Date must be between 1970 and 2037??, posted by Tim Schelfhout on Wed Oct 11 15:55:02 2017
|
Hey there,
Trying to record birthdates in ELOG ... field type being date results in error:
| Date must be between 1970 and 2037 |
Can this be avoided? I like the fact that one can use the date picker to enter birthdate |
possible DOS vulnerability with negative Content-Length field, posted by Christian Herzog on Tue Dec 5 15:30:43 2017
|
Hi,
a routine scan revealed a possible DOS attack vector: sending an invalid POST HTTP request with a negative Content-Length field crashes our elog instance, leading to service unavailability.
thanks,
-Christian
--
Dr. Christian Herzog <herzog@phys.ethz.ch> support: +41 44 633 26 68
IT Services Group, HPT H 8 voice: +41 44 633 39 50
Department of Physics, ETH Zurich
8093 Zurich, Switzerland http://nic.phys.ethz.ch/
|
Re: possible DOS vulnerability with negative Content-Length field, posted by Stefan Ritt on Wed Dec 6 13:34:56 2017
|
I have fixed this issue in the current develop branch of elog.
Stefan
| Christian Herzog wrote: |
|
Hi,
a routine scan revealed a possible DOS attack vector: sending an invalid POST HTTP request with a negative Content-Length field crashes our elog instance, leading to service unavailability.
thanks,
-Christian
--
Dr. Christian Herzog <herzog@phys.ethz.ch> support: +41 44 633 26 68
IT Services Group, HPT H 8 voice: +41 44 633 39 50
Department of Physics, ETH Zurich
8093 Zurich, Switzerland http://nic.phys.ethz.ch/
|
|
Upload of images fails from mobile platforms when using ELOG under SSL, posted by Hanno Perrey on Wed Jun 10 11:36:48 2015
|
Hej,
I discovered a problem uploading images taken with the cameras of mobile devices to new elog entries directly from said devices. When selecting the image and choosing "Upload", either the blue page loading indicator gets stuck at around 10% (mobile Safari, iOS 8.3, iPhone 4 and iPad mini) or the error message "failed secure connection; connection reset while page was being loaded" ("Fehler: gesicherte Verbindung fehlgeschlagen. Verbindung zum Server wurde zurueckgesetzt waehrend die Seite geladen wurde") appears shortly after (Android 5.02, Firefox 37.0.2, Motorola G).
From the desktop browser (Firefox 38.0.5, OSX 10.10) there is no problem uploading images at all.
So far, this problem is very reproducible, but only when using ELOG with SSL enabled. Without SSL, the problem disappears on all platforms.
The ELOG daemon runs under Linux (Fedora 18) and I have also tried using the latest development version of ELOG.
Running ELOG with debug messages the only output after the page has been loaded is:
TCP connection #0 on socket 4 closed
TCP connection #0 on socket 4 closed
After these, there is no further output and the mobile devices do not indicate any progress either even after many mi.
The minimal config file I have been using is:
[global]
; network
port = 443
SSL = 1
URL = https://my.server.somewhere/
; paths
Logbook dir = /usr/local/elog/logbooks
Resource dir = /usr/local/elog
Logfile = /tmp/elog.log
[demo]
Attributes = Author, Type, Category, Subject
Required Attributes = Author, Type
Options Type = Status, Modification, Problem Report, Problem Details, Problem Fixed, Other
Options Category = Facility, Experiment, IT, Other
List Page Title = $logbook - $subject
As mentioned before, removing the first three lines fixes the problem (the URL line points to my actual server of course).
I would appreciate any pointers on how to debug this further! The functionality of posting images directly from mobile devices is quite important for the planed deployment of ELOG and I would very much prefer to have SSL enabled when doing so.
Thanks and cheers,
Hanno |
|
Re: Upload of images fails from mobile platforms when using ELOG under SSL, posted by Stefan Ritt on Wed Jun 10 12:22:35 2015
|
That's strange. Might have to do with the SSL library elog uses. I just tried this forum (actually the "Demo"), and it worked fine through SSL, but I use an Apache proxy server for elog implementing the SSL protocol, which might be slightly different.
| Hanno Perrey wrote: |
|
Hej,
I discovered a problem uploading images taken with the cameras of mobile devices to new elog entries directly from said devices. When selecting the image and choosing "Upload", either the blue page loading indicator gets stuck at around 10% (mobile Safari, iOS 8.3, iPhone 4 and iPad mini) or the error message "failed secure connection; connection reset while page was being loaded" ("Fehler: gesicherte Verbindung fehlgeschlagen. Verbindung zum Server wurde zurueckgesetzt waehrend die Seite geladen wurde") appears shortly after (Android 5.02, Firefox 37.0.2, Motorola G).
