| ID |
Date |
Icon |
Author |
Author Email |
Category |
OS |
ELOG Version |
Subject |
|
69887
|
Thu Aug 7 11:04:39 2025 |
 | Stefan Ritt | stefan.ritt@psi.ch | Question | Linux | V3.1.5-30a | Re: once a week we are having elogd segault? | Probably some very strange URL form nexpose to trigger a potential buffer overflow. If I get the precise URL which crashes elogd, I can reproduce and fix it.
Otherwise my usual advice: Run elogd behind an Apache proxy and do the authentication there. This way nexpose does not get to elogd, it will stop at the Apache (without the proper credentials).
Steafn
| mathew goebel wrote: |
|
We have since discovered that the security team is scanning the box in question once a week when the service crashes, with nexpose.
So if you see something similar then you might want to explore that.
| mathew goebel wrote: |
|
Jul 17 20:36:21 elog kernel: elogd[179095]: segfault at 7ffda4d82000 ip 00007f97033a1406 sp 00007ffda4d58c38 error 6 in libc-2.28.so[7f9703374000+1cd000]
Elog version ELOG V3.1.5-30ada1df
Running on a Rehdat 8 enterprise server
compiled with a Makefile change :: change -Wno-unused-result to -Wno-unused-value
Wondering if anyone has been seeing this?
|
|
|
|
69893
|
Mon Sep 15 15:11:41 2025 |
| Stefan Ritt | stefan.ritt@psi.ch | Question | Linux | 3.1.5-1272bc14 | Re: [global] config still editable by admin of top group | You can have authentication via the Webserver or the ELOG internal one, but this is on a global level for all logbooks. You cannot mix this between logbooks. For that, you would have to run two instances of ELOG at two different ports.
Stefan
| Damian Goeldi wrote: |
|
The ETH physics department is running an ELOG behind an Apache reverse proxy:
ProxyPass / http://localhost:$port/ retry=0
ProxyPassReverse / http://localhost:$port/
ProxyAddHeaders off
Authentication is done on the Apache side using LDAP authentication, example:
<Location /demo>
Use PhysLDAP
AuthType Basic
AuthBasicProvider ldap
...
Require valid-user
RewriteEngine On
RewriteCond %{LA-U:REMOTE_USER} (.+)
RewriteRule . - [E=RU:%1,NS]
RequestHeader add X-Forwarded-User %{RU}e
</Location>
And all ELOGs use the following config:
[demo]
Authentication = Webserver
For the PSI-Praktikum we had to create a logbook that is accessible without an ETH-Account. A new logbook was added, which is not authenticated via the proxy, but the ELOG internal authentication. In order to grant access to the students, I was made admin for that logbook. The configuration is the following:
[PSI-Praktikum]
Authentication = File
Password file = /home/wwwelog/private/password/psi-praktikum.xml
Admin user = damian
In order to prevent my user from editing the global configuration, top groups according to https://elog.psi.ch/elog/config.html#groups were introduced, with one top group for all the proxy-authenticated logbooks, and a separate one for the Praktikum logbook. However, even after doing this, I am still able to edit the [global] section. Is there a way to prevent this? Or is it not possible to have a global section that is not accessible by the top group admins?
|
|
|
66110
|
Fri Dec 12 08:57:41 2008 |
 | Stefan Kanitz | skmainz@web.de | Question | Windows | latest | mysql in execute | Hello all,
i have a question to mysql inexecute:
This works:
Execute new = mysql -h localhost -u root -D test1 -e "insert into `test1` (author, type) values ('$Author', '$Type')"
This doesn't work:
Execute new = mysql -h localhost -u root -D test1 -e "insert into `test2` (Autor, Adressat, Teil1, Teil2, Teil3,
Teil4, Teil5, Teil6, Teil7, Teil8 ) values ('$Autor', '$Adressat' , '$Teil1', '$Teil2', '$Teil3', '$Teil4', '$Teil5',
'$Teil6', '$Teil7', '$Teil8' )"
db is okay, i have all checked this. My question is: can the execute-command take a multiline argument? Or perhaps does somebody see a mistake i have made in the execute-line?
Thanks!
