Fw: Virus alert
CH.Srinivas Babu Java Application Developer Mobile : 0060163698056 - Original Message - From: Farid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 2:51 PM Subject: Virus alert Pls take note Subject: WORST EVER VIRUS (CNN announced) WORST EVER VIRUS (CNN announced) PLEASE SEND THIS TO EVERYONE ON YOUR CONTACT LIST!! A new virus has just been discovered that has been classified by Microsoft as the most destructive ever! This virus was discovered yesterday afternoon by McAfee and no vaccine has yet been developed. This virus simply destroys Sector Zero from the hard disk, where vital information for its functioning are stored. This virus acts in the following manner: It sends itself automatically to all contacts on your list with the title A Virtual Card for You. As soon as the supposed virtual card is opened, the computer freezes so that the user has to reboot. When the ctrl+alt+del keys or the reset button are pressed, the virus destroys Sector Zero, thus permanently destroying the hard disk. Yesterday in just a few hours this virus caused panic in New York, according to news broadcast by CNN. This alert was received by an employee of Microsoft itself. So don't open any mails with subject: A Virtual Card for You. As soon as you get the mail, delete it. Please pass this mail to all of your friends. Forward this to everyone in your address book. I would rather receive this 25 times than not at all. Also: Intel announced that a new and very destructive virus was discovered recently. If you receive an email called An Internet Flower For You, do not open it. Delete it right away! This virus removes all dynamic link libraries (.dll files) from your computer. Your computer will not be able to boot up !!
HOWTO: Securing A Directory RE: password protecting folders
Lars, I had this HOWTO partially written for a client so I finished it off and put it up on our website. http://www.atlassian.com/article/securingdirectory.html Hope it helps, please let me know off list if you encounter any problems using it! Cheers, Mike Mike Cannon-Brookes :: [EMAIL PROTECTED] Atlassian :: http://www.atlassian.com Supporting YOUR J2EE World -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Lars Hegemann Sent: Wednesday, August 29, 2001 11:52 PM To: Orion-Interest Subject: password protecting folders dear all, which files do i need to modify and what modifications need to be made exactly to password-protect certain folders in the default-web-app folder? I am no coder, so a simple, straight-forward answer would be appreciated! thanks in advance for all and any replies! Lars ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/
ejbdoclet 1.2 orion 1.5.2
hello orion users, i try to use ejbdoclet 1.2 with orion. i successfully used ejbdoclet for my jboss-projects and i tried to port one of them to orion. two questions arouse: i did not find how i can create the full orion-ejb.xml deployment descriptors and orion did not like my ejbs blblaBean must not be declared abstract. any solutions for this or do i have to write the deployment descriptors by hand? tia, jan -- Jan Heise / Tel: +49-163-4803237 / E-Mail: [EMAIL PROTECTED]
Re: Fw: Virus alert
thanks From: srinivas [EMAIL PROTECTED] Reply-To: Orion-Interest [EMAIL PROTECTED] To: Orion-Interest [EMAIL PROTECTED] Subject: Fw: Virus alert Date: Thu, 30 Aug 2001 14:57:08 +0800 MIME-Version: 1.0 Received: from [195.58.126.196] by hotmail.com (3.2) with ESMTP id MHotMailBD57333A009E4136E812C33A7EC40B370; Thu, 30 Aug 2001 00:16:27 -0700 Received: from druid.evermind.net (IDENT:[EMAIL PROTECTED] [195.58.126.196])by druid.evermind.net (8.9.3/8.9.3) with SMTP id JAA15005;Thu, 30 Aug 2001 09:05:25 -0100 Received: from mailsvr.kubsistem.com ([202.190.118.177])by paladin.evermind.net (8.9.3/8.9.3) with ESMTP id JAA17673for [EMAIL PROTECTED]; Thu, 30 Aug 2001 09:49:41 -0400 Received: from SRINIVAS ([192.168.10.95]) by mailsvr.kubsistem.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13)id QD1AJC9V; Thu, 30 Aug 2001 14:58:22 +0800 From [EMAIL PROTECTED] Thu, 30 Aug 2001 00:17:37 -0700 Message-ID: [EMAIL PROTECTED] X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Orion ListServer Disposition-Notification-To: srinivas [EMAIL PROTECTED] X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: [EMAIL PROTECTED] CH.Srinivas Babu Java Application Developer Mobile : 0060163698056 - Original Message - From: Farid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 2:51 PM Subject: Virus alert Pls take note Subject: WORST EVER VIRUS (CNN announced) WORST EVER VIRUS (CNN announced) PLEASE SEND THIS TO EVERYONE ON YOUR CONTACT LIST!! A new virus has just been discovered that has been classified by Microsoft as the most destructive ever! This virus was discovered yesterday afternoon by McAfee and no vaccine has yet been developed. This virus simply destroys Sector Zero from the hard disk, where vital information for its functioning are stored. This virus acts in the following manner: It sends itself automatically to all contacts on your list with the title A Virtual Card for You. As soon as the supposed virtual card is opened, the computer freezes so that the user has to reboot. When the ctrl+alt+del keys or the reset button are pressed, the virus destroys Sector Zero, thus permanently destroying the hard disk. Yesterday in just a few hours this virus caused panic in New York, according to news broadcast by CNN. This alert was received by an employee of Microsoft itself. So don't open any mails with subject: A Virtual Card for You. As soon as you get the mail, delete it. Please pass this mail to all of your friends. Forward this to everyone in your address book. I would rather receive this 25 times than not at all. Also: Intel announced that a new and very destructive virus was discovered recently. If you receive an email called An Internet Flower For You, do not open it. Delete it right away! This virus removes all dynamic link libraries (.dll files) from your computer. Your computer will not be able to boot up !! _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