From the desktop browser (Firefox 38.0.5, OSX 10.10) there is no problem uploading images at all.
So far, this problem is very reproducible, but only when using ELOG with SSL enabled. Without SSL, the problem disappears on all platforms.
The ELOG daemon runs under Linux (Fedora 18) and I have also tried using the latest development version of ELOG.
Running ELOG with debug messages the only output after the page has been loaded is:
TCP connection #0 on socket 4 closed
TCP connection #0 on socket 4 closed
After these, there is no further output and the mobile devices do not indicate any progress either even after many mi.
The minimal config file I have been using is:
[global]
; network
port = 443
SSL = 1
URL = https://my.server.somewhere/
; paths
Logbook dir = /usr/local/elog/logbooks
Resource dir = /usr/local/elog
Logfile = /tmp/elog.log
[demo]
Attributes = Author, Type, Category, Subject
Required Attributes = Author, Type
Options Type = Status, Modification, Problem Report, Problem Details, Problem Fixed, Other
Options Category = Facility, Experiment, IT, Other
List Page Title = $logbook - $subject
As mentioned before, removing the first three lines fixes the problem (the URL line points to my actual server of course).
I would appreciate any pointers on how to debug this further! The functionality of posting images directly from mobile devices is quite important for the planed deployment of ELOG and I would very much prefer to have SSL enabled when doing so.
Thanks and cheers,
Hanno
|
|
|
Re: Upload of images fails from mobile platforms when using ELOG under SSL, posted by Neal Grafton on Fri Jun 12 11:59:00 2015
|
On the subject of uploads, is there a way to restrict the viewing size of an uploaded photo or picture in the config? So it doesn't appear over more than one page.
Neal
| Stefan Ritt wrote: |
|
That's strange. Might have to do with the SSL library elog uses. I just tried this forum (actually the "Demo"), and it worked fine through SSL, but I use an Apache proxy server for elog implementing the SSL protocol, which might be slightly different.
| Hanno Perrey wrote: |
|
Hej,
I discovered a problem uploading images taken with the cameras of mobile devices to new elog entries directly from said devices. When selecting the image and choosing "Upload", either the blue page loading indicator gets stuck at around 10% (mobile Safari, iOS 8.3, iPhone 4 and iPad mini) or the error message "failed secure connection; connection reset while page was being loaded" ("Fehler: gesicherte Verbindung fehlgeschlagen. Verbindung zum Server wurde zurueckgesetzt waehrend die Seite geladen wurde") appears shortly after (Android 5.02, Firefox 37.0.2, Motorola G).
From the desktop browser (Firefox 38.0.5, OSX 10.10) there is no problem uploading images at all.
So far, this problem is very reproducible, but only when using ELOG with SSL enabled. Without SSL, the problem disappears on all platforms.
The ELOG daemon runs under Linux (Fedora 18) and I have also tried using the latest development version of ELOG.
Running ELOG with debug messages the only output after the page has been loaded is:
TCP connection #0 on socket 4 closed
TCP connection #0 on socket 4 closed
After these, there is no further output and the mobile devices do not indicate any progress either even after many mi.
The minimal config file I have been using is:
[global]
; network
port = 443
SSL = 1
URL = https://my.server.somewhere/
; paths
Logbook dir = /usr/local/elog/logbooks
Resource dir = /usr/local/elog
Logfile = /tmp/elog.log
[demo]
Attributes = Author, Type, Category, Subject
Required Attributes = Author, Type
Options Type = Status, Modification, Problem Report, Problem Details, Problem Fixed, Other
Options Category = Facility, Experiment, IT, Other
List Page Title = $logbook - $subject
As mentioned before, removing the first three lines fixes the problem (the URL line points to my actual server of course).
I would appreciate any pointers on how to debug this further! The functionality of posting images directly from mobile devices is quite important for the planed deployment of ELOG and I would very much prefer to have SSL enabled when doing so.
Thanks and cheers,
Hanno
|
|
|
|
Re: Upload of images fails from mobile platforms when using ELOG under SSL, posted by Stefan Ritt on Fri Jun 12 12:19:50 2015
|
Use thumbnails (need ImageMagick to be installed for that), and you can show for example 300x300 pixel thumbnails of all pictures.
| Neal Grafton wrote: |
|
On the subject of uploads, is there a way to restrict the viewing size of an uploaded photo or picture in the config? So it doesn't appear over more than one page.
