Hi !
Featured games (90)
games approved by the League of Dukes
Games in Showcase (780)
Games in Android Showcase (233)
games submitted by our members
Games in WIP (857)
games currently in development
News: Read the Java Gaming Resources, or peek at the official Java tutorials
    Home     Help   Search   Login   Register   
Pages: 1 2 3 [4]
  ignore  |  Print  
  JOGL Applet Security  (Read 42466 times)
0 Members and 1 Guest are viewing this topic.
Offline mauryr

Senior Newbie

« Reply #90 - Posted 2005-12-05 01:56:07 »

All this is great.. but a user who wants to use an applet made like this still needs to accept the signature.. Do you guys think there could be any way to keep the binaries on the server and load them remotely from there after detecting on which platform the applet is running? Would this be enough to be able to avoid the signature?

Offline swpalmer

JGO Coder

Exp: 12 years

Where's the Kaboom?

« Reply #91 - Posted 2005-12-05 05:58:27 »

The signature dialog is a "good thing".    User education is needed here, not a hack to bypass security.

Offline Ken Russell

JGO Coder

Java games rock!

« Reply #92 - Posted 2005-12-05 07:41:08 »

swpalmer is right. There is no way to bypass the security dialog and still have the signed applet work. This would be a violation of the Java security model. The applet installer does detect which platform it's running on and downloads the appropriate native code from the server, but the applet installer needs all permissions in order to be able to save the native libraries to the local disk and load them. I believe once you've accepted the certificate the first time you don't get repeated security dialogs.
Games published by our own members! Check 'em out!
Legends of Yore - The Casual Retro Roguelike
Offline mauryr

Senior Newbie

« Reply #93 - Posted 2005-12-06 20:12:05 »

I totally agree with you, users need to be "educated" on this, but I m sure you know how many scams and stuff you can find on the internet which pop up "will you accept to be f**ed?". Let's say I make a java game and I deploy it in a signed applet. An average user who doesn't know it (I will not make any big advertising campaign etc... I m just a poor student ^^ ) finds it with google or something. He gets curious and wants to try it. Then this window pops up. "Will you allow blah blah?". I think a good 50% of these users would click "nowayinhell" and just close my website never to come back because of past experiences with scams etc.
You can obviously see how this would have a very bad impact on the success of my application.
What I would like to do is to load the binaries directly from my server, without having to write anything to the user's machine (so I can avoid signatures, and I can run it on machines without any writing permissions, like for example school machines or whatever).
Is that at all possible?

1) unsigned applet loads.
2) detects os type
3) asks the server for the correct dll, and the server sends it for the client to load (not to copy to the target machine, only to load it).

In my newbieness I kinda think this would be the best solution for this scenery, if technically possible.
What are your opinions about this idea?

Offline tom
« Reply #94 - Posted 2005-12-06 21:39:41 »

It is not possible. If it was all applets would be a security risk and java would be removed by the anti virus software Wink

Pages: 1 2 3 [4]
  ignore  |  Print  

hadezbladez (745 views)
2018-11-16 13:46:03

hadezbladez (382 views)
2018-11-16 13:41:33

hadezbladez (735 views)
2018-11-16 13:35:35

hadezbladez (194 views)
2018-11-16 13:32:03

EgonOlsen (2393 views)
2018-06-10 19:43:48

EgonOlsen (2556 views)
2018-06-10 19:43:44

EgonOlsen (1482 views)
2018-06-10 19:43:20

DesertCoockie (2145 views)
2018-05-13 18:23:11

nelsongames (1948 views)
2018-04-24 18:15:36

nelsongames (2629 views)
2018-04-24 18:14:32
Deployment and Packaging
by mudlee
2018-08-22 18:09:50

Java Gaming Resources
by gouessej
2018-08-22 08:19:41

Deployment and Packaging
by gouessej
2018-08-22 08:04:08

Deployment and Packaging
by gouessej
2018-08-22 08:03:45

Deployment and Packaging
by philfrei
2018-08-20 02:33:38

Deployment and Packaging
by philfrei
2018-08-20 02:29:55

Deployment and Packaging
by philfrei
2018-08-19 23:56:20

Deployment and Packaging
by philfrei
2018-08-19 23:54:46 is not responsible for the content posted by its members, including references to external websites, and other references that may or may not have a relation with our primarily gaming and game production oriented community. inquiries and complaints can be sent via email to the info‑account of the company managing the website of java‑
Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines | Managed by Enhanced Four Valid XHTML 1.0! Valid CSS!