The point about certificates and signing
If you ever tried to use BitLet, you should have encountered a window that says you that the signature of the applet cannot be verified (see the screenshot below).
Since some users appear to be quite puzzled about what is the exact meaning of that message, we will try to shed some light on this issue.
Let's start from the beginning...
In order to protect users from malicious applets, the JVM (Java Virtual Machine) considers the code of applets that are embedded in web pages to be untrusted, and it is executed in a sort of sandbox, which prevents it from executing any action that could (possibly) harm the client system.
This means that, by default, common Java applets are not allowed to perform some tasks, including opening network connections to other servers or to access the filesystem of the client machine on which they are running.
Obviously, any bittorrent client (including BitLet) needs to perform both those operations to be of some use, even without intending to do any harm.
In order to overcome this problem, the applet is digitally signed, i.e. it is signed using a digital certificate that ensures that the applet comes from the certificate holder.
This brings us back to the first line of this post. You are seeing that annoying message because the certificate used to sign BitLet is not issued by a trusted Certificate Authority. Actually, it was generated on a common development box. Why?
Because code signing certificates cost. And they cost a lot of money, too.
If you know any CA that issues that kind of certificates without charging outrageously high prices, don't hesitate to let us know or drop us a line in the comments.
Since some users appear to be quite puzzled about what is the exact meaning of that message, we will try to shed some light on this issue.
Let's start from the beginning...
In order to protect users from malicious applets, the JVM (Java Virtual Machine) considers the code of applets that are embedded in web pages to be untrusted, and it is executed in a sort of sandbox, which prevents it from executing any action that could (possibly) harm the client system.
This means that, by default, common Java applets are not allowed to perform some tasks, including opening network connections to other servers or to access the filesystem of the client machine on which they are running.
Obviously, any bittorrent client (including BitLet) needs to perform both those operations to be of some use, even without intending to do any harm.
In order to overcome this problem, the applet is digitally signed, i.e. it is signed using a digital certificate that ensures that the applet comes from the certificate holder.
This brings us back to the first line of this post. You are seeing that annoying message because the certificate used to sign BitLet is not issued by a trusted Certificate Authority. Actually, it was generated on a common development box. Why?
Because code signing certificates cost. And they cost a lot of money, too.
If you know any CA that issues that kind of certificates without charging outrageously high prices, don't hesitate to let us know or drop us a line in the comments.
Posted by Alessandro Bahgat at
3:23 PM
39 Comments:
WOW!! Ilke this Site :D
Is there any way i can save the files in my server. Like i will put the ftp url/user name, password and it will start saving it in my ftp server?
thanx
Shuvo.
Hello xxx, I think that what you're looking for is quite different from bitlet. Take a look here, it could be a more suitable option for your needs.
Maybe CACert works, i was trying to find how to request a free certificate for software (i use it for e-mail), i remember that option was on the site. Anyway, CACert is not in the default trusted roots for the official Java Virtual Machine, so the message of untrusted source will still appears.
Maybe looking in the "Security" tab of the Java applet in the Windows control panel (or the binary ControlPanel on /usr/java/ in Linux) there's a list of the default trusted roots for Signing Certificates. I hope one of them have to be free.
I accidently press No to accepting the certificate. How can I get the certificate now as can't seem to get the message anymore.
Please help.
Thanks
thawte have certificates for applets which are free, and are widely used.
instructions here:
http://www.dallaway.com/acad/webstart/
(instructions are for webstart but a signed jar using the same procedure will work as a signed applet)
you should consider providing a webstart client as well - would be useful for longer lived torrents.
Thank you very much rhyd for your advice.
As you can see, we updated the certificate and now we are using the thawte one.
The webstart client would be a great option.
We already considered that, and we hope we'll find time to develop it in the future.
Regards,
Daniele
Seria muito bom também que pudessemos baixar torrents através dos arquivos torrents, e não somente pela suas respectivas URLs. Seria interessante
Hello, I just wanted to say that your blog has been really useful for me..
I need all the help I can get, lol.. Thnx
eat post! I am actually getting ready to across this information, is very helpful. Keep up the good work you are doing here.
Java Training in Chennai | Java Training Institute in Chennai
Good Post! Thank you so much for sharing this pretty post, it was so good to read and useful to improve my knowledge as updated one, keep blogging…
industrial safety course in chennai
I believe there are many more pleasurable opportunities ahead for individuals that looked at your site.
safety course in chennai
All the points you described so beautiful. Every time i read your i blog and i am so surprised that how you can write so well.
Selenium training in Chennai
Selenium training in Bangalore
Wonderful blog. I'm learning a lot from here. Keep us updated with more such posts.
Embedded Training in Chennai
Embedded courses in chennai
Mobile Testing Training in Chennai
Mobile Testing Course in Chennai
Manual Testing Training in Chennai
Manual Testing Courses in Chennai
Embedded Training in Tambaram
Embedded Training in Anna Nagar
The post is written in very a good manner and it entails many useful information for me. I am happy to find your distinguished way of writing the post. Now you make it easy for me to understand and implement the concept.
Oracle Training in chennai
web designing training in chennai
web designing training in chennai | angularjs training in chennai
sas training institute in chennai
software testing training in chennai
Thanks for sharing such informative post. Keep on sharing such informative post. Buy E Cigarette Melbourne from leading online Store.
