IBM have today launched a technote related to security fixes in Firefox 2.0.0.10 here:http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21289700
The solution is to use a web site rule to explicitly override the MIME type for the dwagss.jar file.
Does anyone have an example of such a web site rule or know how to set it up?
Subject: OK found the solution
After some reading and searching I found out how to set up such a web-rule. Here is how I did it, in case others have the same problem.
Create a new web rule as follows:
1 Give it a name
2 Type of rule: HTTP response headers
3 Incoming URL pattern: *dwagss.jar
4 HTTP response codes: 200, 206
5 Expires header: Don’t add header
6 Custom headers:
Name: Content-type Value: application/x-jar Override
Restart the http task on the server.
The users will now get a security warning to trust IBM as signer. When they accept this the warnings disappear.