java - Signed applet with valid CA still showing up as unknown publisher -


well, tried reading pretty articles haven't found hint.

after receiving official certificates startssl still unable launch applet without unknown publisher warning.

i used

jarsigner connect4client.jar myconnectcert

i checked with

jarsigner -verify -verbose -certs connect4client.jar

and looks fine:

s k     1388 thu may 09 14:04:54 pdt 2013 meta-inf/manifest.mf        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]          1550 thu may 09 14:04:54 pdt 2013 meta-inf/myconnec.sf         5771 thu may 09 14:04:54 pdt 2013 meta-inf/myconnec.rsa            0 thu may 09 12:51:24 pdt 2013 meta-inf/ smk     7437 thu may 09 12:51:20 pdt 2013 connect4.class        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     2588 thu may 09 12:51:22 pdt 2013 connect4clientconnection.class        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     1410 thu may 09 12:51:22 pdt 2013 connect4engine.class        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     2901 thu may 09 12:51:24 pdt 2013 connect4state.class        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     2002 thu may 09 12:51:24 pdt 2013 socketaction.class        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk    22593 sat apr 06 13:16:46 pst 1996 res/applause.au        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     1864 sat apr 06 13:16:28 pst 1996 res/badmove.au        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     1559 sat apr 06 13:16:06 pst 1996 res/bluemove.au        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     1308 sat apr 06 11:43:16 pst 1996 res/blupiece.gif        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk    21870 sat apr 06 11:53:30 pst 1996 res/board.gif        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk      957 tue apr 09 17:51:48 pdt 1996 res/hand.gif        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk    15817 sat apr 06 13:15:50 pst 1996 res/newgame.au        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     3874 sat apr 06 13:15:24 pst 1996 res/redmove.au        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk     1282 sat apr 06 11:42:40 pst 1996 res/redpiece.gif        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]  smk    11720 sat apr 06 13:15:04 pst 1996 res/sad.au        x.509, emailaddress=<personal>@gmail.com, cn=<personal>, l=<personal> ca, st=california, c=us (myconnectcert)       [certificate valid 5/8/13 5:32 pm 5/9/15 8:38 pm]       x.509, cn=startcom class 2 primary intermediate object ca, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca.sub.class2)       [certificate valid 10/24/07 3:01 pm 10/24/17 3:01 pm]       x.509, cn=startcom certification authority, ou=secure digital certificate signing, o=startcom ltd., c=il (startcom.ca)       [certificate valid 9/17/06 12:46 pm 9/17/36 12:46 pm]             0 wed apr 17 00:57:50 pdt 2013 res/    s = signature verified    m = entry listed in manifest   k = @ least 1 certificate found in keystore   = @ least 1 certificate found in identity scope  jar verified.

so why publisher still show unknown? missing? cert or have java 7 (which installed) or safari (10.8)? or because browser not recognize startcom valid ca?

additional information: checked java console , got following:

