Re: Java now available on Google App engine - how long til CFML?
On Wednesday 08 Apr 2009, Jeff Gladnick wrote: How long til we get CFML on there? Isn't BroadChoice Workspace running on AWS ? So not long ? -- Helping to continuously target eligible real-time high-yield materials as part of the IT team of the year, '09 and '08 Tom Chiverton Developer Tel: +44 0161 618 5032 Fax: +44 0161 618 5099 tom.chiver...@halliwells.com 3 Hardman Square, Manchester, M3 3EB www.Halliwells.com This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office together with a list of those non members who are referred to as partners. We use the word partner to refer to a member of the LLP, or an employee or consultant with equivalent standing and qualifications. Regulated by the Solicitors Regulation Authority. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. For more information about Halliwells LLP visit www.Halliwells.com. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321471 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Stumped by cfexchange integration
On Thursday 09 Apr 2009, Victor Moore wrote: I can connect fine from IE using the same credentials I have in the cfexchangeconnect tag ... Quick batman ! To the packet tracer ! -- Helping to confidentially repurpose m-commerce as part of the IT team of the year, '09 and '08 Tom Chiverton Developer Tel: +44 0161 618 5032 Fax: +44 0161 618 5099 tom.chiver...@halliwells.com 3 Hardman Square, Manchester, M3 3EB www.Halliwells.com This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office together with a list of those non members who are referred to as partners. We use the word partner to refer to a member of the LLP, or an employee or consultant with equivalent standing and qualifications. Regulated by the Solicitors Regulation Authority. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. For more information about Halliwells LLP visit www.Halliwells.com. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321472 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: encrypt database column
yes good point, thanks Dave In fact, yes i know we are both thinking 'if someone is good enough to hack into the backend database then they will be good enough to decrypt the data if they really wanted' so the cf app would definitely be sufficient enough The problem with encrypting data from within your application is that the same application will often also decrypt the data, so if your application itself has a vulnerability - which is by far the most likely security problem you'd have - this won't actually protect your data. It would, however, perhaps protect your data from untrustworthy database administrators, but that's probably not the threat profile you're facing. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321473 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Stumped by cfexchange integration
Any recommendation? Thx On Thu, Apr 9, 2009 at 7:26 AM, Tom Chiverton tom.chiver...@halliwells.com wrote: On Thursday 09 Apr 2009, Victor Moore wrote: I can connect fine from IE using the same credentials I have in the cfexchangeconnect tag ... Quick batman ! To the packet tracer ! ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321474 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Stumped by cfexchange integration
On Thursday 09 Apr 2009, Victor Moore wrote: Any recommendation? Wireshark. -- Helping to greatly revolutionize user-centric enterprise slick services as part of the IT team of the year, '09 and '08 Tom Chiverton Developer Tel: +44 0161 618 5032 Fax: +44 0161 618 5099 tom.chiver...@halliwells.com 3 Hardman Square, Manchester, M3 3EB www.Halliwells.com This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office together with a list of those non members who are referred to as partners. We use the word partner to refer to a member of the LLP, or an employee or consultant with equivalent standing and qualifications. Regulated by the Solicitors Regulation Authority. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. For more information about Halliwells LLP visit www.Halliwells.com. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321475 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Stumped by cfexchange integration
Have you tried different formats of username? such as {domain}\{username}
or {userna...@{domain}?
On Wed, Apr 8, 2009 at 9:04 PM, Victor Moore victor.mo...@gmail.com wrote:
Hi James,
Yes, I have seen that one. My problem is a little bit different in the
sens that I can't even connect.
I have even applied the patch that Matt pointed out and still no luck.
I can connect fine from IE using the same credentials I have in the
cfexchangeconnect tag ...
Very frustrating to say the least..
Thanks
Victor
On Wed, Apr 8, 2009 at 8:44 PM, James Holmes james.hol...@gmail.com
wrote:
2009/4/9 Victor Moore victor.mo...@gmail.com:
Am I the only person in the CF universe that is trying to use
cfexchange tag with Exchange 2007 (and has a problem)?
No:
http://www.houseoffusion.com/groups/cf-talk/thread.cfm/threadid:53211
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;207172674;29440083;f
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321476
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Stumped by cfexchange integration
Another thought that came to mind - is the SSL certificate for your exchange
environment ( I believe you should be connecting to the HUB server?) in your CF
keystore?
