| ID |
Date |
Icon |
Author |
Author Email |
Category |
OS |
ELOG Version |
Subject |
|
67459
|
Tue Feb 26 08:25:14 2013 |
 | Stefan Ritt | stefan.ritt@psi.ch | Question | Windows | 2.9.2 | Re: Edit from summary view |
| Francois Cukier wrote: |
|
Good day,
I was wondering (and I searched for :) ) a way to directly edit an entry while in summary view instead of having to first click on the entry then click on Edit...
I mean, in summary view, every row entry is clickable to access the entry itself (except email witch open email client), so instead to open it, can it be edited directly ?
Is it possible ?
|
No, this is not possible. |
|
67460
|
Wed Feb 27 13:43:00 2013 |
 | Francois Cukier | Monsieurdindon@gmail.com | Question | Windows | 2.9.2 | Custom "move to" | Good day,
I have 2 logbooks. The main one and the one for the archived entries.
I can make a "move to" command in the main one witch will bring the drop down for the archive. (working perfect).
I was wondering if it is possible to make a "custom" move to in witch I can directly specify the destination logbook, hide the drop down and rename the button.
The main objective is to make a button called "Archive" witch the users only have to press to move the selected entries.<
I know I can make some custom command in list view ie :<a href="?xxx=xxx1|xxx2">zzz</a> so I was wondering if the same is possible and if so, can you guide me on the syntax ?
Thanks for your help :) |
|
67461
|
Wed Feb 27 14:44:48 2013 |
| Francois Cukier | Monsieurdindon@gmail.com | Question | Windows | 2.9.2 | Re: Search result background color |
| Stefan Ritt wrote: |
|
| Francois Cukier wrote: |
|
Is it possible to change the "yellow" background color when running a search ? (I looked in the css, there is nothing...)
Couldn't find any syntax for elogd.cfg
Thanks for your help :)
|
There are no specific classes for the search dialog, but you can play with the classes "form2", "attribname" and "attribvalue". These classes are used in several places, so all will change in the same way, but maybe that's what you like.
|
Understand.. So when a search/sort is done, the searched item come up with a yellow background...
The thing is, if you set a "Cell Style XXX= background-color: ZZZ" it become useless since it is replace with the yellow background.
I tried to play with the css but I couldnt figure it out... So you say I cant do anything about it ? I'm just wondering where this yellow color comes from :)
vs the way I would like it to be :
|
|
67462
|
Fri Mar 1 16:35:21 2013 |
 | Mark Bergman | mark.bergman@uphs.upenn.edu | Bug report | Linux | 2.9.2 | elogd crashes with malloc() memory corruption | I'm having an issue with ELog 2.9.2 revision 2455 where it crashes consistently with:
*** glibc detected *** /usr/local/sbin/elogd: malloc(): memory corruption: 0x0000000014977210 ***
(the address varies). The crash seems to be triggered by the attempt to email a log entry. The log entry itself is saved. If I open the existing message for editing, make no changes, then Submit the message (in order to send email), the daemon crashes.
The behavior is consistent on multiple servers, each running CentOS5.9.
|
|
67469
|
Fri Mar 22 19:41:31 2013 |
| Konstantin Olchanski | olchansk@triumf.ca | Bug report | Linux | 2.9.2 | Incomplete SSL proxy instructions, insecure result. | The instructions for securing elogd using an SSL proxy are incomplete.
http://midas.psi.ch/elog/adminguide.html#secure
http://midas.psi.ch/elogs/contributions/11
If you follow these instructions, elogd will still listen for and accept non-SSL connections on it's own TCP port bypassing the SSL proxy.
(True, the elogd TCP port number is somewhat secret, so there is some security-by-obscurity here).
To secure the elogd TCP port against connections that bypass the SSL proxy, elogd has to be started
with the "-n localhost" command line options.
To add this option, one has to edit /etc/init.d/elogd. I do not know if this change will be lost when the elog rpm package is updated.
It would be better if this option could have been specified through elogd.conf.
The "-n" command line option is not documented here
http://midas.psi.ch/elog/adminguide.html#config
but is visible if you run "elogd -h".
P.S. Even with "-n localhost", users of the local machine can bypass the SSL proxy.
