| ID |
Date |
Icon |
Author |
Author Email |
Category |
OS |
ELOG Version |
Subject |
|
68716
|
Mon Jan 15 16:27:19 2018 |
 | Stefan Ritt | stefan.ritt@psi.ch | Question | Windows | ELOG V3.1.3-fd7 | Re: Unsafe browsing | Safety is getting more and more an issue these days. Normal browsers don't accept self-signed certificates any more. One possibility is to get a certificate from https://letsencrypt.org/
Stefan
| Tim Schelfhout wrote: |
|
Hello there,
Can anyone point out to me how I can avoid the unsafe browsing when accessing our local ELOG?
Browsing with chrome and always getting the unsafe browsing page. One has to go through the advanced
button to continue ...
I once had my setup with SSL certificate (local signed, not through the CA) but I somehow cannot get it
to work anymore. Just create a local certificate and copy the certificates to all browsers that access the ELOG site, no?
Anyway, a small guide would be great.
|
|
|
68715
|
Mon Jan 15 15:56:07 2018 |
 | Tim Schelfhout | timpieworks@gmail.com | Question | Windows | ELOG V3.1.3-fd7 | Unsafe browsing | Hello there,
Can anyone point out to me how I can avoid the unsafe browsing when accessing our local ELOG?
Browsing with chrome and always getting the unsafe browsing page. One has to go through the advanced
button to continue ...
I once had my setup with SSL certificate (local signed, not through the CA) but I somehow cannot get it
to work anymore. Just create a local certificate and copy the certificates to all browsers that access the ELOG site, no?
Anyway, a small guide would be great. |
|
68714
|
Fri Jan 12 09:54:41 2018 |
 | Xuan Wu | wux@ihep.ac.cn | Question | Linux | 3.1.3 | about attachment | Hi all,
Some elog users of our site(CSNS) mentioned some advice about attachment:
1.Can imagemagick create thumbnail for .bmp file now?
2.Can re-sort the attachments after attachments uploaded by dragging or clicking up/down arrow or anything except deleting and re-upload attachment again?
3.Can add some description under the thumbnail of uploaded attachment? I've suggested them adding the description to the name of attchment or writing the detail in the text area. They are seem not very satisfied with this solution.
Any advice and suggestion will be appreciated.
Cheers |
|
68713
|
Mon Dec 11 13:20:49 2017 |
| Stefan Ritt | stefan.ritt@psi.ch | Question | Windows | 2.92.2 | Re: Tool Tips | Tooltips on 'ROptions' work since 2007, but your version 2.9.2 is pre-2007, so you should consider to upgrade.
Stefan
| Grant Jeffcote wrote: | Stefan, I know this request was a long time ago on an older version of E-Log (which we are still using) but can you tell me if Tooltips on Radio Buttons was ever implemented, it's not working on our version (2.92.2)?
Working as it should on MOptions?
| Stefan Ritt wrote: |
| Grant Jeffcote wrote: | | I can't seem to get the Tooltips to show up using the 'ROptions' (radio buttons) though? Could you check if it is available for this please? |
Did I tell that it also works with 'ROptions' ??? It does not! I implemented this just now in revision 1788. The fix will be contained in the next release. |
|
|
|
68712
|
Mon Dec 11 13:16:32 2017 |
| Stefan Ritt | stefan.ritt@psi.ch | Question | Linux | 3.1.2-bd7 | Re: hosts allow | Have you set
Resolve host names = 1
in the config file? If it still does not work, run "elogd -v" from the terminal and watch the output. You should see someting like:
Remote host "mpc1865.psi.ch" matches "ALL" in "Hosts deny". Access denied.
Remote host "mpc1865.psi.ch" matches ".lbl.gov" in "Hosts allow". Access granted.
Regards,
Stefan
| Andreas Luedeke wrote: |
|
Hi Susan,
the documentation states that you should start elogd with the -v option from the command line and look at the output. Did you try this?
You might post the output here to get further help.
Cheers
Andreas
| Susan James wrote: |
|
Hi All,
We're still having trouble with hosts.allow and hosts.deny.
We're trying to allow all of our domain lbl.gov to the access list
for our logbooks. But the combination below is not working.
==========================
[ below denies ALL ]
Hosts allow = .lbl.gov
Hosts deny = ALL
[ below denies ALL ]
Hosts deny = ALL
Hosts allow = .lbl.gov
========================
Can someone help?
| Susan James wrote: |
|
thanks for your quick reply.
the configuration is still not working. See my entry below which denies everyone.
I've tried many different combinations of 'hosts allow and hosts deny'
we want to restrict all our logbooks to only domain lbl.gov
[ below denies ALL ]
Hosts allow = .lbl.gov
Hosts deny = ALL
[ below denies ALL ]
Hosts deny = ALL
Hosts allow = .lbl.gov
Can you help?
| Andreas Luedeke wrote: |
|
Hi Susan,
according to the documentation you need to add "Hosts deny = All" in addition to the "Hosts allow" command.
Here is the relevant excerpt from the documentation (https://midas.psi.ch/elog/config.html#access).
Cheers
Andreas
Hosts allow = <list>Hosts deny = <list>
These two settings can be used to restrict the access to the logbook to certain computers. It is similar to the UNIX hosts.allow and hosts.deny files. The list can consist of individual host names or IP numbers, subnet masks like 123.213. (note the trailing '.') or .mit.edu, or the word All. The following rules are applied:
- Access will be granted when a host matches a pattern in "hosts allow".
- Otherwise, access will be denied when a host matches a pattern in "hosts deny".
- Otherwise, access will be granted.
