----- Original Message -----
From: Mark Bradley <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, October 13, 1999 11:55 AM
Subject: Serving signed CAB files
> Greetings,
>
> I have a signed CAB file for IE and am serving it to IE browsers (4 and 5)
with
> the
> mime-type as application/x-compressed and application/octect-stream.
> In both cases IE recognizes that is is signed, presents a certificate for
> validation
> (full permissions), runs the applet when the user OKs the certificate, and
then
> promptly throws a MSSecurityException when the applet tries to contact a
tcp/ip
> server that is not on the same box as the the server where the servlet
served
> the
> CAB file from. It works fine if the other tcp/ip server is on the same
box as
> the
> serving servlet.
>
I am lurking dangerously close to the edge of my knowledge base here but as
far
as I know signing CAB files does not ease the restriction on contacting
other hosts
it just eases sandbox restrictions at the client. You could have a servlet
acting as a
router for your applet requests instead though.
This is probably wrong, I am not sure though.
Andy Bailey
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