K.O. |
|
67472
|
Wed Apr 3 17:11:06 2013 |
| Stefan Ritt | stefan.ritt@psi.ch | Bug report | Linux | 2.9.2 | Re: Incomplete SSL proxy instructions, insecure result. | > The instructions for securing elogd using an SSL proxy are incomplete.
> http://midas.psi.ch/elog/adminguide.html#secure
> http://midas.psi.ch/elogs/contributions/11
>
> If you follow these instructions, elogd will still listen for and accept non-SSL connections on it's own TCP port bypassing the SSL proxy.
>
> (True, the elogd TCP port number is somewhat secret, so there is some security-by-obscurity here).
>
> To secure the elogd TCP port against connections that bypass the SSL proxy, elogd has to be started
> with the "-n localhost" command line options.
>
> To add this option, one has to edit /etc/init.d/elogd. I do not know if this change will be lost when the elog rpm package is updated.
>
> It would be better if this option could have been specified through elogd.conf.
>
> The "-n" command line option is not documented here
> http://midas.psi.ch/elog/adminguide.html#config
> but is visible if you run "elogd -h".
>
> P.S. Even with "-n localhost", users of the local machine can bypass the SSL proxy.
>
> K.O.
I added the option "interface" to the config file. So you could do
[global]
...
interface = localhost
It was not there originally since most people who care about security use a firewall. The firewall (either locally or one another machine), opens only port 443 for the secure connection and
not the non-secure one (typically 80 or 8080). This way this has not been an issue in the past. As you guessed correctly the -n option would be overwritten by an rpm package update, so
that's why I added the "interface" option. |
|
67474
|
Thu Apr 4 17:47:12 2013 |
 | Daniel Campora | dcampora@cern.ch | Bug report | Linux | 2.9.2 | Checking logging before posting | Hi there,
Here's a bit of a special scenario. There's no server-side check the user is logged in upon posting, but it rather seems the server relies on the post data sent from the form.
An example of this can be triggered on a write restricted elog, by hitting on New and logging out in another tab. Then posting, from the first tab, will post as if the user was logged on. Hitting back and posting again also works.
Cheers |
|
67476
|
Fri Apr 5 10:07:57 2013 |
| Stefan Ritt | stefan.ritt@psi.ch | Bug report | Linux | 2.9.2 | Re: Checking logging before posting |
| Daniel Campora wrote: |
|
Hi there,
Here's a bit of a special scenario. There's no server-side check the user is logged in upon posting, but it rather seems the server relies on the post data sent from the form.
An example of this can be triggered on a write restricted elog, by hitting on New and logging out in another tab. Then posting, from the first tab, will post as if the user was logged on. Hitting back and posting again also works.
Cheers
|
Yes the credentials are stored in the form where you enter your text. This has following reason: In a shared environment (several people sitting around a computer) we want to identify who submits an elog entry, but not bother the person to enter his/her password every few minutes. So in our experiment I set the time-out to 15 min, meaning after 15 minutes of inactivity a user gets logged out. If the user accesses ELOG every ten minutes or so, he/she stays logged in for a whole shift, which is what you want. Now the problem is that one starts an elog entry, waits twenty minutes, then wants to submit it, but you are bought back to the login screen and your entry is gone. Therefore I store the credentials (encrypted) in the form, so that the form can even be submitted after 20 minutes. Users at our lab are pretty happy with this solution.
In fact there is no way you can 100% ensure that the logged in user submits an entry without asking for his/her password during the submit. Even if the time span above is only very short, it still can happen that someone starts an entry, leaves the room, and someone else submits it. So people got used to the good practice not to leave any unfinished elog entry open when they go or leave the browser (to another tab for example). If I would implement to password request during the submit, there would be two problems: 1) Users will heavily complain and 2) I have to store the form data temporary (together with some optional attachments) on the server side, start a password query, and only if that succeeds submit the entry. This is somehow complicated to implement since I cannot use the normal elog database. Then I have to care about dangling entries (like if the password was wrong I should delete the temporary data???) and so on.
I plan for the future a kind of "draft" mode, where entries can be stored as "drafts" (like in most email systems). You get an auto-save every few minutes, and can work on the draft before actually submitting it. In that case your password query could be implemented more easily. But implementing the draft mode needs a change of the database system, so I have to find time to do that.
Best regards,
Stefan |
|