The Java Signature Verification Utility (chkjava) allows users to view security information placed in a cabinet file by signcode with the JavaSign DLL.
Use the following command to run chkjava:
chkjava [options] <filename>
options | One or more chkjava options. |
filename | Specifies the name of the file to verify Java permissions for. |
The chkjava utility checks the validity of a signature. It also displays the certificate information and security permissions contained in the file on the console output.
If the signing information is valid and the signature contains Microsoft® ActiveX® permissions, chkjava displays a message that the file is signed with ActiveX permissions.
The following output is an example showing the format used when the signed file is successfully read and the information is dumped to the screen.
Filename: <filename> Program Name: <OpusName> Further Info: <Info Location> Published by: <Publisher Name> Publisher type: (Commercial | Individual) Verified by: <Agency Name> Trust Level: (High | Medium | Low | Custom) [<permission info>]
If the /o option is specified, the permission information will be written to a text file suitable for input as the information file in signcode using the JavaSign.dll.
The following example shows various sample command lines using the chkjava utility, and their results.
C:\..\>chkjava my.cab \\ Displays a dialog box with signature information. C:\..\>chkjava /o test.ini my.cab \\ Displays a dialog box and outputs the .ini file as <test.ini>. C:\..\>chkjava /o test.ini /q my.cab \\ Outputs only to .ini. C:\..\>chkjava /q my.cab \\ Displays only basic information.