Great article
digital
marketing course in chennai
I sat at home and heard the screams of joy from my son's room. I decided to peep that there, and he played in an online casino. Of course, I got angry, but he quickly reassured me and showed everything on this website. novel best online casino He won money twice as much as he put a lot of slot machines, slots and all that, now we sit together
bsnl speedtest
BSNL Speed Test:- Today the high-speed internet is considered as the most important requirement of an internet connection. It ensure comfort Bsnl speedtest.
Thanks For Sharing...
Website designing Company Shamli
Website Designing Company Varanasi
Web Designing Gorakhpur
Website designing Company Ghazipur
Website designing Company Dehradun
Website designing Company Shahjahanpur
Website designing Company Lucknow
The article is so informative. This is more helpful. Thanks for sharing.
best software testing training institute in chennai with placement
selenium course
software testing training institute
GOOGLE
GOOGLE
GOOGLE
GOOGLE
GOOGLE
GOOGLE
GOOGLE
GOOGLE
GOOGLE
Superb! Your blog is incredible. I am delighted with it. Thanks for sharing with me more information.
RPA Training in anna nagar
RPA Training in Chennai
RPA Training in OMR
Ethical Hacking Course in OMR
AngularJS Training in T Nagar
RPA Training in T Nagarr
AWS Training in Tnagar
DOT NET Training in T nagar
Amazing Article ! I have bookmarked this article page as i received good information from this. All the best for the upcoming articles. I will be waiting for your new articles. Thank You ! Kindly
Web Designing and Development Course Training Institute in Chennai with Placement
Web Designing & Development Classes Training Institute in Chennai with Placement
Web Designing Course Training Institute in Chennai
Web Design Courses in Chennai
Web Designing Courses in Chennai
airdroid apk
Great experience for me by reading this blog. Nice article.
Angularjs course in Chennai
Angularjs Training in Bangalore
angular training in bangalore
Angularjs Training in Chennai
Angularjs Training institute in Chennai
Angular 4 Training in Chennai
web design training in coimbatore
php training in madurai
Jeewangarg is the Best SEO Company in Delhi providing FREE site auditing along with the most reasonable Professional SEO services to top all searches, increase organic visibility, promote business, increase audience, and make instant sales.
Such an interesrting and essential topic that everyone should know this. for home PipeLine Leakage repair solution. Visit the site Pipeline Leak Detection to know more about Pipeline Leak Detection Service Provider in India.
Really nice post. Thank you for sharing amazing information.
Python training in Chennai/Python training in OMR/Python training in Velachery/Python certification training in Chennai/Python training fees in Chennai/Python training with placement in Chennai/Python training in Chennai with Placement/Python course in Chennai/Python Certification course in Chennai/Python online training in Chennai/Python training in Chennai Quora/Best Python Training in Chennai/Best Python training in OMR/Best Python training in Velachery/Best Python course in Chennai
very informative keepsharing
freeinplanttrainingcourseforECEstudents
internship
internship-for-aeronautical-engineering-students-in-india
internship-for-cse-3rd-year-students
freeinplanttrainingcourseforMECHANICALstudents
internship-in-chennai-for-ece
inplant-training-for-civil
internship-at-bsnl
internship-for-2nd-year-ece-students
internship-for-aeronautical-students-in-chennai
I like the helpful info you provide in your articles. I’ll bookmark your weblog and check again here regularly. I am quite sure I will learn much new stuff right here! Good luck for the next!
Web Designing Course in Chennai | Web Designing Training in Chennai
Mobile Application Development Courses in chennai
Data Science Training in Chennai | Data Science courses in Chennai
web designing classes in chennai | web designing training institute in chennai
I like the helpful info you provide in your articles. I’ll bookmark your weblog and check again here regularly. I am quite sure I will learn much new stuff right here! Good luck for the next!
Web Designing Course in Chennai | Web Designing Training in Chennai
Mobile Application Development Courses in chennai
Data Science Training in Chennai | Data Science courses in Chennai
web designing classes in chennai | web designing training institute in chennai
technical improvement...
Inplant Training in Chennai
Iot Internship
Internship in Chennai for CSE
Internship in Chennai
Python Internship in Chennai
Implant Training in Chennai
Android Training in Chennai
R Programming Training in Chennai
Python Internship
Internship in chennai for EEE
Rpa Training in Chennai
Rpa Course in Chennai
Rpa training institute in Chennai
Best Rpa Course in Chennai
uipath Training in Chennai
Blue prism training in Chennai
Great Article
B.Tech Final Year Projects for CSE in Angular
Angular Training in Chennai
Project Centers in Chennai
JavaScript Training in Chennai
beetv apk
beetv
It's a looks very awesome article! Thanks a lot of sharing for information.
Python course in Chennai
Python Training in Bangalore
Python Course in Coimbatore
Python Training in Chennai
Big Data Training in Coimbatore
php course in bangalore
Python Classes in Bangalore
python training in hyderabad
I am happy for sharing on this blog its awesome blog I really impressed. thanks for sharing.
Learn SAP Training from the Industry Experts we bridge the gap between the need of the industry. Softgen Infotech provide the Best SAP ABAP Training in Bangalore with 100% Placement Assistance. Book a Free Demo Today.
Really i appreciate the effort you made to share the knowledge. The topic here i found was really effective...
Looking for SAP HANA ADMIN Training in Bangalore, learn from eTechno Soft Solutions SAP HANA ADMIN Training on online training and classroom training. Join today!
Very nice post here thanks for it I always like and search such topics. Helpful piece of information. I am satisfied that you simply shared this helpful information with us.
https://www.cetpainfotech.com/technolgy/summer-training-for-engineering-students
Post a Comment
Subscribe to Post Comments [Atom]
<< Home