Self-Sign HowTo?
Dave Johnson
imsa-guy@po.cwru.edu
Mon, 02 Jun 2003 08:06:03 -0400
Here is how I did it on a Redhat linux 8.0 box with Java SDK 1.4
installed (I got the RPM from java.sun.com).
1. Get the jar.
wget http://www.appgate.com/mindterm/MindTerm-2.3.1/mindterm_2.3.1-bin.zip
unzip mindterm_2.3.1-bin.zip
mv mindterm.jar mindtermfull.jar
2. Create a self-signed (dummy) certificate.
keytool -genkey -keystore mykeystore -alias myalias
keytool -selfcert -keystore mykeystore -alias myalias
3. Sign your jar with your dummy certificate.
jarsigner -keystore mykeystore mindtermfull.jar myalias
4. Use the HTML code as previously posted (e.g. edit index.html)
<html>
<head>
<title>SSH Java Applet</title>
<meta content="text/html" http-equiv=Content-Type>
</head>
<body>
<br>
<center>
<h1>Loading SSH Applet</h1>
</center>
<applet>
<param name="height" value="1">
<param name="width" value="1">
<param name="code" value="com.mindbright.application.MindTerm.class">
<param name="codeBase" value="./">
<param name="archive" value="mindtermfull.jar">
<param name="port" value="22">
<param name="alive" value="10">
<param name="te" value="xterm-color">
<param name="gm" value="80x32">
<param name="sepframe" value="true">
<param name="quiet" value="true">
<param name="cmdsh" value="false">
<param name="autoprops" value="none">
<param name="verbose" value="false">
<param name="idhost" value="false">
<param name="debug" value="false">
</applet>
</body>
</html>
5. Put the jar in the same directory as your html file.
cp mindtermfull.jar /var/www/html/
chmod a+r /var/www/html/mindtermfull.jar /var/www/html/index.html
6. Point your browser to your website, and enjoy!
Note: your users will get security warnings because you've used a
self-signed certificate. Just tell them to dismiss the warnings.
This worked for me in both IE 6.0 and Moz 1.4b. I *was* able to connect
to arbitrary remote hosts. I did not attempt file transfer or port
forwarding.
7. After enjoying, consider paying for a license. Mindbright has a
really awesome product, and I'd hate to see them stop development on it.
DJ