Most Searched
File Extensions

.JSP Files

The .JSP (JavaServer Pages) file extension is a file type developed by the Sun Microsystems Corporation - the creators of Java.

JSP is a Java technology that allows software developers programmers to create web sites, services and applications for the Internet. JSP files are used specifically to execute specific pre-defined actions embedded in the static HTML/XML code to create dynamically-generated web sites

.JSP files were initially conceptualized as an alternative to the .ASP file type (Active Server Pages). Much like the .ASP file - Java Server Pages are a server-side technology but were developed as browser plug-in extension of the Java Servlet. These files were intended to be a suitable alternative to the .NET initiative of Microsoft.

Common Issues With .JSP Files

There are a number of reasons a .JSP file won't open in your browser. Since their primary use is as a server-side application, their ability to open (or failure to open) can be directly affected by the browser environment they are being called into. For example, you may have your browser set to stop these self-executing plug-in files from launching.

If you are unable to open the .JSP file on your PC or laptop, the first step would be to adjust your browser settings - if these files still won't open then you are likely facing a different set of problems. Most likely you do not have the correct software application (or version) to open the file installed, or more likely there is an incorrect file association within the Windows Registry. Most file extension errors are due to wrong association or a possible problem with the Windows Registry, which can be easily resolved by installing the appropriate program to open the file type or correct Registry errors with the use of a good registry cleaner.

How Does a .JSP File Work?

The .JSP syntax adds additional XML-like tags, called JSP actions, to be used to invoke built-in functionality. Additionally, the technology allows for the creation of JSP tag libraries that act as extensions to the standard HTML or XML tags. Tag libraries provide a platform independent way of extending the capabilities of a Web server.

.JSP files are compiled into Java Servlets by a JSP compiler. A JSP compiler may generate a servlet in Java code that is then compiled by the Java compiler, or it may generate byte code for the servlet directly. JSP files can also be interpreted on-the-fly, reducing the time taken to reload changes in the browser. JSPs are capable of dynamic scripting that can work in conjunction with HTML codes by sorting out the page logic and the static elements in order to create a more functional HTML.

Security Issues With .JSP Files

The "XSS virus" is a PHP web application server-side virus that infects infects applications by requesting a JavaScript file (xssv.jsp) and then targeting IP addresses randomly selected within the subnet using the "get_random_ip ()" function.

While conventional viruses are executed and reside within the same system, the XSS distinguishes between the server and your browser where it executes the server-side code and infects your system. The XSS virus does not discriminate platforms because of the encapsulation in the HTML and the use of HTTP (or HTTPS) protocol that are commonly implemented in web browsers on various operating systems. This "universality" of servers/browsers/HTTP allows this platform independence virus to increase the number of potential web applications at risk of infection.

Infection by cross-site scripting viruses occurs initially on the server, with constantly self-replicating code (not executed) and the browser, where the injected code is transferred to from the site and locates other servers to infect and execute its payload creating a scenario of one infected server with multiple infected browsers.

XSS viruses can perform various HTML functions and JavaScript allowing them to display malicious activities. Disinfection would require the running of a potent anti-virus application on the server side and shutting down the browser. Prevention would entail the use of an updated anti-virus application in conjunction with a firewall that can identify XSS virus signatures. This is also the most effective way available, to preventing browser re-infection, short of disabling the functionality of the browser.

There is another "parasitic virus" known as "W32/Fujacks" that infects the .JSP file type (along with (.HTM, .HTML, .ASP, .PHP, and .ASPX). This virus tricks these files into downloading the virus and executing a series of browser commands which enables it to insert itself into files with the extension .EXE, .SCR, .PIF and .COM. W32 appends the command iframe (width=0 and height=0) to the last line of these files to avoid detection. Without the presence of a reliable anti-virus tool, this infection will be carried out without the your knowledge until you start to experience significant reboots, data loss and other general protection faults. Good anti-spyware and virus protection will go a long way to stopping this attack before it gets a chance.

The virus will infect the previously mentioned files by searching various vectors to locate these file types and initiate the infection process. The removal process may be tedious without the use of an effective and efficient updated anti-virus utility that is capable of detecting and removing this security threat. You are also advised to carefully scan files received from P2P clients, emails, IRC and other media users despite the seemingly safe nature of the files.

Be wary of opening .JSP, or any other file for that matter, sent by someone you do not know or one you downloaded off the Internet. Before opening one of these file extensions ensure it comes from a source you trust, that you have good anti-virus, anti-spyware, spam controls, privacy software, a registry cleaner and trusted data recovery tools activated and protecting your system.

The .JSP Advantage

Comparing the JSP technology with what is currently available, presents a good case for it with some convincing advantages:

  • ASP – a similar technology but JSP has a dynamic Java code and can be ported to various operating systems and servers

  • Pure Servlets – JSP can accomplish anything that a Servlet can with more convenience with the luxury of designating separate teams to handle the design and the contents

  • Server Side Includes – JSP is considered better due to the functionality of being able to use Servlets instead of utilizing a separate application to handle the dynamic portion

  • JavaScript – almost the same capabilities except for the distinct advantage of JSP in being able to access server side resources which is a limitation of JavaScript

  • Static HTML – the convenience and ease of use of JSP including its ability to handle dynamic content gives it the advantage.

Featured Software

REPAIR and OPEN
unknown files
with FileCure!