1 Reply Latest reply on May 7, 2013 9:15 AM by Prem Radhakrishnan

    Socket Policy File / Server

    Prem Radhakrishnan

      So after reading all the documentation , I believe that in order to use XMLSocket connections the policy file has to come from TCP and not HTTP , based on the http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html


      "Strict socket rules

      The primary change in support of the DNS hardening improvements in Flash Player 9,0,115,0 is the introduction of strict socket rules. These rules are:

      • A SWF file may no longer make a socket connection to its own domain without a socket policy file. Prior to version 9,0,115,0, a SWF file was permitted to make socket connections to ports 1024 or greater in its own domain without a policy file.
      • HTTP policy files may no longer be used to authorize socket connections. Prior to version 9,0,115,0, an HTTP policy file, served from the master location of /crossdomain.xml on port 80, could be used to authorize a socket connection to any port 1024 or greater on the same host.

      These two rules can be summed up in a simple statement: under the strict socket rules, every socket connection requires permission from a socket policy file."


      I have been looking all over the place to try to find some help on how to implement this on a Windows / IIS server and serve a file on port 843 . No luck so far ?


      Some help please?