The permissions the new files have will depend on the UMASK setting for
the user ColdFusion is running as.
http://en.wikipedia.org/wiki/Umask
~Brad
Original Message
Subject: cfimage & permissions
From: "Jen Perkins McVicker"
Date: Tue, September 15, 2009 8:31 pm
To: cf-ta
It happened to a Linux site that I maintain that runs Apache... Here's
how it happened:
Another user had the FTP credentials in Front Page (but I suspect it
could have been any "standard" Windows FTP program) and they visited a
malware site, got a virus on their machine and it found the ability
F
Can you give us some of the text that was added to each file? And
was it added to the same spot in each file (like top or bottom?) I
have a monitor that checks my website every 5 minutes for changes to
the database.. I should probably add a function to compare the text
on the page and tell m
I'm running CF8 on a linux server, and I'm using cfimage to auto-generate a
thumbnail when an image is uploaded. Is there any way to set the
permissions for the new image I create, like you can for cffile? The
thumbnails keep getting generated with permissions set to 644, and I am
unable to late
> where i dnt get is, how is BufferedImage populated with the
> imageBuffer1 ?
Short answer: imageBuffer1 is just a pointer. The array is still connected to
the BufferedImage object. So when the function modifies imageBuffer1, it has
the effect of also modifying the parent image.
Longer answ
On Tue, Sep 15, 2009 at 5:31 PM, Jacob wrote:
>
> Format C: - Reinstall apps - restore data from backup.
>
> "Backup? Hmm..." ;-)
>
>
I saw this once before it only targeted index.cfm files and was due to a
employees computer being compromized and did same thign as what is happening
here. This
Format C: - Reinstall apps - restore data from backup.
"Backup? Hmm..." ;-)
-Original Message-
From: Cameron Childress [mailto:camer...@gmail.com]
Sent: Tuesday, September 15, 2009 2:06 PM
To: cf-talk
Subject: Re: HoF invaded
On Tue, Sep 15, 2009 at 1:00 PM, Michael Dinowitz
wrote:
>
PKZip is running at a steady 823K.
It wouldn't be PKZip, however, because the Java Heap error
occurs when the first part of the processing starts, which
uses CFFTP to download the files.
And I've been watching the processes while today's tasks have
been running during the trouble spots and jrun
Thanks for the info and tips, Brad!
Photos are downloaded via cfftp.
And yes, cfdirectory and cffile are used to move thing around.
RAM's coming soon...
-Original Message-
From: b...@bradwood.com [mailto:b...@bradwood.com]
Sent: Tuesday, September 15, 2009 5:17 PM
To: cf-talk
Subject:
Well, now I mis"spoke"...
I originally set up the unzip commands using batch files, but went
to . (Which I assume actually executes a batch process?)
Anyway, here one example of the code...perhaps there should be an
"exit" command?
???
-Original Message-
From: Claude Schneegans [ma
Woah, I wouldn't reduce it. If your server is already running out of
memory, the last thing it needs is less to work with.
Garbage collection is an automatic process of your JVM that reclaims
used memory as free space if it is no longer being used.
http://en.wikipedia.org/wiki/Garbage_collecti
>>I'm running batch files using pkzip25.exe.
I may be wrong, (DOS is far away), but aren't batch files supposed to
contain some sort of exit command,
otherwise they may stay waiting for some one to enter the next command ?
~|
On Tue, Sep 15, 2009 at 1:00 PM, Michael Dinowitz
wrote:
> My own machine. If it was FTP then there would be logs.
Never assume your logs are accurate on a compromised machine.
Sorry to hear this happened - good luck with the cleanup...
-Cameron
~~~
I'm running batch files using pkzip25.exe.
I'll have to check and see how the processes look that are running
after the first set of scheduled tasks run.
I have one set of tasks that download and process data and photos
from one MLS company, and then a couple hours later (spread apart
on purpose
No zipping...only unzipping. And yes, I do need to add some more
RAM...definitely
couldn't hurt. CF8, MySQL, FTP, scheduled tasks using a lot of cfthreads
set up to run consecutively.
I did go into the JVM settings and reduced the max to 256 to see if that
helps.
I'm not familiar with "garbag
What are you using to process the unzip? Not properly closing the file you
worked on can cause a slow memory leak...