Matt Frew
Systems Programmer - Core Systems
The Wharton School of the University of Pennsylvania
215-573-5924 / mf...@wharton.upenn.edu
-Original Message-
From: Scott Stroz [mailto:boyz...@gmail.com]
Sent: Thursday, April 09, 2009 10:01 AM
To: cf-talk
Subject: Re: Stumped by cfexchange integration
Have you tried different formats of username? such as {domain}\{username}
or {userna...@{domain}?
On Wed, Apr 8, 2009 at 9:04 PM, Victor Moore victor.mo...@gmail.com wrote:
Hi James,
Yes, I have seen that one. My problem is a little bit different in the
sens that I can't even connect.
I have even applied the patch that Matt pointed out and still no luck.
I can connect fine from IE using the same credentials I have in the
cfexchangeconnect tag ...
Very frustrating to say the least..
Thanks
Victor
On Wed, Apr 8, 2009 at 8:44 PM, James Holmes james.hol...@gmail.com
wrote:
2009/4/9 Victor Moore victor.mo...@gmail.com:
Am I the only person in the CF universe that is trying to use
cfexchange tag with Exchange 2007 (and has a problem)?
No:
http://www.houseoffusion.com/groups/cf-talk/thread.cfm/threadid:53211
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;207172674;29440083;f
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321477
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe:
http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Stumped by cfexchange integration
I have tried any combination I can think of. It doesn't complain about
the user or password (even though the error message can be misleading
some time).
Unable to connect to the Exchange server using HTTP/HTTPS protocol.
HTTP response code : 440
Thanks
Victor
On Thu, Apr 9, 2009 at 10:00 AM, Scott Stroz boyz...@gmail.com wrote:
Have you tried different formats of username? such as {domain}\{username}
or {userna...@{domain}?
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;207172674;29440083;f
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321478
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Stumped by cfexchange integration
These links discuss a 440 error with Exchange: http://www.chicagotech.net/netforums/viewtopic.php?t=2438 http://msmvps.com/blogs/cgross/archive/2004/08/08/11472.aspx http://krva.blogspot.com/2008/01/owa-2007-error-440-login-timeout.html Hope they're useful. mxAjax / CFAjax docs and other useful articles: http://www.bifrost.com.au/blog/ 2009/4/9 Victor Moore victor.mo...@gmail.com: I have tried any combination I can think of. It doesn't complain about the user or password (even though the error message can be misleading some time). Unable to connect to the Exchange server using HTTP/HTTPS protocol. HTTP response code : 440 ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321479 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
how to handle in-appropriate image uploads
Hello, How do big web sites like myspace police image uploads? It seems like they let users report abuse then take action. Is there any other way? I really don't want an approval system where an admin user has to approve an image before it is displayed. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321480 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: how to handle in-appropriate image uploads
The viewers are able to flag it as inappropriate content. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321481 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: how to handle in-appropriate image uploads
Check out Amazon Turk. On Thu, Apr 9, 2009 at 11:34 AM, Tony Bentley t...@tonybentley.com wrote: The viewers are able to flag it as inappropriate content. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321482 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: how to handle in-appropriate image uploads
Chad Gray wrote: Hello, How do big web sites like myspace police image uploads? Staff reviews and approves images or users review and approve images or both. Computers can not tell much about images yet, though they are beginning to get better. I've been thinking I might play with some of the face recognition stuff I've heard about recent when I have some free time. Yeah free time, um what does that feel like again? ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321483 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: how to handle in-appropriate image uploads
It's scary what they're doing with images now! http://www.ted.com/index.php/talks/blaise_aguera_y_arcas_demos_photosynth.ht ml Adrian -Original Message- From: Ian Skinner [mailto:h...@ilsweb.com] Sent: 09 April 2009 17:59 To: cf-talk Subject: Re: how to handle in-appropriate image uploads Chad Gray wrote: Hello, How do big web sites like myspace police image uploads? Staff reviews and approves images or users review and approve images or both. Computers can not tell much about images yet, though they are beginning to get better. I've been thinking I might play with some of the face recognition stuff I've heard about recent when I have some free time. Yeah free time, um what does that feel like again? ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321484 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: how to handle in-appropriate image uploads
Check what myspace is using. It's pretty good at determining offensive images. On Thu, Apr 9, 2009 at 9:58 AM, Ian Skinner h...@ilsweb.com wrote: Chad Gray wrote: Hello, How do big web sites like myspace police image uploads? Staff reviews and approves images or users review and approve images or both. Computers can not tell much about images yet, though they are beginning to get better. I've been thinking I might play with some of the face recognition stuff I've heard about recent when I have some free time. Yeah free time, um what does that feel like again? ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321485 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: how to handle in-appropriate image uploads