Steve
|
|
66113
|
Sat Dec 13 14:31:53 2008 |
| Stefan Kanitz | skmainz@web.de | Question | Windows | latest | Re: mysql in execute |
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
This doesn't work:
Execute new = mysql -h localhost -u root -D test1 -e "insert into `test2` (Autor, Adressat, Teil1, Teil2, Teil3,
Teil4, Teil5, Teil6, Teil7, Teil8 ) values ('$Autor', '$Adressat' , '$Teil1', '$Teil2', '$Teil3', '$Teil4', '$Teil5',
'$Teil6', '$Teil7', '$Teil8' )"
|
In the elogd.cfg file, you cannot have multi-line options. Either you put everything on a single line (I guess there is also some limit at a few hundred characters) or you call a batch file which then calls the mysql command.
|
Thanks!
|
|
66125
|
Tue Dec 23 11:02:26 2008 |
| Stefan Kanitz | skmainz@web.de | Question | Windows | 2.7.5-2140 | Problems with execute delete | Hi all,
i have problems with execute delete (execute new works fine) in following config (the attribute 'Counter' will not evaluated). Can anybody help me?
Here is the config:
Attributes = Counter, Autor, Adressat, Start, Ende, Mitteilung, TextBeachten
Show Attributes = Counter, Autor, Adressat, Start, Ende, Mitteilung, TextBeachten
Show Attributes Edit = Counter, Autor, Adressat, Start, Ende, Mitteilung, TextBeachten
Type Start = date
Type Ende = date
Required Attributes = Autor, Adressat, Start, Ende, Mitteilung
Extendable options = Adressat
Preset Autor = $long_name
Preset Counter = SoMi-#####
Locked Attributes = Autor, Counter
Required Attributes = Adressat, Start, Ende, Mitteilung
Options Adressat = Alle, 1. Semester, 2. Semester, 3. Semester, 4. Semester, 5. Semester, 6. Semester, 7. Semester, 8. Semester
MOptions Textbeachten = Bitte Mitteilungs-Text anzeigen lassen
Execute new = C:\xampp\mysql\bin\mysql.exe -h localhost -u root -p123456 -D screen -e "insert into somi (counter,adressat,start,ende,kumi,mitlami,lami) values ('$Counter', '$Adressat', '$Start', '$Ende', '$Mitteilung', '$TextBeachten', '$text')"
Execute delete = C:\xampp\mysql\bin\mysql.exe -h localhost -u root -p123456 -D screen -e "delete from somi where counter='$Counter'"
Thanks in advance and Merry Christmas!!
Steve
|
|
66127
|
Tue Dec 23 12:17:06 2008 |
| Stefan Kanitz | skmainz@web.de | Question | Windows | 2.7.5-2140 | Re: Problems with execute delete |
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
i have problems with execute delete (execute new works fine) in following config (the attribute 'Counter' will not evaluated). Can anybody help me?
|
Attribute substitution on 'execute delete' was not implemented, since I thought that the ELOG message ID would be used as the primary key in an SQL database, so one would not need the attributes. I added howver this functrionality in SVN revision 2159, so the next release will contain this fix.
|
This sounds very good! Thank you very much (Could you please add this functionality for execute edit too? Please :-))
Steve
|
|
66129
|
Tue Dec 23 12:31:39 2008 |
| Stefan Kanitz | skmainz@web.de | Question | Windows | 2.7.5-2140 | Re: Problems with execute delete |
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
i have problems with execute delete (execute new works fine) in following config (the attribute 'Counter' will not evaluated). Can anybody help me?
|
Attribute substitution on 'execute delete' was not implemented, since I thought that the ELOG message ID would be used as the primary key in an SQL database, so one would not need the attributes. I added howver this functrionality in SVN revision 2159, so the next release will contain this fix.
|
This sounds very good! Thank you very much (Could you please add this functionality for execute edit too? Please :-))
|
For 'execute edit' this worked from the beginning.
|
Thank you! |
|
66135
|
Thu Jan 8 14:42:34 2009 |
| Stefan Kanitz | skmainz@web.de | Question | Windows | latest | elogd hangs when Date format in elogd.cfg | Hi,
after setting
Date format = %Y-%m-%e
in elogd.cfg,
elogd hangs and must be restarted manually. Can anybody help me?
Thanks,
Steve |
|