cache: initialize resource manager: com.sun.deploy.cache.resourceproviderimpl@63d1e70a security: property package.access value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple. security: property package.access new value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp security: property package.definition value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple. security: property package.definition new value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp security: property package.access value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp security: property package.access new value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss security: property package.definition value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp security: property package.definition new value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss security: property package.access value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss security: property package.access new value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss,com.sun.browser,com.sun.glass,com.sun.javafx,com.sun.media.jfxmedia,com.sun.media.jfxmediaimpl,com.sun.openpisces,com.sun.prism,com.sun.scenario,com.sun.t2k,com.sun.webpane,com.sun.pisces,com.sun.webkit security: property package.definition value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss security: property package.definition new value sun.,com.sun.xml.internal.bind.,com.sun.xml.internal.org.jvnet.staxex.,com.sun.xml.internal.ws.,com.sun.imageio.,com.sun.istack.internal.,com.sun.jmx.,com.sun.proxy.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.org.glassfish.external.,com.sun.org.glassfish.gmbal.,apple.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss,com.sun.browser,com.sun.glass,com.sun.javafx,com.sun.media.jfxmedia,com.sun.media.jfxmediaimpl,com.sun.openpisces,com.sun.prism,com.sun.scenario,com.sun.t2k,com.sun.webpane,com.sun.pisces,com.sun.webkit basic: tap installed basic: creating pluginembeddedframe served com.apple.java.jrs.carenderserver-12351 basic: done creating pluginembeddedframe basic: added progress listener: sun.plugin.util.progressmonitoradapter@591882e6 basic: plugin2classloader.addurl parent called file:/users/<personal>/xxxxxxxxxx/connect4client.jar security: blacklist revocation check enabled security: trusted libraries list check enabled security: trusted libraries list file not found network: cache entry not found [url: file:/users/<personal>/desktop/xxxxxxxxxx/connect4client.jar, version: null] security: accessing keys , certificate in mozilla user profile: null security: loading certificates deployment session certificate store security: loaded certificates deployment session certificate store security: validate certificate chain using certpath api security: loading root ca certificates /library/internet plug-ins/javaappletplugin.plugin/contents/home/lib/security/cacerts security: loaded root ca certificates /library/internet plug-ins/javaappletplugin.plugin/contents/home/lib/security/cacerts security: obtain certificate collection in root ca certificate store security: obtain certificate collection in root ca certificate store security: obtain certificate collection in root ca certificate store security: obtain certificate collection in root ca certificate store security: certificate hasnt been expired, no need check timestamping info security: cannot find jurisdiction list file security: crl support disabled security: ocsp support disabled security: ocsp end entity validation disabled security: checking if certificate in deployment denied certificate store security: checking if certificate in deployment permanent certificate store security: checking if certificate in deployment session certificate store

this object code signing certificate startcom. explicitly imported startcom certs before make sure these found still no go.

got answer, startcom replied certificates not work applet signing big let down me considering found pricing mentioned on site stating not expensive , enabled applet signing. in effect true, issue though certs not resolve trying achieve. sigh.


Comments

Post a Comment

Popular posts from this blog

linux - xterm copying to CLIPBOARD using copy-selection causes automatic updating of CLIPBOARD upon mouse selection -

i've tried various ways coerce xterm (versions 285 , 292) copy selection clipboard clipboard whenever press ctrl-shift-c. promising way far has been, in ~/.xresources, put this: xterm*vt100.translations: #override \ ctrl shift <keypress> c: copy-selection(clipboard) \n\ ctrl shift <keypress> v: insert-selection(clipboard) ctrl-shift-v works perfectly, copying has nuance... if restart xterm, highlighting text puts things in primary clipboard; expected, proper, default behavior. if hit ctrl-shift-c, copies current selection clipboard clipboard. the bug, however, if highlight text after first time pressed ctrl-shift-c, you'll see highlighting copies both primary and clipboard. cannot figure out how stop xterm updating clipboard upon selection... , doesn't make sense me in first place. i said, @ specific point in time, copy selection clipboard... yet starts updating automatically upon selection after doing once... anyone have workaround...
Read more

c++ - qgraphicsview horizontal scrolling always has a vertical delta -

Image
i've subclassed qgraphicsview custom canvas used in cad application. i've reimplemented qgraphicsview::wheelevent check keyboard modifiers control key and, if control key pressed, zoom. i'm trying implement horizontal scroll when user holds shift , uses wheel. the problem i'm having horizontal scrolling always scrolls 0.279. not huge problem, hugely annoying , points else being wrong. so, here questions: is right way implement horizontal scrolling? if not, is? how eliminate delta of 0.279? thanks in advance. code , sample output below void myview::zoom(int delta) { double factor = pow(1.2, delta/abs(delta)); this->scale(factor, factor); } void myview::scrollhorizontal(int level) { qpointf center = maptoscene(viewport()->rect().center()); qdebug() << "center: " << center.x() << ", " << center.y(); centeron(qpointf(center.x() - level, center.y())); } void myview::wheelevent(qwheeleve...
Read more