Hacking midlet signing
in [Java Programming]
|
From: bashizip on 25 Mar 2010 13:18 Hi ! Is there a "killer" way to hack the midlet signing on PDA with Windows mobile 6.x and Jbed KVM? I don't think it's a good idea to pay a cerificate (like Veisign) just for tests purposes;do you? Need your help please !
From: Roedy Green on 26 Mar 2010 17:35 On Thu, 25 Mar 2010 10:18:11 -0700 (PDT), bashizip <bashizip(a)gmail.com> wrote, quoted or indirectly quoted someone who said : >Is there a "killer" way to hack the midlet signing on PDA with Windows >mobile 6.x and Jbed KVM? >I don't think it's a good idea to pay a cerificate (like Veisign) just >for tests purposes;do you? >Need your help please ! Blackberry has cheap certs. I don't know if they work on Midlets or just Blackberry JDE. http://na.blackberry.com/eng/developers/javaappdev/codekeys.jsp Does a Midlet normally just use an ordinary Java code-signing cert? I suspect so since Verisign says it sells certs for midlets but seems to suggest you use ordinary code-signing certs for midlets. If so, you can get them for less from Thawte. You can also create self-signed "phony" certs, though I suspect some upload sites or phones might reject them. see http://mindprod.com/jgloss/certificatevendors.html http://mindprod.com/jgloss/selfsignedcertificate.html -- Roedy Green Canadian Mind Products http://mindprod.com If you tell a computer the same fact in more than one place, unless you have an automated mechanism to ensure they stay in sync, the versions of the fact will eventually get out of sync.
From: Donkey Hottie on 26 Mar 2010 17:52 On 26.3.2010 23:35, Roedy Green wrote: > On Thu, 25 Mar 2010 10:18:11 -0700 (PDT), bashizip > <bashizip(a)gmail.com> wrote, quoted or indirectly quoted someone who > said : > >> Is there a "killer" way to hack the midlet signing on PDA with Windows >> mobile 6.x and Jbed KVM? >> I don't think it's a good idea to pay a cerificate (like Veisign) just >> for tests purposes;do you? >> Need your help please ! > > > Blackberry has cheap certs. I don't know if they work on Midlets or > just Blackberry JDE. > Comodo offers free SSL certificates for 90 days. -- You have literary talent that you should take pains to develop.
From: Roedy Green on 27 Mar 2010 13:54 On Fri, 26 Mar 2010 23:52:27 +0200, Donkey Hottie <donkey(a)fred.pp.fi> wrote, quoted or indirectly quoted someone who said : >> > >Comodo offers free SSL certificates for 90 days. That is a quite different sort of cert from a code-signing cert. I have not heard of anyone interconverting them. There is also a company offering free, permanent SSL certs. I don't know how they make any money. See http://mindprod.com/jgloss/certificatevendors.html -- Roedy Green Canadian Mind Products http://mindprod.com If you tell a computer the same fact in more than one place, unless you have an automated mechanism to ensure they stay in sync, the versions of the fact will eventually get out of sync.
From: bashizip on 29 Mar 2010 14:30
Thank you ! But my problem stays unsolved: I'm looking for a free way,no-payment way. I made a celf-signed root certifate , installed it to the phone, signed my Midlet with my public key, and installed the midlet into the midlet manager.But always the same result : the midlet's not trusted,need to confirm any network and file system access !!! Is there any way to hack the virtual machine ? |