Demo Discussion
Forum Config Examples Contributions Vulnerabilities
  Discussion forum about ELOG, Page 415 of 808  Not logged in ELOG logo
 Find |  Login |  Help 
 Full | Summary | Threaded | Show attachments  Show only new entries    6459 Entries 
Goto page Previous  1, 2, 3 ... 414, 415, 416 ... 806, 807, 808   Next  
ID Date Icon Author Author Email Category OS ELOG Versiondown Subject
  66521   Mon Aug 31 11:22:20 2009 Reply Stefan Rittstefan.ritt@psi.chQuestionWindows2.7.7-2246Re: fckeditor update

Arno Teunisse wrote:

Hello

Just a few fckeditor related questions. How do elog versions and fckeditor versions relate. ?

Can I just drop another version of the fckeditor over an other version?  What things should I consider when doing so ?

thanks for you're time.

The relation is not very "stong". In the past I updated between major version of fckeditor without chaning any elog code, so just give it a try. 

  66525   Thu Sep 3 21:55:52 2009 Question Gerhard Schneidergs@ilsb.tuwien.ac.atQuestionLinux2.7.7-2246chain.crt
Like many educational institutions we get "educational certificates" that are chain certificates..

With apache the full certificate chain is working as expected..

For elog I copied the appropriate files to server.crt and server.key

Netscape 3 is happy with that setup, Internet Explorer and Opera are mentioning the open certificate chain.

When I tried to copy the file known as SSLCACertificateFile in Apache to chain.crt elogd does not longer work and 

openssl s_client -showcerts -connect <myserver>:<elogd_port>

only shows: 

CONNECTED(00000003)
25523:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:s23_clnt.c:562:

What do I do wrong?

Gerhard Schneider
  66526   Fri Sep 4 08:33:16 2009 Reply Stefan Rittstefan.ritt@psi.chQuestionLinux2.7.7-2246Re: chain.crt
> Like many educational institutions we get "educational certificates" that are chain certificates..
> 
> With apache the full certificate chain is working as expected..
> 
> For elog I copied the appropriate files to server.crt and server.key
> 
> Netscape 3 is happy with that setup, Internet Explorer and Opera are mentioning the open certificate chain.
> 
> When I tried to copy the file known as SSLCACertificateFile in Apache to chain.crt elogd does not longer work 
and 
> 
> openssl s_client -showcerts -connect <myserver>:<elogd_port>
> 
> only shows: 
> 
> CONNECTED(00000003)
> 25523:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:s23_clnt.c:562:

To be honest I'm not an expert on SSL. I just use following code inside ELOG to initialize the SSL connection:

SSL_CTX *init_ssl(void)
{
   char str[256];
   SSL_METHOD *meth;
   SSL_CTX *ctx;

   SSL_library_init();
   SSL_load_error_strings();

   meth = SSLv23_method();
   ctx = SSL_CTX_new(meth);

   strlcpy(str, resource_dir, sizeof(str));
   strlcat(str, "ssl/server.crt", sizeof(str));
   if (!file_exist(str)) {
      eprintf("Cerificate file \"%s\" not found, aborting\n", str);
      return NULL;
   }
   if (SSL_CTX_use_certificate_file(ctx, str, SSL_FILETYPE_PEM) < 0)
      return NULL;

   strlcpy(str, resource_dir, sizeof(str));
   strlcat(str, "ssl/server.key", sizeof(str));
   if (!file_exist(str)) {
      eprintf("Key file \"%s\" not found, aborting\n", str);
      return NULL;
   }
   if (SSL_CTX_use_PrivateKey_file(ctx, str, SSL_FILETYPE_PEM) < 0)
      return NULL;
   if (SSL_CTX_check_private_key(ctx) < 0)
      return NULL;

   strlcpy(str, resource_dir, sizeof(str));
   strlcat(str, "ssl/chain.crt", sizeof(str));
   if (file_exist(str))
      SSL_CTX_use_certificate_chain_file(ctx, str);

   return ctx;
}

Maybe I need something different for chain certificates, but I don't know. I just copied these calls from the 
example which comes with the libssl library which I'm using. Maybe somebody has an idea how this could be 
improved. Actually looking at the code I see that the 'chain.crt' file is used. If you send me your files 
privately I could try them and see if I get a specific error code from the SSL library.
  66527   Fri Sep 4 09:48:55 2009 Reply Stefan Rittstefan.ritt@psi.chBug reportLinux2.7.7-2246Re: Fix text prevents user from editing text during creation, instead of just edit

Allen wrote:

When we set Fix text = 1, according to the syntax, this should prevent users from modifying the text field during an edit, but it looks like it is blocking access at both time of edit and creation, meaning you can never add anything to it.  Is that the intended functionality?