I've worked at a company where we had personals sites, like match.com or something, a few million users. We spent a lot of time creating a user content review system, meaning, anything that goes up has to be looked at by the company filters (in our case, a handful of girls) before other users on the site could see the content. In addition, there were report this links in key places. As far as reviewing images, I think it would have been successful to reverse the process, allow images to go up but have a tool that surveys many images at once and is able to yank them down with a single click. This way would make it a lot less stressful for you, just make sure you mark what has and has not been 'reviewed'. Also, with users reporting images, flag the image after 1 report for you to review, but yank it after 2 or 3. If you wanted to go a lot further, you could rank your users' experience level and allow some users to cast more weight to a vote, while new users could only have 1 point to vote against an image, an experienced user could cast 5 points (a simple algorithm could be the number of months since sign up). At a certain number of points, the image is flagged for review, then at another threshold, it is removed permanently. Also, with text, there are likely words or phrases you may not want your users to type, such as bad language or competitor's sites. You can put some validation on the user's side for obvious things (like the F word), but be leinient for cases likeassassin, shitzu puppies or pussycat (sorry for the near-swearing cf-talk!) Then, on the admin side, you could aggregate a lot of user's data in a tool and highlight questionable phrases, maybe with different colors to note the severity of a potential issue. This is a perfect use case for regular expressions and backreferencing. nathan strutz [Blog and Family @ http://www.dopefly.com/] [AZCFUG Manager @ http://www.azcfug.org/] On Thu, Apr 9, 2009 at 9:32 AM, Chad Gray cg...@careyweb.com wrote: Hello, How do big web sites like myspace police image uploads? It seems like they let users report abuse then take action. Is there any other way? I really don't want an approval system where an admin user has to approve an image before it is displayed. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321486 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: GoogleCalendar.cfc troubles
The offset is passed to the CFC constructor: cfset application.gCal = createObject(component, GoogleCalendar).init(yourlogin,password,-5) In the example above, the offset is -5. FYI, I don't read cf-talk very often. Your best bet is to contact me directly, or use the Contact Project Owner link at RIAForge. On Wed, Apr 8, 2009 at 12:52 PM, Matt Blatchley m...@bridgeleaf.com wrote: I've recently downloaded Ray Camden's GoogleCalendar.cfc and I'm having a heck of time understanding how the timezone offset is supposed to work. I'm calling to the CFC using the following code: cfset Da_date3 = #calendarYear#/#calendarMonth#/#DaysOfWeekArray[placement]# cfset events = application.CRM.getEvents(calid=calId,maxevents=50,orderby=starttime,sortdir=d,startMin=#Da_date3#,startMax=#Da_date3#) And the dates that come back in the query results are sometimes 5 hours behind. But I've tried to make changes within the CFC by setting the cfset variables.tzOffset = 5 and a few other things, but I can't seem to get anything to work. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321487 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: how to handle in-appropriate image uploads
Thank you Nathan, that was a brilliant post! andrew. ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321488 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
url click capture with coldfusion7
That is, upon user clicking a URL/link, capture the click/counter in a db. It's real easy with cf8's cfajax-driven tag but for coldfusion7 how do we go about that? It's going to be involved with some javascripting I think. Oh, remember some kind of js var conversion into cf var, right? what's the tag or function name? Thanks always. Don Chunshen Li ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321489 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: url click capture with coldfusion7
the way i used to do it was through an intermediary page, which is passed the actual link to forward user to, or a link id from db. this page records the click event in the db and cflocates the user to actual link. Azadi Saryev Sabai-dee.com http://www.sabai-dee.com/ Don L wrote: That is, upon user clicking a URL/link, capture the click/counter in a db. It's real easy with cf8's cfajax-driven tag but for coldfusion7 how do we go about that? It's going to be involved with some javascripting I think. Oh, remember some kind of js var conversion into cf var, right? what's the tag or function name? Thanks always. Don Chunshen Li ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321490 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: url click capture with coldfusion7
and if you are using one of ajax-enabled js frameworks, you can create js proxies to your cfc functions without cf, capture the click event on a link, pass the href attribute of the link to your function, and in the callback relocate the user. i think ben nadel had a blog post about it not long ago... Azadi Saryev Sabai-dee.com http://www.sabai-dee.com/ Don L wrote: That is, upon user clicking a URL/link, capture the click/counter in a db. It's real easy with cf8's cfajax-driven tag but for coldfusion7 how do we go about that? It's going to be involved with some javascripting I think. Oh, remember some kind of js var conversion into cf var, right? what's the tag or function name? Thanks always. Don Chunshen Li ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321491 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Question about hack