These rules are applied before any password is checked. To debug problems, start elogd with the "-v" flag, in which case the rule checking is printed on the screen.
| Susan James wrote: |
|
I'm trying to wrap our elog instance to our company domain which is lbl.gov
I add this entry below (without quotes) to elogd.cfg and it's not working. the world can see our logbooks
" Hosts Allow = *.lbl.gov ".
can someone help?
|
|
|
|
|
|
|
68711
|
Fri Dec 8 19:47:04 2017 |
| Andreas Luedeke | andreas.luedeke@psi.ch | Question | Linux | 3.1.2-bd7 | Re: hosts allow | Hi Susan,
the documentation states that you should start elogd with the -v option from the command line and look at the output. Did you try this?
You might post the output here to get further help.
Cheers
Andreas
| Susan James wrote: |
|
Hi All,
We're still having trouble with hosts.allow and hosts.deny.
We're trying to allow all of our domain lbl.gov to the access list
for our logbooks. But the combination below is not working.
==========================
[ below denies ALL ]
Hosts allow = .lbl.gov
Hosts deny = ALL
[ below denies ALL ]
Hosts deny = ALL
Hosts allow = .lbl.gov
========================
Can someone help?
| Susan James wrote: |
|
thanks for your quick reply.
the configuration is still not working. See my entry below which denies everyone.
I've tried many different combinations of 'hosts allow and hosts deny'
we want to restrict all our logbooks to only domain lbl.gov
[ below denies ALL ]
Hosts allow = .lbl.gov
Hosts deny = ALL
[ below denies ALL ]
Hosts deny = ALL
Hosts allow = .lbl.gov
Can you help?
| Andreas Luedeke wrote: |
|
Hi Susan,
according to the documentation you need to add "Hosts deny = All" in addition to the "Hosts allow" command.
Here is the relevant excerpt from the documentation (https://midas.psi.ch/elog/config.html#access).
Cheers
Andreas
Hosts allow = <list>Hosts deny = <list>
These two settings can be used to restrict the access to the logbook to certain computers. It is similar to the UNIX hosts.allow and hosts.deny files. The list can consist of individual host names or IP numbers, subnet masks like 123.213. (note the trailing '.') or .mit.edu, or the word All. The following rules are applied:
- Access will be granted when a host matches a pattern in "hosts allow".
- Otherwise, access will be denied when a host matches a pattern in "hosts deny".
- Otherwise, access will be granted.
These rules are applied before any password is checked. To debug problems, start elogd with the "-v" flag, in which case the rule checking is printed on the screen.
| Susan James wrote: |
|
I'm trying to wrap our elog instance to our company domain which is lbl.gov
I add this entry below (without quotes) to elogd.cfg and it's not working. the world can see our logbooks
" Hosts Allow = *.lbl.gov ".
can someone help?
|
|
|
|
|
|
68710
|
Thu Dec 7 21:54:58 2017 |
| Susan James | sjames@lbl.gov | Question | Linux | 3.1.2-bd7 | Re: hosts allow | Hi All,
We're still having trouble with hosts.allow and hosts.deny.
We're trying to allow all of our domain lbl.gov to the access list
for our logbooks. But the combination below is not working.
==========================
[ below denies ALL ]
Hosts allow = .lbl.gov
Hosts deny = ALL
[ below denies ALL ]
Hosts deny = ALL
Hosts allow = .lbl.gov
========================
Can someone help?
| Susan James wrote: |
|
thanks for your quick reply.
the configuration is still not working. See my entry below which denies everyone.
I've tried many different combinations of 'hosts allow and hosts deny'
we want to restrict all our logbooks to only domain lbl.gov
[ below denies ALL ]
Hosts allow = .lbl.gov
Hosts deny = ALL
[ below denies ALL ]
Hosts deny = ALL
Hosts allow = .lbl.gov
Can you help?
| Andreas Luedeke wrote: |
|
Hi Susan,
according to the documentation you need to add "Hosts deny = All" in addition to the "Hosts allow" command.
Here is the relevant excerpt from the documentation (https://midas.psi.ch/elog/config.html#access).
Cheers
Andreas
Hosts allow = <list>Hosts deny = <list>
These two settings can be used to restrict the access to the logbook to certain computers. It is similar to the UNIX hosts.allow and hosts.deny files. The list can consist of individual host names or IP numbers, subnet masks like 123.213. (note the trailing '.') or .mit.edu, or the word All. The following rules are applied:
- Access will be granted when a host matches a pattern in "hosts allow".
- Otherwise, access will be denied when a host matches a pattern in "hosts deny".
- Otherwise, access will be granted.
These rules are applied before any password is checked. To debug problems, start elogd with the "-v" flag, in which case the rule checking is printed on the screen.
| Susan James wrote: |
|
I'm trying to wrap our elog instance to our company domain which is lbl.gov
I add this entry below (without quotes) to elogd.cfg and it's not working. the world can see our logbooks
" Hosts Allow = *.lbl.gov ".
can someone help?
|
|
|
|
|
68709
|
Wed Dec 6 13:34:56 2017 |
| Stefan Ritt | stefan.ritt@psi.ch | Question | Linux | ELOG V3.1.2 | Re: possible DOS vulnerability with negative Content-Length field | I have fixed this issue in the current develop branch of elog.
Stefan
| Christian Herzog wrote: |
|
Hi,
a routine scan revealed a possible DOS attack vector: sending an invalid POST HTTP request with a negative Content-Length field crashes our elog instance, leading to service unavailability.
thanks,
-Christian
--
Dr. Christian Herzog <herzog@phys.ethz.ch> support: +41 44 633 26 68
IT Services Group, HPT H 8 voice: +41 44 633 39 50
Department of Physics, ETH Zurich
8093 Zurich, Switzerland http://nic.phys.ethz.ch/
|
|
|