Thanks for reporting that bug. I realized that this was not working at all since a long time. I fixed it in SVN revision 2245.

  66547   Thu Sep 17 15:52:36 2009 Question Holger Mundhahsholger.mundhahs@vtg.comBug reportWindows2.7.7-2246Change / List Change doen't work anymore?
Hello @all,

I'm not sure if this is a bug, but after upgradeing from 2.7.0 to 2.7.7 the Change <attribute> and List Change <attribute> doesn't work anymore. In my .cfg file I've:

Quote:
Change RIB-http = <a href="https://$RIB-Hostname/" target="_new">RIB-Board</a>
List Change RIB-http = <a href="https://$RIB-Hostname/" target="_new">RIB-Board</a>


In the old ELOG version I've "RIB-Board" as text in the page and the link works well. But now there is the following code generated:

Quote:
<tr><td nowrap class="attribname">RIB-http:</td><td class="attribvalue">
&lt;a href="<a href="https://RIB-COMPUTER/">https://RIB-COMPUTER/</a>" target="_new"&gt;RIB-Board&lt;/a&gt;&nbsp;</td>
</tr>

Is the syntax changed from 2.7.0 to 2.7.7? What's the correct syntax for 2.7.7?

Best regards
Holger
  66550   Thu Sep 17 18:32:59 2009 Reply Stefan Rittstefan.ritt@psi.chBug reportWindows2.7.7-2246Re: Change / List Change doen't work anymore?

Holger Mundhahs wrote:
Hello @all,

I'm not sure if this is a bug, but after upgradeing from 2.7.0 to 2.7.7 the Change <attribute> and List Change <attribute> doesn't work anymore. In my .cfg file I've:

Quote:
Change RIB-http = <a href="https://$RIB-Hostname/" target="_new">RIB-Board</a>
List Change RIB-http = <a href="https://$RIB-Hostname/" target="_new">RIB-Board</a>


In the old ELOG version I've "RIB-Board" as text in the page and the link works well. But now there is the following code generated:

Quote:
<tr><td nowrap class="attribname">RIB-http:</td><td class="attribvalue">
&lt;a href="<a href="https://RIB-COMPUTER/">https://RIB-COMPUTER/</a>" target="_new"&gt;RIB-Board&lt;/a&gt;&nbsp;</td>
</tr>

Is the syntax changed from 2.7.0 to 2.7.7? What's the correct syntax for 2.7.7?


For security reasons (XSS or cross site scripting) , HTML code in attributes is not allowed by default. To turn it on (and if you know what you are doing), add following line to your configuration
Allow HTML = 1
  66556   Wed Oct 7 07:56:52 2009 Reply Gerhard Schneidergs@ilsb.tuwien.ac.atQuestionLinux2.7.7-2246Re: chain.crt
> Like many educational institutions we get "educational certificates" that are chain certificates..
>  
> only shows: 
> 
> CONNECTED(00000003)
> 25523:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:s23_clnt.c:562:
> 
> What do I do wrong?
> 

After reading the OpenSSL Documentation:

The certificates must be in PEM format and must be sorted starting with the subject's certificate (actual client or
server certificate), followed by intermediate CA certificates if applicable, and ending at the highest level (root) CA.

The chain.crt has to be of the following format:

HOST CERTIFICATE
INTERMEDIATE CERTIFICATE
ROOT CERTIFICATE

Then it is working w/o problems

GS
  66664   Mon Jan 11 09:55:52 2010 Question Ben Weynben.weyn@vanderlande.comQuestionWindows2.7.7-2246Each day new logbookfile

I have installed Elog in a Windows-environment. It's working fine, but i get a new logbookfile each day. Is it possible to have all entries in 1 logbookfile?

Goto page Previous  1, 2, 3 ... 414, 415, 416 ... 806, 807, 808   Next  
ELOG V3.1.5-3fb85fa6