Auto-reply: Fw: Virus alert
I am out of the office from 08/30/01 till 08/3101. In my absence, if you need technical assistance regarding JAZN (Oracle9iAS JAAS), please contact Rachel Chan (pichan). For emergencies and other concerns, please contact Naresh Kumar (nakumar). Thanks, Ray CH.Srinivas Babu Java Application Developer Mobile : 0060163698056 - Original Message - From: Farid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 2:51 PM Subject: Virus alert Pls take note Subject: WORST EVER VIRUS (CNN announced) WORST EVER VIRUS (CNN announced) PLEASE SEND THIS TO EVERYONE ON YOUR CONTACT LIST!! A new virus has just been discovered that has been classified by Microsoft as the most destructive ever! This virus was discovered yesterday afternoon by McAfee and no vaccine has yet been developed. This virus simply destroys Sector Zero from the hard disk, where vital information for its functioning are stored. This virus acts in the following manner: It sends itself automatically to all contacts on your list with the title A Virtual Card for You. As soon as the supposed virtual card is opened, the computer freezes so that the user has to reboot. When the ctrl+alt+del keys or the reset button are pressed, the virus destroys Sector Zero, thus permanently destroying the hard disk. Yesterday in just a few hours this virus caused panic in New York, according to news broadcast by CNN. This alert was received by an employee of Microsoft itself. So don't open any mails with subject: A Virtual Card for You. As soon as you get the mail, delete it. Please pass this mail to all of your friends. Forward this to everyone in your address book. I would rather receive this 25 times than not at all. Also: Intel announced that a new and very destructive virus was discovered recently. If you receive an email called An Internet Flower For You, do not open it. Delete it right away! This virus removes all dynamic link libraries (.dll files) from your computer. Your computer will not be able to boot up !!
Re: Orion don't read my web.xml ...
Thanks this solution works for the session config but i have the probleme with the welcome-file-list have you an other idea ??? Remy Aaron Tavistock wrote: As per the DTD and the J2EE specs the order in which tags appear in the web.xml file is important. In this particullar case the session-config tag must occur after all servlet declarations. In fact your welcome-file-list also should accour after the servlet tags (and after the session config) as well. -Original Message- From: remy.menetrieux [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 28, 2001 5:56 AM To: Orion-Interest Subject: Orion don't read my web.xml ... Hello, I work with oc4j(orion ) deliver with Oracle 9ias. I have deployed a web-app but I lost my session every minutes. I have a web.xml wich contains this : web-app session-config session-timeout120/session-timeout /session-config welcome-file-list welcome-fileindex.html/welcome-file /welcome-file-list servlet /web-app but when i log in my homepage http://localhost/myApp/ i obtain de directory browsing if directory-browsing=allow in my orion-web.xml else i have an error 403 (not permitted) but my servlets are good deployed Have you idea why orion reads servlet and don't read session config?? Thanks in advance
RE: Virus alert
This is (ironically) an email letter virus. (ie. the virus is that people pass the email on) :) CH.Srinivas Babu Java Application Developer Mobile : 0060163698056 - Original Message - From: Farid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 2:51 PM Subject: Virus alert Pls take note Subject: WORST EVER VIRUS (CNN announced) WORST EVER VIRUS (CNN announced) PLEASE SEND THIS TO EVERYONE ON YOUR CONTACT LIST!! A new virus has just been discovered that has been classified by Microsoft as the most destructive ever! This virus was discovered yesterday afternoon by McAfee and no vaccine has yet been developed. This virus simply destroys Sector Zero from the hard disk, where vital information for its functioning are stored. This virus acts in the following manner: It sends itself automatically to all contacts on your list with the title A Virtual Card for You. As soon as the supposed virtual card is opened, the computer freezes so that the user has to reboot. When the ctrl+alt+del keys or the reset button are pressed, the virus destroys Sector Zero, thus permanently destroying the hard disk. Yesterday in just a few hours this virus caused panic in New York, according to news broadcast by CNN. This alert was received by an employee of Microsoft itself. So don't open any mails with subject: A Virtual Card for You. As soon as you get the mail, delete it. Please pass this mail to all of your friends. Forward this to everyone in your address book. I would rather receive this 25 times than not at all. Also: Intel announced that a new and very destructive virus was discovered recently. If you receive an email called An Internet Flower For You, do not open it. Delete it right away! This virus removes all dynamic link libraries (.dll files) from your computer. Your computer will not be able to boot up !!
