D
Darren
It has to be web page based so an application is out the questio and all iRoedy Green said:
could find und jaws on google is the movie.
I agree but this thing needs to be run from a web page.
could find und jaws on google is the movie.
I agree but this thing needs to be run from a web page.
D
Darren
Well I found my java policy file but the idea is that everyones' java canRoedy Green said:
access this page. if the browser can see the page then the site is up
otherwise it's down.
A
Andrew Thompson
JaWS* is a silly name, try searching for JWS or Webstart
at Sun's site.
[ I detest Sun's decision to introduce the 'a' when it is not
the first letter of any of the words, but simlpy 'cute'. It is
too easy to mistake for the 'Jaws' movie ( or the character of
that name in some of the James Bond movies
. ]Unfortunately, JWS has some unfortunate aspects in
regard to applets, including ..
- The applets appear in a fixed size window where the
sizes must be hard coded in the JNLP.
- Access to interapplet communication, JS, and any other
page elements becomes dodgy or non-existent (not a worry here) .
To get full access via JNLP/JWS, would require the applet
be signed in any case, so if you can manage to sign the
applet, I would recommend simply calling it from a
standard web page, rather than use JWS for this one.
A
Andrew Thompson
That is why I feel that adjusting policy files is not a workable
solution for this application. In fact, I have *never* seen an
applet deployment situation where using that approach made any sense.
It is ridiculous to consider that your average end user will
manage to edit their own policy files appropriately, and
while developing a Java utility to do it for them might be
possible, it would be more effort than signing the applet.
D
Darren
Doesn't getting a signiture for an aplpet cost money?Andrew Thompson said:
JaWS* is a silly name, try searching for JWS or Webstart
at Sun's site.
[ I detest Sun's decision to introduce the 'a' when it is not
the first letter of any of the words, but simlpy 'cute'. It is
too easy to mistake for the 'Jaws' movie ( or the character of
that name in some of the James Bond movies
Unfortunately, JWS has some unfortunate aspects in
regard to applets, including ..
- The applets appear in a fixed size window where the
sizes must be hard coded in the JNLP.
- Access to interapplet communication, JS, and any other
page elements becomes dodgy or non-existent (not a worry here) .
To get full access via JNLP/JWS, would require the applet
be signed in any case, so if you can manage to sign the
applet, I would recommend simply calling it from a
standard web page, rather than use JWS for this one.
D
Darren
so where do i go from here?Andrew Thompson said:
A
Andrew Thompson
No.
- A *verified* certificate from Thawte/Versisign costs a
lot of money. It also needs to be renewed periodically.
- Thawte also offers a 'Personal Certificate' type set-up
for free. I could not be bothered pursuing it once I
discovered it had a very generic name, but it might suit you.
- You can also use a 'self-signed' certificate as I do for
the PhySci software suite, it costs nothing but is tricky
to create. 'Production level' software should generally
not be issued with self signed vertificates, as they show a
very onerous warning to the end user that 'certificate
cannot be verifed - recommend not install'
Note that only the first option (a fully verified certificate
in your own name) costs money.
A
Andrew Thompson
That's up to you. If you want to pursue code signing,
best do it on the other sub-thread where there is more
information related to it.
--
Andrew Thompson
physci.org 1point1c.org javasaver.com lensescapes.com athompson.info
"..I pick up all the pieces and make an island. Might even raise just a
little sand"
Jimi Hendrix 'Voodoo Chile (Slight Return)'
D
Darren
No that's not what I want. I don't see why I should have to pay a lot ofAndrew Thompson said:
money for my isp owned website to see if my own server is up. There must be
another way.
A
Andrew Thompson
You must be referring to point 1 above, given..
...option 1 was the only one that cost money.
What - like the other *two* ways mentioned in the three
points *written* *above*?!?
C
Chris Uppal
Darren said:
Some problems do not have a technical solution. This most often happens when
the problem has a non-technical aspect, as in this case. The non-technical
problem is that (for whatever reason of your own) you choose to publish your
web pages with a host that does not allow server-side scripting.
Either change that or accept the fact that there is /no/ 100% reliable solution
(not even if you are willing to pay).
-- chris
D
Darren
Which were. Summarise please.Andrew Thompson said:
D
Darren
What makes you think it was my choice. I don't own the box that hosts myChris Uppal said:
website but i do own the one that hosts my members area
So what is the best solution given my circumstances?
TIA
C
Chris Uppal
Darren said:
Summarise a 14 line post ? (not counting blank lines or .sig) What sort of
idiot are you ?
-- chris
D
Darren
Not the kind of idiot who can't summerise a 14 line post. How about you?Chris Uppal said:
D
Darren
Andrew Thompson said:
Ok The only free certificates i found on Thawt are email ones. I don't know
if javascript applets use these. I can't see an option for any other free
kind
A
Andrew Thompson
So why are you asking me to summarise it..?
I lost my spoon.
--
Andrew Thompson
physci.org 1point1c.org javasaver.com lensescapes.com athompson.info
"When you believe in things that you don't understand, you suffer.
Superstition ain't the way"
Stevie Wonder 'Superstitious'
D
Darren
No need. I googled the thread. Did you read my other post?Andrew Thompson said:
A
Andrew Thompson
Yep. It inspired a new thread.
'Self-signed security certificates.. (oh, the evil)'
I think you would be better off watching that thread,
which will hopefully suggest some good strategies for
gaining certificate you need, at least for testing.
As far as the 'email' certificates go,
- I know one person who posts on these groups who has gained
a free Thawte certificate.
- I looked into it and was thoroughly confused.
- I *think* I ended up determining that the reference to
*email* was only because that was the 'identifcation' that
Thawte claimed. That is, Thawte is effectively saying -
'We *identified* this developer by their *email* -
but nothing more (for free)'
The major thing about these certificates is the level
of trust that can be assigned to any certificate.
- A self signed certificate is basically 'none', it
might be coming to you from anybody.
- A Thawte 'free mail' certificate is Thawte saying you
were willing to blow an email address to get this certificate.
It may allow interested parties to track you down by the
email address.
- For the 'full money', Thawte will go to much more effort
to verify who you are. Then, and only then, does the end
user get the messages 'Certified code, issued by "Your Company"'
[ And, for the record, I use a self signed certificate, and
this is what I need to do to convince people to download the
software and grant my code 'full access'.
<http://www.physci.org/install/security.jsp> ]
C
Chris Uppal
Darren said:
But you did choose to put your website on that box. You can change if you
want.
Change the circumstances.
(Or, to be a little less unhelpful, what /I/ would do is change the static
website before taking down my own machine, and change it back again after the
maintenance was complete. That would be a pain to do by hand every time,
obviously, so I'd automate it.)
-- chris