
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

For customizing the look of your lightweight component and making it look lucid like it was made of glass. Or: how to make your component more Apple-ish ;) This tip assumes your component to be of rectangular shape and completely opaque. (COD…
Are you developing a Java application and want to create Excel Spreadsheets? You have come to the right place, this article will describe how you can create Excel Spreadsheets from a Java Application. For the purposes of this article, I will be u…
Video by: Michael
Viewers learn about how to reduce the potential repetitiveness of coding in main by developing methods to perform specific tasks for their program. Additionally, objects are introduced for the purpose of learning how to call methods in Java. Define …
This video teaches viewers about errors in exception handling.

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question