Skip navigation
Prem Radhakrishnan
Currently Being Moderated

Socket Policy File / Server

May 3, 2013 10:36 AM

So after reading all the documentation , I believe that in order to use XMLSocket connections the policy file has to come from TCP and not HTTP , based on the http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.htm l

 

"Strict socket rules

The primary change in support of the DNS hardening improvements in Flash Player 9,0,115,0 is the introduction of strict socket rules. These rules are:

  • A SWF file may no longer make a socket connection to its own domain without a socket policy file. Prior to version 9,0,115,0, a SWF file was permitted to make socket connections to ports 1024 or greater in its own domain without a policy file.
  • HTTP policy files may no longer be used to authorize socket connections. Prior to version 9,0,115,0, an HTTP policy file, served from the master location of /crossdomain.xml on port 80, could be used to authorize a socket connection to any port 1024 or greater on the same host.

These two rules can be summed up in a simple statement: under the strict socket rules, every socket connection requires permission from a socket policy file."

 

I have been looking all over the place to try to find some help on how to implement this on a Windows / IIS server and serve a file on port 843 . No luck so far ?

 

Some help please?

 
Replies

More Like This

  • Retrieving data ...

Bookmarked By (0)

Answers + Points = Status

  • 10 points awarded for Correct Answers
  • 5 points awarded for Helpful Answers
  • 10,000+ points
  • 1,001-10,000 points
  • 501-1,000 points
  • 5-500 points