--
Alan Rother
Adobe Certified Advanced ColdFusion MX 7 Developer
Manager, Phoenix Cold Fusion User Group, AZCFUG.org
~~~
Zipping itself can be a little memory intensive if all those files are
being loaded into memory. Even if there is no "memory leak" par se, it
is entirely possible you are under-powering the server RAM-wise.
If you only have 1 Gig on the entire server, that's really not much.
What else runs on
No use of CFImage in this set of tasks...just unzipping, copying, moving,
deleting, etc.
(Who typed that subject line for this mail: What is the most "like" cause
"if" Java Heap Space error?)
And English *is* my native language! Yikes!
-Original Message-
From: Josh Nathanson [mailto:p.
If the MS ftp was enabled then maybe but it's not. Unless it is and it
is hidden for some reason.
On Tue, Sep 15, 2009 at 2:41 PM, Ian Skinner wrote:
>
> Michael Dinowitz wrote:
>> Somehow, every .cfm file on the HoF site has been infected with a
>> malware script tag. I'm cleaning it out now bu
Michael Dinowitz wrote:
> Somehow, every .cfm file on the HoF site has been infected with a
> malware script tag. I'm cleaning it out now but it's a bit worrysome
> as to how it got on. I'll have an update as soon as I run a cleaner
> regex against the whole site.
>
>
This does sound like a cur
I seem to remember something about CFIMAGE hogging a lot of RAM...anyone
else have more info?
-- Josh
-Original Message-
From: Rick Faircloth [mailto:r...@whitestonemedia.com]
Sent: Tuesday, September 15, 2009 11:35 AM
To: cf-talk
Subject: RE: What is the most like cause lf "Java Heap S
... hmmm, a "memroy leak" is not good, but a "memory leak" is even worse ;-/
~|
Want to reach the ColdFusion community with something they want? Let them know
on the House of Fusion mailing lists
Archive:
http://www.houseoffusi
Thanks, Claude...
Rick
-Original Message-
From: Claude Schneegans [mailto:schneeg...@internetique.com]
Sent: Tuesday, September 15, 2009 2:21 PM
To: cf-talk
Subject: Re: What is the most like cause lf "Java Heap Space" error?
I can see mostly two reasons:
1. an infinite loop, this wou
I can see mostly two reasons:
1. an infinite loop, this would be in your code,
2.. some memroy leak, this would be some in other's code.
~|
Want to reach the ColdFusion community with something they want? Let them know
on the Ho
Nope. I have very strong protection against that on multiple levels.
And again, if that was the case it would effect more than just public
facing cfm files.
> I suspect you have a query vulnerable to SQL injection.
>
> Paul
~|
W
While this is possible via xp_cmdshell (MS SQL Server), it is unlikely
since the majority of SQLi attacks affect your data and MD stated that
the actual .cfm files themselves had the text inserted.
~Brad
Original Message
Subject: RE: HoF invaded
From: "Paul Vernon"
I su
>> Each and every .cfm file that is on a site that is mapped to iis was
>> affected. If a .cfm was in a non-mapped directory then it was not
>> touched. This says to me that the hole is in iis.
>
> I suspect you have a query vulnerable to SQL injection.
If the attack actually caused the malware s
> Each and every .cfm file that is on a site that is mapped to iis was
> affected. If a .cfm was in a non-mapped directory then it was not
> touched. This says to me that the hole is in iis.
Unless you're running a very old version of IIS, this is highly
unlikely. You almost certainly have some s
> Each and every .cfm file that is on a site that is mapped to iis was
> affected. If a .cfm was in a non-mapped directory then it was not
> touched. This says to me that the hole is in iis.
>
I suspect you have a query vulnerable to SQL injection.
Paul
~~
Sorry to hear about the problems on HoF. Thanks for letting us know.
I was about to post a message about HoF being flagged as a possible malware
site in google. But I see you discovered the problem already.
~|
Wa
Or the user account the web/app server runs as shouldn't have write
access to the code it's executing? Sure, it might be a hole in IIS,
but IIS is like sieve, and you shouldn't be able to modify the code in
place like that in any case.
On Tue, Sep 15, 2009 at 10:14 AM, Michael Dinowitz
wrote:
>
Each and every .cfm file that is on a site that is mapped to iis was
affected. If a .cfm was in a non-mapped directory then it was not
touched. This says to me that the hole is in iis.
On Tue, Sep 15, 2009 at 1:02 PM, Andy Matthews wrote:
>
> Is it the actual file itself? That means someone got
Dave, you mentioned about checking virus on the uploaded files on No.4
below. How do you do that, via virus program on the server?
Nathan
-Original Message-
From: Dave l [mailto:cfl...@jamwerx.com]
Sent: Monday, September 14, 2009 2:37 PM
To: cf-talk
Subject: Re: Is this possible with c
Is it the actual file itself? That means someone got into your site via FTP.
I told you that you shouldn't have left the password as 1234.
:)
But seriously. Sorry to hear about that Michael. Keep us posted.
-Original Message-
From: b...@bradwood.com [mailto:b...@bradwood.com]
Sent: T
My own machine. If it was FTP then there would be logs. I'm
downloading all of the .cfm files and using powergrep to remove all of
the malware script tags. It takes more time to FTP than it does to
fix. I should install powergrep on the server.
My 'local copy' is sitting at home and I'm in the cit
Ouch. Are you on shared hosting?
I would change every FTP password stat.
Good Luck.
~Brad
Original Message
Subject: HoF invaded
From: Michael Dinowitz
Date: Tue, September 15, 2009 11:46 am
To: cf-talk
Somehow, every .cfm file on the HoF site has been infected wit
I've got a computer set up that does nothing but process data for about
8,000 properties
and 80,000 photos every day.
The processing is handled by a series of about 30 scheduled tasks that run
consecutively.
The computer is a few years old and has only about 1 GB of ram and right now
the
Somehow, every .cfm file on the HoF site has been infected with a
malware script tag. I'm cleaning it out now but it's a bit worrysome
as to how it got on. I'll have an update as soon as I run a cleaner
regex against the whole site.
--
Michael Dinowitz (http://www.linkedin.com/in/mdinowitz)
Pres
> Anyone had to do that before and found something that works really
> well in ColdFusion, or I am missing something about CFPOP?
If you're on a Windows 32-bit OS you can use CFX_POP3 that I wrote. There is
no 64-bit version but if you are on a 32-bit system it should do the trick.
Paul
Hi CF List,
A quick scan seems to reveal that cfpop is unable to parse and
download all mime parts of a multipart encoded email message???
Anyone had to do that before and found something that works really
well in ColdFusion, or I am missing something about CFPOP?
Cheers,
Dan
~
Sounds like a question for the CrystalTech support guys. I've been
using CrystalTech for years and have never run into any problems with
datasources.
Thanks,
Eric Cobb
http://www.cfgears.com
Joshua Rowe wrote:
> Hello there! I have a website that is being hosted through CrystalTech and
>
I did the same sort of thing using a DTS in SQL Server a long time ago. It
was a little ActiveX (aka VB) script . It took about 3-5 seconds for a 25
meg MLS file. IIRC I found a code example on Xperts Exchange.
HTH,
G!
On Mon, Sep 14, 2009 at 5:42 PM, Alan Rother wrote:
>
> Hey All,
> I'm tryi
> What if the images have other data that go with them like descriptions?
That's true in this case.
The images are uploaded and processed as part of a form.
In the cfc method, I first process the form data, then the photos.
I guess that the form data could be processed along with a zipped file.
Leigh, you are the best!
My problem is solved. am really really grateful and also excited. u wont
believe i have spent nights and day on this thing.
But there is a part i dnt understand.
..
..
i then passed imageBuffer1 to the function..
where i dnt get is, how is BufferedImage populated
We've had good success with Saxon for this kind of thing.
mxAjax / CFAjax docs and other useful articles:
http://www.bifrost.com.au/blog/
2009/9/15 Barney Boisvert :
>
> I'd recommend grabbing a SAX parser and using that instead of the
> DOM-based stuff that CF ships with. Then you can stream
You could go old school and just treat it as a string...
--
Helping to greatly architect eye-catching segments as part of the IT team of
the year, '09 and '08
This email is sent for and on behalf of Halliwells LLP.
Halliwells LLP is a limi
> because in the sample java code the bytearray wasn't used
> directly. they used it as follows
> ...
> the bytearray imageBuffer1 was created this way before
> passed to the function to capture the image.
Hmm.. if all the function does is populate a supplied byte array, then it
sounds like you
47 matches
Mail list logo
