Demo Discussion
Forum Config Examples Contributions Vulnerabilities
  Discussion forum about ELOG, Page 31 of 806  Not logged in ELOG logo
 Find |  Login |  Help 
New entries since:Thu Jan 1 01:00:00 1970
 Full | Summary | Threaded | Collapse | Expand  Show all entries    6444 Entries 
Goto page Previous  1, 2, 3 ... 30, 31, 32 ... 804, 805, 806   Next  
icon1.gif   Catgegory filtering, posted by Gabriel Lopez on Tue Sep 24 19:38:23 2024 

Currently have multiple logbooks hosted with elogd. One book is having an issue with Categories. The user regulary uses the category filtering to see one subject for the whole month. This past week it hasn't been working properly. When choosing a drop down category to filter there are not logs found. I've notice the fields under the categories change randomly. Sometimes it would add a % sign where there should be --. Some other fields go from displaying -- Subject -- to just the dashes, thats when the filtered eLogs do not show. Clearing out the erroneous characters can eventually load the specified logs. Has anyone else seen this? Should I just upgrade the system and hope for the best?

 

PS. while writing this I was able to mitigate the issue by removing the troubled fields from the quick filter section. I'm pretty sure this will not be an issue for my end user but any input is appreciated.

icon5.gif   results of security scan, posted by David Stops on Mon Nov 1 12:52:23 2021 

Recently central IT scanned our elog server and reported the following "vulnerabilities"

  • 42873 (1) - SSL Medium Strength Cipher Suites Supported (SWEET32)
  • 51192 (1) - SSL Certificate Cannot Be Trusted
  • 65821 (1) - SSL RC4 Cipher Suites Supported (Bar Mitzvah)
  • 85582 (1) - Web Application Potentially Vulnerable to Clickjacking

Is there any easy way of preventing these

Thanks and Best Wishes

David

    icon2.gif   Re: results of security scan, posted by Stefan Ritt on Tue Nov 2 12:07:46 2021 

The elgod.c progarm itself is rather weak in SSL, since I just don't have time to catch up with the latest SSL enhancements. The safest you can do is to put an industry-strenth web server like Apache in front of elogd and let that server handle the SSL layer.

Stefan

David Stops wrote:

Recently central IT scanned our elog server and reported the following "vulnerabilities"

  • 42873 (1) - SSL Medium Strength Cipher Suites Supported (SWEET32)
  • 51192 (1) - SSL Certificate Cannot Be Trusted
  • 65821 (1) - SSL RC4 Cipher Suites Supported (Bar Mitzvah)
  • 85582 (1) - Web Application Potentially Vulnerable to Clickjacking

Is there any easy way of preventing these

Thanks and Best Wishes

David

 

    icon2.gif   Re: results of security scan, posted by David Stops on Thu Nov 4 13:48:00 2021 

Thanks, I'll try that and see what happens

 

David

Stefan Ritt wrote:

The elgod.c progarm itself is rather weak in SSL, since I just don't have time to catch up with the latest SSL enhancements. The safest you can do is to put an industry-strenth web server like Apache in front of elogd and let that server handle the SSL layer.

Stefan

David Stops wrote:

Recently central IT scanned our elog server and reported the following "vulnerabilities"

  • 42873 (1) - SSL Medium Strength Cipher Suites Supported (SWEET32)
  • 51192 (1) - SSL Certificate Cannot Be Trusted
  • 65821 (1) - SSL RC4 Cipher Suites Supported (Bar Mitzvah)
  • 85582 (1) - Web Application Potentially Vulnerable to Clickjacking

Is there any easy way of preventing these

Thanks and Best Wishes

David

 

 

icon4.gif   Problem with eloglang.german_UTF8, posted by Andreas Luedeke on Tue Aug 7 10:53:45 2018 

I had a problem with restarting ELOG since about a year, and finally I found the culprit. I just want to share it here, to prevent anyone else to make the same mistake,

Apparently the files resources/eloglang.* are rather sensitive to the syntax. But it doesn't tell you: no warning or error message comes up.
The file eloglang.german_UTF8 contains some "missing translations" at the end - and it looks like they produce some problems.
If you don't follow the instructions to create eloglang.german_UTF8 from eloglang.german, but use the file as it is, then the language handling will be corrupted:
some (very few) language strings will point into some void and display garbage strings.
In very rare cases this will even crash "elogd", in all other cases it will confuse your users.
Sometimes ELOG commands like "?Cmd=New" were affected, which makes ELOG unusable.
What made it very hard to debug was the fact that with every restart a different string was affected.
Everything looked fine, and later you see a string in the configuration page is wrong. Restarting fixed that string, but then some other string is gone.
 