Invalid username/password
Hi all,
I'm trying to write
an applet that connects to an EJB in Orion. With the following
code:
public void
init(){
try {
Hashtable env = new
Hashtable();
// Get the
context
env.put(javax.naming.Context.INITIAL_CONTEXT_FACTORY,
"com.evermind.server.rmi.RMIInitialContextFactory");
env.put(javax.naming.Context.PROVIDER_URL, "ormi://myserver/myapp");
env.put(javax.naming.Context.SECURITY_PRINCIPAL,
"admin");
env.put(javax.naming.Context.SECURITY_CREDENTIALS,
"123");
Context context = new
InitialContext(env); //
Now look up the
bean
Object boundObject = context.lookup("java:comp/env/ejb/mybean");
I receive the
following error:
Opening http://myserver/myapp/com/sun/jndi/url/java/javaURLContextFactory.class
with cookie "JSESSIONID=IBPKBCADNFEM".
java.lang.SecurityException: Invalid username/password
formyapp ()
at
com.evermind._cd._mu(Unknown Source)
at
com.evermind._cd._mu(Unknown Source)
at
com.evermind._cd._np(Unknown Source)
at
com.evermind._ce._np(Unknown Source)
at
com.evermind.server.rmi.RMIContext.lookup(Unknown Source)
at
javax.naming.InitialContext.lookup(Unknown Source)
at
EjbAppletRMI.init(EjbAppletRMI.java:53)
at
sun.applet.AppletPanel.run(Unknown Source)
at
java.lang.Thread.run(Unknown Source)
Can anybody
tellme what's the problem?
Username and
password are correct, so why the Orion server couldn't validate
it?
Thanks in advance.Antonio
Re: HOWTO: Securing A Directory
Mike, Thank you for finishing this HOWTO. I immediately put it to work, but when I try to log in using the username and password I specified in the principals.xml, I keep on getting prompted for a username and password over and over again (up to 3 times, actually, after that a 401 Unauthorised error message appears). It seems therefor as if the password I specified is not accepted. Hoping that you could help me out, I'm hereby sending my 3 modified files + the 3 original files (web.xml, orion-web.xml, and principals.xml). The url to the resource I'm trying to secure is: http://www.webenquete.be/test/index.htm All of the web-pages are placed in the Orion/default-web-app folder. Maybe another issue is relevant here: you wrote in the howto that Orion would generate a tagpair in the orion-web.xml file. However, this tagpair was not generated automatically, I put it in manually. Maybe this is an indication that I'm going wrong somewhere along the way? Maybe you also need to know that we use Orion as a server for SPSS Data Entry Enterprise Server (Orion gets installed automatically if SPSS Data Entry Web Server is installed, and it runs immediately out-of-the-box, without any additional configuration), a program for conducting surveys on the internet. Kind regards, Lars On Thu, 30 Aug 2001 17:37:31 +1000, Orion-Interest wrote: Lars, I had this HOWTO partially written for a client so I finished it off and put it up on our website. http://www.atlassian.com/article/securingdirectory.html Hope it helps, please let me know off list if you encounter any problems using it! Cheers, Mike Mike Cannon-Brookes :: [EMAIL PROTECTED] Atlassian :: http://www.atlassian.com Supporting YOUR J2EE World -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Lars Hegemann Sent: Wednesday, August 29, 2001 11:52 PM To: Orion-Interest Subject: password protecting folders dear all, which files do i need to modify and what modifications need to be made exactly to password-protect certain folders in the default-web-app folder? I am no coder, so a simple, straight-forward answer would be appreciated! thanks in advance for all and any replies! Lars ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ ___ http://inbox.excite.com securedirorion.zip
Re: Fw: Virus alert
STOP THIS PLEASE. Before you go spamming people (especially mailing lists!) with bogus virus alerts, do some research, ok? Microsoft and Intel do NOT make virus announcements. If you can't provide a link to an authoritative source for the virus information, then DO NOT SEND IT. You need to think before you act so hastily. They take more time and cost more money than most real viruses do. cheers, Chris - Original Message - From: Sarathy Mattaparti [EMAIL PROTECTED] To: Orion-Interest [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 4:29 AM Subject: Re: Fw: Virus alert thanks From: srinivas [EMAIL PROTECTED] Reply-To: Orion-Interest [EMAIL PROTECTED] To: Orion-Interest [EMAIL PROTECTED] Subject: Fw: Virus alert Date: Thu, 30 Aug 2001 14:57:08 +0800 MIME-Version: 1.0 Received: from [195.58.126.196] by hotmail.com (3.2) with ESMTP id MHotMailBD57333A009E4136E812C33A7EC40B370; Thu, 30 Aug 2001 00:16:27 -0700 Received: from druid.evermind.net (IDENT:[EMAIL PROTECTED] [195.58.126.196])by druid.evermind.net (8.9.3/8.9.3) with SMTP id JAA15005;Thu, 30 Aug 2001 09:05:25 -0100 Received: from mailsvr.kubsistem.com ([202.190.118.177])by paladin.evermind.net (8.9.3/8.9.3) with ESMTP id JAA17673for [EMAIL PROTECTED]; Thu, 30 Aug 2001 09:49:41 -0400 Received: from SRINIVAS ([192.168.10.95]) by mailsvr.kubsistem.