• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 183
  • Last Modified:

# Security Exception: checkwrite:IPFILTER.INI

I'm trying to execute an applet that calls an application that reads and writes to local files.
Using
        Windows 95,
        Visual Cafe 2.5,
        Netscape 4.04 with JDK patch,
        included into prefs.js file(as advised by Symantec):
                       user_pref("signed.applets.low_security_for_local_classes", true);
       

Java Console Error upon execution: (IPFILTER.INI is the file I'm reading and writing to)
       # Security Exception: checkwrite:IPFILTER.INI
       netscape.security.AppletSecurityException: security.checkwrite: IPFILTER.INI
       #  UniversalFileWrite privilege not enabled: Modifying files stored in your computer

Note:
      This applet works within Cafe.
      This applet works within appletviewer
      This applet once worked until I was forced to reinstall Cafe.

      Any answers/solutions?
0
jsammers
Asked:
jsammers
  • 2
1 Solution
 
msmolyakCommented:
Use Netscape's Capabilities API. It allows signed applets and applets loaded from the local disk request additional privileges such as file reading and writing. Find out how to use the API at
http://developer.netscape.com/docs/manuals/signedobj/capabilities/index.html

I am not sure what the preference you are using should do, but looks like it does not give the applet the application-like privileges. Thus Capabilities API is probably your only solution.
Let me know if you need more information.
0
 
msmolyakCommented:
Here is the description of your property:
---------
Controls whether network connection security requirements are lowered to the levels of Netscape Navigator 3.2. For example, this level of security permits connections or DLL loading without asking for permission or otherwise notifying the user. The default is false, which does not lower security capabilities. Set to true to simulate Navigator 3.2, provided                                signed.applets.local_classes_have_30_powers is also set to true. It is advisable to lock this preference as false to prevent an attacker from setting it to true. It applies to Communicator version 4.02 and later, and is available on all platforms.
---------
Thus, all it does is realxes restrictions somewhat but does not eliminate them.  Use Capabilities API.

If you want to know more about those properties see http://developer.netscape.com:80/docs/manuals/deploymt/jsprefs.htm
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now