Neal
| Stefan Ritt wrote: |
|
That's strange. Might have to do with the SSL library elog uses. I just tried this forum (actually the "Demo"), and it worked fine through SSL, but I use an Apache proxy server for elog implementing the SSL protocol, which might be slightly different.
| Hanno Perrey wrote: |
|
Hej,
I discovered a problem uploading images taken with the cameras of mobile devices to new elog entries directly from said devices. When selecting the image and choosing "Upload", either the blue page loading indicator gets stuck at around 10% (mobile Safari, iOS 8.3, iPhone 4 and iPad mini) or the error message "failed secure connection; connection reset while page was being loaded" ("Fehler: gesicherte Verbindung fehlgeschlagen. Verbindung zum Server wurde zurueckgesetzt waehrend die Seite geladen wurde") appears shortly after (Android 5.02, Firefox 37.0.2, Motorola G).
From the desktop browser (Firefox 38.0.5, OSX 10.10) there is no problem uploading images at all.
So far, this problem is very reproducible, but only when using ELOG with SSL enabled. Without SSL, the problem disappears on all platforms.
The ELOG daemon runs under Linux (Fedora 18) and I have also tried using the latest development version of ELOG.
Running ELOG with debug messages the only output after the page has been loaded is:
TCP connection #0 on socket 4 closed
TCP connection #0 on socket 4 closed
After these, there is no further output and the mobile devices do not indicate any progress either even after many mi.
The minimal config file I have been using is:
[global]
; network
port = 443
SSL = 1
URL = https://my.server.somewhere/
; paths
Logbook dir = /usr/local/elog/logbooks
Resource dir = /usr/local/elog
Logfile = /tmp/elog.log
[demo]
Attributes = Author, Type, Category, Subject
Required Attributes = Author, Type
Options Type = Status, Modification, Problem Report, Problem Details, Problem Fixed, Other
Options Category = Facility, Experiment, IT, Other
List Page Title = $logbook - $subject
As mentioned before, removing the first three lines fixes the problem (the URL line points to my actual server of course).
I would appreciate any pointers on how to debug this further! The functionality of posting images directly from mobile devices is quite important for the planed deployment of ELOG and I would very much prefer to have SSL enabled when doing so.
Thanks and cheers,
Hanno
|
|
|
|
|
Re: Upload of images fails from mobile platforms when using ELOG under SSL, posted by Hanno Perrey on Thu Jun 18 15:46:28 2015
|
Hej Stefan,
thanks for the suggestion -- through a Apache proxy the upload does indeed work without problems.
Cheers,
Hanno
| Stefan Ritt wrote: |
|
That's strange. Might have to do with the SSL library elog uses. I just tried this forum (actually the "Demo"), and it worked fine through SSL, but I use an Apache proxy server for elog implementing the SSL protocol, which might be slightly different.
| Hanno Perrey wrote: |
|
Hej,
I discovered a problem uploading images taken with the cameras of mobile devices to new elog entries directly from said devices. When selecting the image and choosing "Upload", either the blue page loading indicator gets stuck at around 10% (mobile Safari, iOS 8.3, iPhone 4 and iPad mini) or the error message "failed secure connection; connection reset while page was being loaded" ("Fehler: gesicherte Verbindung fehlgeschlagen. Verbindung zum Server wurde zurueckgesetzt waehrend die Seite geladen wurde") appears shortly after (Android 5.02, Firefox 37.0.2, Motorola G).
From the desktop browser (Firefox 38.0.5, OSX 10.10) there is no problem uploading images at all.
So far, this problem is very reproducible, but only when using ELOG with SSL enabled. Without SSL, the problem disappears on all platforms.
The ELOG daemon runs under Linux (Fedora 18) and I have also tried using the latest development version of ELOG.
Running ELOG with debug messages the only output after the page has been loaded is:
TCP connection #0 on socket 4 closed
TCP connection #0 on socket 4 closed
After these, there is no further output and the mobile devices do not indicate any progress either even after many mi.
The minimal config file I have been using is:
[global]
; network
port = 443
SSL = 1
URL = https://my.server.somewhere/
; paths
Logbook dir = /usr/local/elog/logbooks
Resource dir = /usr/local/elog
Logfile = /tmp/elog.log
[demo]
Attributes = Author, Type, Category, Subject
Required Attributes = Author, Type
Options Type = Status, Modification, Problem Report, Problem Details, Problem Fixed, Other
Options Category = Facility, Experiment, IT, Other
List Page Title = $logbook - $subject
As mentioned before, removing the first three lines fixes the problem (the URL line points to my actual server of course).
I would appreciate any pointers on how to debug this further! The functionality of posting images directly from mobile devices is quite important for the planed deployment of ELOG and I would very much prefer to have SSL enabled when doing so.
Thanks and cheers,
Hanno
|
|
|
|