Ok, I wanted to post here because I have been looking around on google the last few days because we had the same issue to give an update on to all the findings we have found from our investigation... First off this IS an issue with either mssql/msaccess or ColdFusion or the combination of the two. Whatever has been writing the script seems to be embedded in either one of the coldfusion files somewhere or in the database you are executing from, we have not figured it out yet. This is what we have decided to do to solve the issue... Step 1: Shut down IIS. Whatever is causing this requires IIS to run from what we have seen. Step 2: I have written a simple script in PHP (because that is what I script in) that will go through every file in the specified path and remove anything that it finds matching the pattern in the 2.txt file. (default is what was being written to our server). It will log all the files it changed to alog.log file in the same directory. Here is what you need to do to run the script... 1. Download: http://www.rallyinfo.com/fixer.zip 2. Extract it somewhere on the server. 3. Install PHP (if you don't already have it, REQ PHP5+ [I believe]) 4. Open the 1.php file in the folder you extracted it too, and edit the line that says Path = 'D:/' to whatever path you want to check for (i'd suggest run it multiple times on every drive). 5. Open a command line go to the folder that you extracted it to. (example, in the command line type: cd C:\FOLDER\YOU\EXTRACTED\IT\TOO, then if it is on a different drive type the drive letter followed by a :) 6. type php 1.php. Now wait, it may take hours depending on how many files it has to read. This script will ONLY remove the infected files, it will NOT fix the issue. We have not figured out what is causing the issue. I have a feeling, since we are using access database to hold the info for ColdFusion, that there is somewhere in the database it is executing from, however we have no proof yet. Another theory is that it somehow implanted itself into one of the CF files on whatever site had it infected first. And every time someone goes to that site it re-runs the script to infect a script to infect other files with it. Step 3: Either uninstall ColdFusion or turn it off so it will no longer be ran in IIS. We decided to uninstall ColdFusion because we only have about 2 sites that still use it, and we have decided to convert them into PHP. After that I cannot help much, seens how we didn't actually find the issue, but rather made it unable to run any longer. If you have any questions or comments I will actively watch this thread, and I will assist in (only though this thread) removing corrupted files. -Nathan Bruer ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321492 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Question about hack
Ok, I wanted to post here because I have been looking around on google the last few days because we had the same issue to give an update on to all the findings we have found from our investigation... First off this IS an issue with either mssql/msaccess or ColdFusion or the combination of the two. Whatever has been writing the script seems to be embedded in either one of the coldfusion files somewhere or in the database you are executing from, we have not figured it out yet. This is what we have decided to do to solve the issue... Step 1: Shut down IIS. Whatever is causing this requires IIS to run from what we have seen. Step 2: I have written a simple script in PHP (because that is what I script in) that will go through every file in the specified path and remove anything that it finds matching the pattern in the 2.txt file. (default is what was being written to our server). It will log all the files it changed to alog.log file in the same directory. Here is what you need to do to run the script... 1. Download: http://www.rallyinfo.com/fixer.zip 2. Extract it somewhere on the server. 3. Install PHP (if you don't already have it, REQ PHP5+ [I believe]) 4. Open the 1.php file in the folder you extracted it too, and edit the line that says Path = 'D:/' to whatever path you want to check for (i'd suggest run it multiple times on every drive). 5. Open a command line go to the folder that you extracted it to. (example, in the command line type: cd C:\FOLDER\YOU\EXTRACTED\IT\TOO, then if it is on a different drive type the drive letter followed by a :) 6. type php 1.php. Now wait, it may take hours depending on how many files it has to read. This script will ONLY remove the infected files, it will NOT fix the issue. We have not figured out what is causing the issue. I have a feeling, since we are using access database to hold the info for ColdFusion, that there is somewhere in the database it is executing from, however we have no proof yet. Another theory is that it somehow implanted itself into one of the CF files on whatever site had it infected first. And every time someone goes to that site it re-runs the script to infect a script to infect other files with it. Step 3: Either uninstall ColdFusion or turn it off so it will no longer be ran in IIS. We decided to uninstall ColdFusion because we only have about 2 sites that still use it, and we have decided to convert them into PHP. After that I cannot help much, seens how we didn't actually find the issue, but rather made it unable to run any longer. If you have any questions or comments I will actively watch this thread, and I will assist in (only though this thread) removing corrupted files. -Nathan Bruer ~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321493 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
