Re: CF, SmarterMail, and DKIM
Yes, it does, however there appears to be a glitch in SmarterMail in terms of DKIM. If you get it right it will pass the DNS test internally, and even pass two other DKIM tests... http://www.dnswatch.info/dns/dnslookup?la=enhost=dkim._domainkey.webworksserver.comtype=TXTsubmit=Resolve http://protodave.com/tools/dkim-key-checker/ ... yet still not pass the Brandon Checketts email test, which I trust more, somehow. I finally had to go to Port25.com to generate a public and private key and manually paste them into the domainConfig.xml for the domain. I'm waiting for SmarterTools to fix the bug in SM before doing the final upgrade. I have 95 email domains to update and just can't bear to think about doing this manually for all of them. BTW, for anyone interested in reading about my saga, written slightly tongue in cheek, I posted this yesterday. It's a long read. http://montaguewebworks.com/index.cfm?p=n.61title=Ten+Days+of+Email+Hell This is an exhaustive review of what is required to pass muster with Gmail, etc. They've all seriously ramped up their email security over the past few weeks, I think. Thanks, Mik At 06:34 PM 3/5/2014, e...@ebwebwork.com wrote: Mik, I'm sure you've confirmed this already, but does the TXT Record value of the DKIM in SmarterMail match the value of the TXT Record Value you entered in the DNS record for your domain? I have found that sometimes it takes about a day for a DKIM TXT record to propagate -- dunno why. HTH. Eric *** Eric Bourland Internet Project Development Washington, DC www.ebwebwork.com kind | creative | professional Michael Muller Admin, MontagueMA.net Website ...a project of MontagueWebWorks.com (413) 320-5336 http://www.MontagueMA.net Eschew Obfuscation ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357913 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
Hi All, I was just about to post on a very similar problem when I saw this thread. We've just had this come up in the last couple of weeks and it happens sporadically. A few quick points:- the problem is that sessions restart with each request- the problem happens sporadically- the problem is solved temporarily by clearing browser cache - but it seems to come back- we use j2ee sessions / jsessionid- when it's happening, the jsessionid changes with every request (causing the sessionid to change)- the cfid and cftoken have been persistent - the problem seems to be with the jsessionid changing- we also dumped cookies and - here is the weird part - jsessionid in cookies persists. it does not change per request the way that it does. we use 9.0.1 and it is fully patched. We also use IIS 7.5. The biggest incongruity is that when the problem is happening, the jsessionid persists in cookies (and cookie scope) but not in the session scope. We thought that there was a tighter connection. We have not tried to adjust the session fixation settings. That may be our next move. We have also started to use trusted cache more extensively recently, but my sense is that is not involved here. Nick ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357914 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
I was just about to post on a very similar problem when I saw this thread. We've just had this come up in the last couple of weeks and it happens sporadically. A few quick points:- the problem is that sessions restart with each request- the problem happens sporadically- the problem is solved temporarily by clearing browser cache - but it seems to come back- we use j2ee sessions / jsessionid- when it's happening, the jsessionid changes with every request (causing the sessionid to change)- the cfid and cftoken have been persistent - the problem seems to be with the jsessionid changing- we also dumped cookies and - here is the weird part - jsessionid in cookies persists. it does not change per request the way that it does. we use 9.0.1 and it is fully patched. We also use IIS 7.5. The biggest incongruity is that when the problem is happening, the jsessionid persists in cookies (and cookie scope) but not in the session scope. We thought that there was a tighter connection. We have not tried to adjust the session fixation settings. That may be our next move. I'm confused. If you're using J2EE sessions, you shouldn't have cookies for CFID and CFTOKEN. We have also started to use trusted cache more extensively recently, but my sense is that is not involved here. Your sense is correct - all this does is prevent CF from checking to see if files need to be recompiled. Dave Watts, CTO, Fig Leaf Software 1-202-527-9569 http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357915 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
Hi Dave, I may be getting a bit over my head here, but here is an example of what our session dump looks like:sessionid: 84303380daf164aedda3456e2d1856513d2e urltoken: CFID=83197727CFTOKEN=9af68af80f73df3-F872B04C-CA42-C7AB-D8FB410E558AEEE5js essionid=84303380daf164aedda3456e2d1856513d2e Then, in cookies, we have separate values for, cfid, cftoken, and jsessionid. Does that make sense? Nick ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357916 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