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13)id QD1AJC9V; Thu, 30 Aug 2001 14:58:22 +0800 From [EMAIL PROTECTED] Thu, 30 Aug 2001 00:17:37 -0700 Message-ID: [EMAIL PROTECTED] X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Orion ListServer Disposition-Notification-To: srinivas [EMAIL PROTECTED] X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: [EMAIL PROTECTED] CH.Srinivas Babu Java Application Developer Mobile : 0060163698056 - Original Message - From: Farid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 2:51 PM Subject: Virus alert Pls take note Subject: WORST EVER VIRUS (CNN announced) WORST EVER VIRUS (CNN announced) PLEASE SEND THIS TO EVERYONE ON YOUR CONTACT LIST!! A new virus has just been discovered that has been classified by Microsoft as the most destructive ever! This virus was discovered yesterday afternoon by McAfee and no vaccine has yet been developed. This virus simply destroys Sector Zero from the hard disk, where vital information for its functioning are stored. This virus acts in the following manner: It sends itself automatically to all contacts on your list with the title A Virtual Card for You. As soon as the supposed virtual card is opened, the computer freezes so that the user has to reboot. When the ctrl+alt+del keys or the reset button are pressed, the virus destroys Sector Zero, thus permanently destroying the hard disk. Yesterday in just a few hours this virus caused panic in New York, according to news broadcast by CNN. This alert was received by an employee of Microsoft itself. So don't open any mails with subject: A Virtual Card for You. As soon as you get the mail, delete it. Please pass this mail to all of your friends. Forward this to everyone in your address book. I would rather receive this 25 times than not at all. Also: Intel announced that a new and very destructive virus was discovered recently. If you receive an email called An Internet Flower For You, do not open it. Delete it right away! This virus removes all dynamic link libraries (.dll files) from your computer. Your computer will not be able to boot up !! _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
Re: Fw: Virus alert
http://vil.mcafee.com/dispVirus.asp?virus_k=98893; Sound familiar? Always check the net. Better yet, never send out virus warnings. Joe --- srinivas [EMAIL PROTECTED] wrote: CH.Srinivas Babu Java Application Developer Mobile : 0060163698056 - Original Message - From: Farid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 2:51 PM Subject: Virus alert Pls take note Subject: WORST EVER VIRUS (CNN announced) WORST EVER VIRUS (CNN announced) PLEASE SEND THIS TO EVERYONE ON YOUR CONTACT LIST!! A new virus has just been discovered that has been classified by Microsoft as the most destructive ever! This virus was discovered yesterday afternoon by McAfee and no vaccine has yet been developed. This virus simply destroys Sector Zero from the hard disk, where vital information for its functioning are stored. This virus acts in the following manner: It sends itself automatically to all contacts on your list with the title A Virtual Card for You. As soon as the supposed virtual card is opened, the computer freezes so that the user has to reboot. When the ctrl+alt+del keys or the reset button are pressed, the virus destroys Sector Zero, thus permanently destroying the hard disk. Yesterday in just a few hours this virus caused panic in New York, according to news broadcast by CNN. This alert was received by an employee of Microsoft itself. So don't open any mails with subject: A Virtual Card for You. As soon as you get the mail, delete it. Please pass this mail to all of your friends. Forward this to everyone in your address book. I would rather receive this 25 times than not at all. Also: Intel announced that a new and very destructive virus was discovered recently. If you receive an email called An Internet Flower For You, do not open it. Delete it right away! This virus removes all dynamic link libraries (.dll files) from your computer. Your computer will not be able to boot up !! __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger http://im.yahoo.com
Re: Invalid username/password
You have this line in principals.xml ?
user username="admin" password="123"
deactivated="false"
and in your applet try :
env.put(javax.naming.Context.INITIAL_CONTEXT_FACTORY,
"com.evermind.server.ApplicationClientInitialContextFactory");
- Original Message -
From:
Antonio
Vazquez
To: Orion-Interest
Sent: Thursday, August 30, 2001 1:02
PM
Subject: Invalid username/password
Hi all,
I'm trying to
write an applet that connects to an EJB in Orion. With the following
code:
public void
init(){
try {
Hashtable env = new
Hashtable();
// Get the
context
env.put(javax.naming.Context.INITIAL_CONTEXT_FACTORY,
"com.evermind.server.rmi.RMIInitialContextFactory");
env.put(javax.naming.Context.PROVIDER_URL, "ormi://myserver/myapp");
env.put(javax.naming.Context.SECURITY_PRINCIPAL,
"admin");
env.put(javax.naming.Context.SECURITY_CREDENTIALS,
"123");
Context context = new
InitialContext(env);
// Now look up the
bean
Object boundObject = context.lookup("java:comp/env/ejb/mybean");
I receive the
following error:
Opening http://myserver/myapp/com/sun/jndi/url/java/javaURLContextFactory.class
with cookie "JSESSIONID=IBPKBCADNFEM".
java.lang.SecurityException: Invalid
username/password formyapp ()
at
com.evermind._cd._mu(Unknown Source)
at
com.evermind._cd._mu(Unknown Source)
at
com.evermind._cd._np(Unknown Source)
at
com.evermind._ce._np(Unknown Source)
at
com.evermind.server.rmi.RMIContext.lookup(Unknown Source)
at
javax.naming.InitialContext.lookup(Unknown Source)
at
EjbAppletRMI.init(EjbAppletRMI.java:53)
at
sun.applet.AppletPanel.run(Unknown Source)
at
java.lang.Thread.run(Unknown Source)
Can anybody
tellme what's the problem?
Username and
password are correct, so why the Orion server couldn't validate
it?
Thanks in advance.Antonio
Limiting no of Entity Instances in the container
Hi! What has to be done in order to limit the maximal number of instantiated or pooled entity bean instances in the EJB container? We tried following settings in orion-ejb.jar: entity-deployment name="Tpersonen" location="Tpersonen" wrapper="TpersonenHome_EntityHomeWrapper33" max-tx-retries="3" max-instances="30" table="Tpersonen" data-source="jdbc/FQSDDataSource" exclusive-write-access="false" instance-cache-timeout="30" pool-cache-timeout="30" fields, finder methods, etc. / entity-deployment Then we use a test client to execute findAll() method on TpersonenHome. As this method invocation touches all bean instances in a single transaction, all instances are loaded (approximately 500 instances). So far so good. But after the transaction is committed (Number of transactions in progress is 0), we still have all instances loaded by the container, and this instances stay loaded until the server shutdown, even after several hours of inactivity. We are able to reset the number of instances in cache only by pressing the "flush cache" button in the console. Another strange thing is that only approximately a third of the memory that was used when all instances are instantiated or pooled is released after the "flush cache" button is pressed. So even if one presses the "flush cache" button from time to time, we will run out of the memory sooner or later. Any help would be greatly appreciated, Cheers Ivo P.S.: We are using Orion 1.5.2. on W2K.
Re: Fw: Virus alert
Greetings, all. I Just checked Urban Myths Legends, http://www.urbanmyths.com, http://www.urbanlegends.com. This is a hoax that has been around for a while. Details available using the websites search function, keyphrase Flower for you. -Steve srinivas wrote: CH.Srinivas Babu Java Application Developer Mobile : 0060163698056 - Original Message - From: Farid [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 30, 2001 2:51 PM Subject: Virus alert Pls take note Subject: WORST EVER VIRUS (CNN announced) WORST EVER VIRUS (CNN announced) PLEASE SEND THIS TO EVERYONE ON YOUR CONTACT LIST!! A new virus has just been discovered that has been classified by Microsoft as the most destructive ever! This virus was discovered yesterday afternoon by McAfee and no vaccine has yet been developed. This virus simply destroys Sector Zero from the hard disk, where vital information for its functioning are stored. This virus acts in the following manner: It sends itself automatically to all contacts on your list with the title A Virtual Card for You. As soon as the supposed virtual card is opened, the computer freezes so that the user has to reboot. When the ctrl+alt+del keys or the reset button are pressed, the virus destroys Sector Zero, thus permanently destroying the hard disk. Yesterday in just a few hours this virus caused panic in New York, according to news broadcast by CNN. This alert was received by an employee of Microsoft itself. So don't open any mails with subject: A Virtual Card for You. As soon as you get the mail, delete it. Please pass this mail to all of your friends. Forward this to everyone in your address book. I would rather receive this 25 times than not at all. Also: Intel announced that a new and very destructive virus was discovered recently. If you receive an email called An Internet Flower For You, do not open it. Delete it right away! This virus removes all dynamic link libraries (.dll files) from your computer. Your computer will not be able to boot up !! -- Stephen Davidson Java Consultant Delphi Consultants, LLC http://www.delphis.com Phone: 214-696-6224 x208
RE: HOWTO: Securing A Directory
Lars, The only error I can see off hand (I haven't tested, just glanced over the files) is that your orion-web.xml file has two tag pairs in it. security-role-mapping name=deelnemerrol /security-role-mapping security-role-mapping name=deelnemerrol group name=deelnemersgroep / /security-role-mapping Try deleting the first one, so it's just: security-role-mapping name=deelnemerrol group name=deelnemersgroep / /security-role-mapping Cheers, Mike Mike Cannon-Brookes :: [EMAIL PROTECTED] Atlassian :: http://www.atlassian.com Supporting YOUR J2EE World -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Lars Hegemann Sent: Thursday, August 30, 2001 10:16 PM To: Orion-Interest Subject: Re: HOWTO: Securing A Directory Mike, Thank you for finishing this HOWTO. I immediately put it to work, but when I try to log in using the username and password I specified in the principals.xml, I keep on getting prompted for a username and password over and over again (up to 3 times, actually, after that a 401 Unauthorised error message appears). It seems therefor as if the password I specified is not accepted. Hoping that you could help me out, I'm hereby sending my 3 modified files + the 3 original files (web.xml, orion-web.xml, and principals.xml). The url to the resource I'm trying to secure is: http://www.webenquete.be/test/index.htm All of the web-pages are placed in the Orion/default-web-app folder. Maybe another issue is relevant here: you wrote in the howto that Orion would generate a tagpair in the orion-web.xml file. However, this tagpair was not generated automatically, I put it in manually. Maybe this is an indication that I'm going wrong somewhere along the way? Maybe you also need to know that we use Orion as a server for SPSS Data Entry Enterprise Server (Orion gets installed automatically if SPSS Data Entry Web Server is installed, and it runs immediately out-of-the-box, without any additional configuration), a program for conducting surveys on the internet. Kind regards, Lars On Thu, 30 Aug 2001 17:37:31 +1000, Orion-Interest wrote: Lars, I had this HOWTO partially written for a client so I finished it off and put it up on our website. http://www.atlassian.com/article/securingdirectory.html Hope it helps, please let me know off list if you encounter any problems using it! Cheers, Mike Mike Cannon-Brookes :: [EMAIL PROTECTED] Atlassian :: http://www.atlassian.com Supporting YOUR J2EE World -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Lars Hegemann Sent: Wednesday, August 29, 2001 11:52 PM To: Orion-Interest Subject: password protecting folders dear all, which files do i need to modify and what modifications need to be made exactly to password-protect certain folders in the default-web-app folder? I am no coder, so a simple, straight-forward answer would be appreciated! thanks in advance for all and any replies! Lars ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ ___ http://inbox.excite.com
RE: Orion and MS Access for Demonstration
A better alternative is to use Cloudscape instead of Access. See Orion's support page for setting this up or search the maillist for cloudscape. It is simple to use and download is free for development. http://www.cloudscape.com/ Also, you will be able to use a type 4 JDBC driver which will be much faster than your jdbc-odbc bridge. -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Bernard BriggsSent: Wednesday, August 29, 2001 2:11 PMTo: Orion-InterestSubject: Orion and MS Access for Demonstration I've seen two problems that exist with using Orion/EJBs with MS Access. We're trying to use Access for a small pilot as it is easy to move around. 1) MS Access orJDBC-ODBCbridge doesn't support the primitive type long 2) MS Access or JDBC-ODBC bridge has a low limit on the size of it's "records" For the lack of long support, I map longs to ints. For the size issue, I map String types to char(128) instead of the default char(256) My question: Does anyone know of a more "elegant" way to use Access and get around these limitations? I'd rather not have to tiptoe around these issues in theway described here if there is a better alternative.
JavaMail/Orion
Greetings. How do I start the JavaMail Service in Orion. It does not seem to start or load automatically. Thanks, Steve
Having problem when installing more than 2 applications and both has ejbs as part of it.
Hi, I am facing problem when I install 2 applications in orion server. It allows me both installed seperately I mean just install one then test the application and uninstall and install other one. But when I have 2 application having ejbs together it gives me following error: javax.naming.NamingException: Error reading application-client descriptor: Error looking up EJBHome: Lookup error: java.io.IOException: Server protocol was not ORMI, if uncertain about the port your server uses for ORMI then use the default , 23791; nested exception is: java.io.IOException: Server protocol was not ORMI, if uncertain about th e port your server uses for ORMI then use the default, 23791 at com.evermind.server.ApplicationClientInitialContextFactory.getInitial Context(ApplicationClientInitialContextFactory.java:184) at javax.naming.spi.NamingManager.getInitialContext(Unknown Source) at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source) at javax.naming.InitialContext.init(Unknown Source) at javax.naming.InitialContext.init(Unknown Source) at __jspPage3_testMSG_jsp._jspService(__jspPage3_testMSG_jsp.java:52) at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:5 4) at com.evermind.server.http.HttpApplication.serviceJSP(HttpApplication.j ava:5458) at com.evermind.server.http.JSPServlet.service(JSPServlet.java:31) at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletReque stDispatcher.java:501) at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(Ser vletRequestDispatcher.java:170) at com.evermind.server.http.HttpRequestHandler.processRequest(HttpReques tHandler.java:576) at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.ja va:189) at com.evermind.util.ThreadPoolThread.run(ThreadPoolThread.java:62) Any help will be appriciated Ritesh.
Re: Limiting no of Entity Instances in the container
Hi Gurus I want to configure two OC4J instances in one node for load balancing . I have a 4CPU E420 solaris box . With one OC4J I can support only 50 users . When I am simulating 100 users I am getting the following error messages . So I think mulitple OC4J instances will help . Thanks Biswajit Errors on OC4J Console java.lang.NullPointerException at com.evermind.server.jms.JMSServer.removeClient(JMSServer.java:712) at com.evermind.server.jms.JMSRequestHandler.run(Compiled Code) at com.evermind.util.ThreadPoolThread.run(Compiled Code) Failed to bind Launcher to port 9127 Errors in global-application.log * 12:26 PM defaultWebApp: Servlet error javax.servlet.ServletException: No HTTP headers received from runform at java.lang.Throwable.fillInStackTrace(Native Method) at java.lang.Throwable.fillInStackTrace(Compiled Code) at java.lang.Throwable.init(Compiled Code) at java.lang.Exception.init(Compiled Code) at javax.servlet.ServletException.init(ServletException.java:16) at oracle.forms.servlet.ListenerServlet.forwardResponseFromRunform(Compi led Code) at oracle.forms.servlet.ListenerServlet.doPost(Compiled Code) at javax.servlet.http.HttpServlet.service(Compiled Code) at javax.servlet.http.HttpServlet.service(Compiled Code) at javax.servlet.http.HttpServlet.service(Compiled Code) at com.evermind[Oracle9iAS (1.0.2.2) Containers for J2EE].server.http.Se rvletRequestDispatcher.invoke(Compiled Code) at com.evermind[Oracle9iAS (1.0.2.2) Containers for J2EE].server.http.Se rvletRequestDispatcher.forwardInternal(Compiled Code) at com.evermind[Oracle9iAS (1.0.2.2) Containers for J2EE].server.http.Ht tpRequestHandler.processRequest(Compiled Code) at com.evermind[Oracle9iAS (1.0.2.2) Containers for J2EE].server.http.Ht tpRequestHandler.run(Compiled Code) at com.evermind[Oracle9iAS (1.0.2.2) Containers for J2EE].util.ThreadPoo lThread.run(Compiled Code) *** Get your FREE download of MSN Explorer at http://explorer.msn.com
RE: JavaMail/Orion
Title: RE: JavaMail/Orion You have to write the following in either application.xml(if you want for all applicatons) or myapplication.xml(Only for this application). mail-session location=mail/MailSession smtp-host=hermes.voquette.com property name=mail.transport.protocol value=smtp/ property name=mail.smtp.from value=[EMAIL PROTECTED]/ /mail-session This will add mail session to JNDI context. If you want to refer this mailsession from your ejb/servlets you have to write the resource-ref in ejb-jar.xml/web.xml correspondingly. resource-ref descriptionMailing resource the EJB requires/description res-ref-namemail/MailSession/res-ref-name res-typejavax.mail.Session/res-type res-authContainer/res-auth /resource-ref In your program get the mail session by using lookup Context ctx = new InitialContext(); javax.mail.Session session = (javax.mail.Session)context.lookup(mail/MailSession); Kesav Kumar Kolla Voquette Inc 650 356 3740(W) 510 889 6840(R) VoquetteDelivering Sound Information -Original Message- From: Stephen Davidson [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 30, 2001 9:08 AM To: Orion-Interest Subject: JavaMail/Orion Greetings. How do I start the JavaMail Service in Orion. It does not seem to start or load automatically. Thanks, Steve
RE: ormi tunnel via http
gday all -
sorry, I don't want to clutter the Orion mailing list with Oracle stuff,
but I thought I'd shed some light on this from the OC4J perspective.
There was a known bug with HTTP/ORMI in OC4J 1022 which we've now fixed.
The fix is contained in the OC4J 10221 release which was recently posted
on http://otn.oracle.com. From the descriptions below, it sounds like
it's the same thing that's afflicting Orion 1.5.2
cheers!
-steve-
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
Olekjadr Yaremenko
Sent: Thursday, August 30, 2001 10:37 AM
To: Orion-Interest
Subject: Re: ormi tunnel via http
Hi Paul,
I just tested my code. It works with Orion v.1.4.5 and don't
with later version (oc4j). I didn't tested with v.1.5.2 but I
suspect it has broken/changed http tunneling implementation.
All you done is correct. I tested with
com.evermind.server.ApplicationInitialContextFactory as well
as with com.evermind.server.rmi.RMIInitialContextFactory as
INITIAL_CONTEXT_FACTORY value. Result is the same. May be
someone here have other experience with this. Interesting to see.
here is snipplet form the client code:
...
try {
Hashtable env = new Hashtable();
//
env.put(Context.INITIAL_CONTEXT_FACTORY,com.evermind.server.A
pplicationClientInitialContextFactory);
env.put(Context.INITIAL_CONTEXT_FACTORY,com.evermind.server.r
mi.RMIInitialContextFactory);
env.put(Context.PROVIDER_URL,provider);
env.put(Context.SECURITY_PRINCIPAL,admin);
env.put(Context.SECURITY_CREDENTIALS,admin);
InitialContext ctx = new InitialContext(env);
Object o = ctx.lookup(ejb/NumGen);
NumGenHome beanHome =
(NumGenHome)PortableRemoteObject.narrow(o,NumGenHome.class);
srv = beanHome.create();
} catch (NamingException ex) {
...
Alex
Paul T. Little wrote:
Hi Alex and thanks for your suggestions. However still no
joy getting
rmi-tunnelling to work on my box.
Try just using your http host:port as Context.PROVIDER_URL value.
Perhaps I misunderstand: Trying
ctxParm.put(Context.PROVIDER_URL,http://127.0.0.1:2000/odin;) ;
results in javax.naming.NamingException: Invalid provider URL.
Your application's bean name for ctx.lookup() should look like
java:comp/env/ejb/YourBeanName.
You need to have META-INF/application-client.xml somewhere on your
classpath also.
When I am using ormi://127.0.0.1:2002/odin my junit tests run
correctly with or without META-INF/application-client.xml.
A post by Nate Cole says ''hint: use a new Hashtable instance to
provide to the InitialContext() constructor, *not* system
properties.
When I passed in System.getProperties(), the setting wouldn't get
passed in. Using this approach, I didn't need
application-client.xml
at all
Paul T. Little wrote:
Hi, I'm not able to get rmi-http tunnelling to work and would
appreciate some help. Hopefully it's my own silly mistake.
The server's http host/port is 127.0.0.1:2000. The rmi
host/port is
127.0.0.1:2002.
The application name is odin.
I'm using orion1.5.2 on windows NT 4 SP6 with Jdk 1.3.
The regular method works every time: ormi://127.0.0.1:2002/odin
The tunnel method is: http:ormi://127.0.0.1:2000/
I assume but can't verify that the tunnelling URL should use the
http port and not the rmi port. I've tried it both ways
and neither
works.
I've determined that /servlet/rmi is getting called but
no data is
sent
back.
I spied on the connection and my client sent this:
POST /servlet/rmi HTTP/1.0
Content-Length: 99
The client class waits forever (well, at least 1.5 hours while I
worked
out)
in vain for a response.
After I stopped the server the client reports this
exception, which
is consistent with not getting any data back from the servlet:
[junit] javax.naming.NamingException: Lookup error:
java.io.IOException: Did not receive valiTTP headers;
nested exception
is:
[junit] javax.naming.NamingException: Lookup error:
java.io.IOException: Did not receive valiTTP headers;
nested exception
is:
[junit] java.io.IOException: Did not receive
valid HTTP headers
[junit] java.io.IOException: Did not receive
valid HTTP headers
[junit] at
com.evermind.server.rmi.RMIContext.lookup(Unknown
Source)
[junit] at
javax.naming.InitialContext.lookup(InitialContext.java:350)
I also tried the following html post just to see what
would happen:
html
head
titleTest RMI-HTTP Tunnel/title
/head
body bgcolor=#FF
form method=POST action=/servlet/rmi
input type=submit name=submit value=Test
/form
/body
/html
The response at least confirms that the servlet mapping is set up:
Invalid protocol
Counter/Postgresql problems?
*This message was transferred with a trial version of CommuniGate(tm) Pro* Hi I am having some troubles with the built in EJB counter... first of all it seems to autogenerate id's that are very large numbers, eg, greater than 1 billion..Why? This wastes a lot of address space and leads to...: 2) When I am using it with postgresql, and then with the news table, when I try to edit/delete rows using pgadmin, it fails, and I assume this is due to the fact the ID is too large and consuing the program...Anyone seen this? How can I work around it? Also, I never see the counter making a table for it to persist its counter value in...where does it do that? Cheers,Jordan
RE: j_security_check
I think there is a better way to do this
If you have username/password information and want to login your users, use
a servlet...like /login.
Then use the normal roleManager method to login your user programatically.
If the login fails, you can return nicely to the external url from the
/login servlet, if it is successful, you forward to the protect resource.
So your pseudo-j2ee login form would be on another server or application,
and the action would be:
form action=http(s)://mydomain.com/login method=post
password/username stuff
input type=internal name=returnUrl
value=http://myotherdomain.com/failurepage;
/form
Your /login servlet would login your user like this:
RoleManager roleManager;
try {
roleManager = (RoleManager)context.lookup(java:comp/RoleManager);
} catch (NamingException e) { }
if(roleManager != null){
roleManager.login(request.getParameter(username),request.getParameter(pas
sword));
// now you can get the principal to check if they are in role
Principal principal =
roleManager.getPrincipal(request.getParameter(username));
if(isPrincipalInRole(principal,my-role)){
// now forward somewhere in the application
getServletContext().getRequestDispatcher(/somesecretplace).forward
(request,response);
} else {
// go to your failure url
}
} else { //do something if we can't find a roleManager }
This will work.
Regards,
the elephantwalker
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Trujillo, Kris
Sent: Thursday, August 30, 2001 4:15 PM
To: Orion-Interest
Subject: j_security_check
Does anyone know if it is possible to post to j_security_check from an
external form. What I mean by external is a form that isn't the form
referenced in the web.xml as form to show the user when they're not logged
in. I am hoping be able to use a form on another server that will post to
the oc4j server for authentication and session establishment on the oc4j
server. Anybody attempted this??
Orion server Configuration for mysql access
Hi, Could anyone tell me how to configure the orion server to support acccess to mysql DBMS Thanks in advance, Krishna __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger http://im.yahoo.com
RE: j_security_check
I have tried this, and was able to make it work, although slightly differently. I had a secured URL (a servlet in my case), to which I posted a form that contained the j_username and j_password fields, along with some additional application specific data. If the user specified the correct info, the session was immediately authenticated, and my normal login form was never displayed. If the user entered invalid information, he would get my configured login form. I think it may have even worked when submitting to an unsecured URL, which was convenient, because the user could log in before it was required, and gain additional functionality. This was in the Orion 1.3 timeframe, almost a year ago so my memory is a little fuzzy, but give it a try. Andre -Original Message- From: Aaron Tavistock [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 30, 2001 7:21 PM To: Orion-Interest Subject: RE: j_security_check I've not tried this but I doubt it will work. 1. Since this is dubbed 'Container based authentication' in the J2EE spec, and you're posting from outside the container, I would guess it won't work. 2. Since you are not authenticated when you are trying to post, the container should attempt to do the atuhentication (e.g. after you post you will be prompted for authentication). 3. The 'j_security_check' form name is essentially an internally recognized keyword, not a true form. 4. If you could post from another server it would make me (and probably alot of other security concious people) feel uncomfortable. If you could post from outside the container it would be a no brainer to make a wrapper and capture keystrokes when someone mistyped a URL (e.g. www.bakn.com instead of www.bank.com) and the user would never notice. As it stands now, its a bit more difficult to spoof this interaction. -Original Message- From: Trujillo, Kris [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 30, 2001 4:15 PM To: Orion-Interest Subject: j_security_check Does anyone know if it is possible to post to j_security_check from an external form. What I mean by external is a form that isn't the form referenced in the web.xml as form to show the user when they're not logged in. I am hoping be able to use a form on another server that will post to the oc4j server for authentication and session establishment on the oc4j server. Anybody attempted this??