So if you see such a behaviour, check your language file for "unusual syntax".
I haven't checked if the problem is limited to UTF8 - I only saw the problem with the eloglang.german_UTF8 file.
 
Cheers, Andreas
icon5.gif   New entry cannot be written to directory "/usr/local/elog/logbooks/demo/", posted by Tapasi Ghosh on Mon Feb 8 13:52:33 2016 image.png

Dear All,

I could not submit a new enetry to my logbook whenever restarting my laptop.  I am a new user to elog.

Attached is the screenshot of the error message and also there is "nobody" while I grep elog.

----------------------

>>

Tapasis-MacBook-Pro-2:elog-3.1.0 tapasi$  ps aux | grep elog

tapasi            560   0.4  0.0  2432772    644 s002  S+    9:50AM   0:00.01 grep elog

nobody             76   0.0  0.4  2481308  18440   ??  Ss    9:48AM   0:00.08 /usr/local/sbin/elogd -c /usr/local/elog/elogd.cfg

--------------------------

Any suggesstion will be very much appreciated.

Thanks in advance,

Tapasi

 

 

    icon2.gif   Re: New entry cannot be written to directory "/usr/local/elog/logbooks/demo/", posted by Andreas Luedeke on Mon Feb 8 15:07:05 2016 

You should check if the directory /usr/local/elog/logbooks/demo belongs to the right user and has the right write permissions.

Since the elogd process belongs to the user "nobody", the directory should best belong to "nobody" as well (or - not recommended - allows write access for "others")

Cheers, Andreas

Tapasi Ghosh wrote:

Dear All,

I could not submit a new enetry to my logbook whenever restarting my laptop.  I am a new user to elog.

Attached is the screenshot of the error message and also there is "nobody" while I grep elog.

----------------------

>>

Tapasis-MacBook-Pro-2:elog-3.1.0 tapasi$  ps aux | grep elog

tapasi            560   0.4  0.0  2432772    644 s002  S+    9:50AM   0:00.01 grep elog

nobody             76   0.0  0.4  2481308  18440   ??  Ss    9:48AM   0:00.08 /usr/local/sbin/elogd -c /usr/local/elog/elogd.cfg

--------------------------

Any suggesstion will be very much appreciated.

Thanks in advance,

Tapasi

 

 

 

    icon2.gif   Re: New entry cannot be written to directory "/usr/local/elog/logbooks/demo/", posted by Tapasi Ghosh on Mon Feb 8 16:19:11 2016 

Thanks for your reply.

I am the user and  it also has the write access 

cd /usr/local/elog/

ls -ltr

drwxrwxrwx  6 tapasi  admin  204 Jan  7 18:26 demo

Andreas Luedeke wrote:

You should check if the directory /usr/local/elog/logbooks/demo belongs to the right user and has the right write permissions.

Since the elogd process belongs to the user "nobody", the directory should best belong to "nobody" as well (or - not recommended - allows write access for "others")

Cheers, Andreas

Tapasi Ghosh wrote:

Dear All,

I could not submit a new enetry to my logbook whenever restarting my laptop.  I am a new user to elog.

Attached is the screenshot of the error message and also there is "nobody" while I grep elog.

----------------------

>>

Tapasis-MacBook-Pro-2:elog-3.1.0 tapasi$  ps aux | grep elog

tapasi            560   0.4  0.0  2432772    644 s002  S+    9:50AM   0:00.01 grep elog

nobody             76   0.0  0.4  2481308  18440   ??  Ss    9:48AM   0:00.08 /usr/local/sbin/elogd -c /usr/local/elog/elogd.cfg

--------------------------

Any suggesstion will be very much appreciated.

Thanks in advance,

Tapasi

 

 

 

 

Goto page Previous  1, 2, 3 ... 30, 31, 32 ... 804, 805, 806   Next  
ELOG V3.1.5-3fb85fa6