I may be getting a bit over my head here, but here is an example of what our session dump looks like:sessionid: 84303380daf164aedda3456e2d1856513d2e urltoken: CFID=83197727CFTOKEN=9af68af80f73df3-F872B04C-CA42-C7AB-D8FB410E558AEEE5js essionid=84303380daf164aedda3456e2d1856513d2e Then, in cookies, we have separate values for, cfid, cftoken, and jsessionid. Does that make sense? No, I think you should only have the one cookie for jsessionid. I'm not sure why you have the other two. Either way, your server should only be using one or the other, but if you have multiple CF servers in the same domain, it's possible that one is using J2EE sessions while the other isn't. Dave Watts, CTO, Fig Leaf Software 1-202-527-9569 http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357917 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
I recently tried switching to j2ee sessions and noticed the same thing, that cfid and cftoken were still being created as well. So it isn't a unique case. On Tue, Mar 11, 2014 at 6:52 PM, Dave Watts dwa...@figleaf.com wrote: I may be getting a bit over my head here, but here is an example of what our session dump looks like:sessionid: 84303380daf164aedda3456e2d1856513d2e urltoken: CFID=83197727CFTOKEN=9af68af80f73df3-F872B04C-CA42-C7AB-D8FB410E558AEEE5js essionid=84303380daf164aedda3456e2d1856513d2e Then, in cookies, we have separate values for, cfid, cftoken, and jsessionid. Does that make sense? No, I think you should only have the one cookie for jsessionid. I'm not sure why you have the other two. Either way, your server should only be using one or the other, but if you have multiple CF servers in the same domain, it's possible that one is using J2EE sessions while the other isn't. Dave Watts, CTO, Fig Leaf Software 1-202-527-9569 http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357919 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
Thanks Dave, I'm not really the developer here but I think that we may have client variables enabled and my recollection was that client variables may require cfid and cftoken. It's been running pretty smoothly for a while until this very recent issue. Nick ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357918 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
I'm not really the developer here but I think that we may have client variables enabled and my recollection was that client variables may require cfid and cftoken. It's been running pretty smoothly for a while until this very recent issue. Yes, client variables do require CFID and CFTOKEN. Dave Watts, CTO, Fig Leaf Software 1-202-527-9569 http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357920 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
Thanks Russ, With client variables (we're phasing them out) in place as well as the more secure j2ee session variables, we seem to have all in use at the moment. But, I think that has been a pretty stable configuration for us for some time. Nick ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357921 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
One really interesting behavior here, which may point us in the direction of a better solution, is that when this problem with session.jsessionid happens (it resets ever page request), cookie.jsessionid remains persistent. I don't know enough about the linkage there to know if that is expected behavior in any scenario. I'll be researching this detail but if anyone else has expertise on the linkage between session.jsessionid and cookie.jsessionid, we're definitely interested. Thanks for this very helpful thread. Nick ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357922 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF session management suddenly not sticking ...
check that you do not have any cflocation tags which are using addtoken=yes (the default), this seems to be a fairly common cause of superfluous cfid and cftokens cookies being created as as per other thread, try completely removing the cookies or use incognito mode to see if it persists, and try explicitly setting a domain cookie. On Tue, Mar 11, 2014 at 8:47 PM, Nick Gleason n.glea...@citysoft.comwrote: One really interesting behavior here, which may point us in the direction of a better solution, is that when this problem with session.jsessionid happens (it resets ever page request), cookie.jsessionid remains persistent. I don't know enough about the linkage there to know if that is expected behavior in any scenario. I'll be researching this detail but if anyone else has expertise on the linkage between session.jsessionid and cookie.jsessionid, we're definitely interested. Thanks for this very helpful thread. Nick ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357923 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm