Demo Discussion

Forum Config Examples Contributions Vulnerabilities

Discussion forum about ELOG, Page 521 of 808  Not logged in

Find |  Login |  Help

Full | Summary | Threaded | Collapse | Expand     -- All entries -- Last day Last 3 Days Last week Last month Last 3 Months Last 6 Months Last Year -- Category -- Info Bug report Bug fix Question Request Comment Other  6460 Entries

Goto page Previous  1, 2, 3 ... 520, 521, 522 ... 806, 807, 808   Next

Re: once a week we are having elogd segault?, posted by mathew goebel on Wed Aug 6 17:08:46 2025  We have since discovered that the security team is scanning the box in question once a week when the service crashes, with nexpose. So if you see something similar then you might want to explore that. mathew       Re: once a week we are having elogd segault?, posted by Stefan Ritt on Thu Aug 7 11:04:39 2025  Probably some very strange URL form nexpose to trigger a potential buffer overflow. If I get the precise URL which crashes elogd, I can reproduce and fix it. Otherwise my usual advice: Run elogd behind an Apache proxy and do the authentication there. This way nexpose does not get to elogd, it will   [global] config still editable by admin of top group, posted by Damian Goeldi on Mon Sep 15 13:16:58 2025  The ETH physics department is running an ELOG behind an Apache reverse proxy: ProxyPass / http://localhost:$port/ retry=0 ProxyPassReverse / http://localhost:$port/       Re: [global] config still editable by admin of top group, posted by Stefan Ritt on Mon Sep 15 15:11:41 2025  You can have authentication via the Webserver or the ELOG internal one, but this is on a global level for all logbooks. You cannot mix this between logbooks. For that, you would have to run two instances of ELOG at two different ports. Stefan       Re: [global] config still editable by admin of top group, posted by Konstantin Olchanski on Wed Sep 17 21:55:57 2025  Another idea, if you have root access to the elog server, you can temporarily make the elog config file unwritable to the elog user, nobody will be  able to change it from the web interface. (and as root, you can edit it using emacs). But in general case, yes, it is better to setup a separate  elog instance for what you do. Still, make the config elog unwritable by the elog user, so it cannot be hacked too easily. K.O.   ELOG Skins Showcase, posted by Tomas Rudolf on Sat May 3 11:08:11 2003  Hello everybody. I am sure that some of you (just like me) experimented already with themes        Re: ELOG Skins Showcase, posted by Stefan Ritt on Sat May 3 15:06:16 2003  > Let's share some inspiration. I'll post mine as soon as finished the re- > look.   syntax highligting for elog.cfg with ULTRAEDIT, posted by Etienne Van Caillie on Wed May 21 10:15:17 2003  UltraEdit Syntax coloring ========================= add this file in ultraedit

Goto page Previous  1, 2, 3 ... 520, 521, 522 ... 806, 807, 808   Next

ELOG V3.1.5-3fb85fa6