April 2010 Security Update broke javascript in 3D.

I just filed this bug report with Adobe.  This is a serious problem which will impact anyone using the PDF 3D scripting APIs.
******BUG******
Concise problem statement:
There is a bug introduced in the April 2010 security patch.  This bug is in Reader 8, Reader 9, Acrobat Pro 9.  This bug is on Windows and Mac. The problem is that Javascript within a 3D element is not run when the element is first activated.
Steps to reproduce bug:
1. Download this PDF: http://kaontest.s3.amazonaws.com/MedSupplies3D.pdf
2. Open it in any up-to-date Adobe Reader / Adobe Acrobat product
Results:
The 3D element is active, but the Javascript that makes it work does not run. To see what it should look like, right-click the orange box, and select "Disable 3D".  Then right click again and select "Enable 3D."
Expected results:
The javascript should run at document load time, without user intervention.
I expect that this bug report is in a giant heap of web bug reports that will be looked in to "eventually."  Does anyone here know of a way to raise the awareness of the 3D PDF team inside Adobe about this problem?  It's a major regression for a "security update."
(We have developed a work-around, which is to use document-level javascript to enable/disable/enable the 3D content at initialization time.  However, this is a pretty ugly hack, and it requires modifying PDFs which have been working fine for many years, which is an untenable situation for some of our customers who have literally HUNDREDS of 3D PDFs in their repositories.)
-Joshua Smith
Kaon Interactive

I've actually been through this before with Adobe, when I proved to the bug-handling engineer, over a painfully long period of time, that the 3D rendering engine inside PDF does not sort triangles, and therefore cannot render alpha correctly.  That experience has taught me to let Adobe drive the process, since every bit of initiative I took in that case was wasted effort.
And what was the result? Did they fix it after all (at their pace, not yours, but eventually)?
Does http://www.iaas.msu.ru/tmp/u3d/surf_alpha.pdf have the problem you mention above or we are talking about something else?
... your simple PDF ... doesn't work in Reader 8 on the Mac, by the way
It is not supposed to, it uses the "latest and greatest" version of PRC format, support of it appeared in Acrobat/Reader 9.
And the positive point (for me) is that paid-for, developer-level support from Adobe (that I lack) is not that good.
Thank you.
(Country joke: Make a birthday present to your neighbour by telling him that your cow died  )

Similar Messages

  • Feb 26 security update broke Mail

    I just installed Apple's latest security update. I am running Mountain Lion 10.8.5 on a 2.8 GHz Quad-Core Intel Xeon with 18GB memory.
    Right after this update was installed, my Mail.app broke - I can no longer send or receive email. I have tinkered with the smtp settings (shut off SSL) and gotten the outgoing mail to go, but still cannot receive any incoming mail.
    Is anyone else having this problem?? I have tried inputting the actual IP address of our mail server instead of using "mailserver.xxx.local", to no avail.
    Mail's Connection Doctor doesn't report a problem (now), but still have not received any mail since before the update, even though I have specifically had other people send me an email to test it.
    At my wit's end here ...

    Whew … after a lot of head-scratching and button-clicking, I have discovered the answer: deselect the Use SSL option. Although it would seem to be safer to have that turned on, apparently the update changed how that was handled. Off it goes.

  • Security update broke Citrix

    I use Citrix to access my office network, and have been using the latest version (10.00.6) since it was launched a week or so ago. Today I installed the new Leopard security updates on my MacBook, and now Citrix won't work - I get an error message "Error in connection file "users/(me)/Library/Preferences/Citrix ICA Client/Modules": Cannot find section "ClientManagement". Error number 11
    I tried reinstalling Citrix (twice), but it's still broken. I have not updated my G5 with the security update, and Citrix (same version) still works fine on that. Anyone have any ideas? Apple? Thanks!

    I got the exact same error when I installed the newest version of the Citrix client. I ended up fixing it by going into ~/Library/Preferences/Citrix ICA Client, then renaming the "Modules" file. Then I reinstalled the Citrix client and it fixed my problem. Hope this helps.
    Greig Wise

  • 10.4.8 Security Update broke my network

    After installing the 10.4.8 security update on my iMac G5 with an Airport Extreme card I have all sorts of issues.
    1. I can no longer see my AEBS in Airport admin but if I click the other button I can access it by IP address.
    2. The three other Airport Express stations intermittently show up and then disappear.
    3. I can no longer print to the printer attached to the AEBS
    4. My network no longer connects automatically
    Strangely enough, I can still access the Internet through it so it clearly knows its there, just won't connect to it or see it through the admin tools. If I use my Powerbook G4 that I haven't updated yet, I can still see them all so I know they are all ok still. I didn't change any of my settings so how can this have all gone so horribly wrong?

    yes, thank you this exactly solved my problem.  It also provided an added bonus of an easy way to restore my previous music which had gone missing.  
    After the update installed, I was given the option to have itunes search my mac for music files.  To my pleasant surprise, this option was better than I had imagined as it found all my music, voice recordings, podcasts, books and apps.  These all went missing prior to this fix due to the previous failed update.  Now I have all my music restored plus some additional sounds and bits that I hadn't seen before.  Nice!

  • Security update broke my WiFi

    Just installed the latest security update (2008-6) via software update (on my iBook) and now I can't access my WiFi. My network is visible but then I try and connect I get the message that the password is incorrect. I've re-entered the password using Internet Connect then it tells me there's an error connecting to the network. The password in the keychain is correct. I've tried to create a new 802.1X connection from Internet Connect but this option is grayed out.
    Please help
    Many thanks

    I had the same problem on my iMac G5 this morning. I was able to fix it using some advice in a discussion thread "Network Preference Pane Gone Berserk after Latest Security Update (Tiger)" from tonza. There is a message posted Sept 20 at 2:05 AM that recommends removing some preference files and recreating the network configuration. That worked for me and my WiFi came back immediately. I didn't have all of the problems discussed in this thread. You probably ought to read some of the other messages to convince yourself that this is the problem that you are seeing.
    I had a recent backup that I could boot off of or I would have never found this. Make a backup first!
    Good luck!!

  • HELP!!!! Mail not sending nor receiving...Security Update broke it?

    So i had a perfectly working set-up for mail and calendar on Mac OS X 10.6.3, but this weekend it stopped working. Mail is not getting in nor out of my system. I can not even send mail to myself. When I look into the logs i see the following errors..
    SMTP Log
    Apr 26 23:07:14 xserve postfix/smtp[36771]: 8F7F8800000E1CD58: to=<[email protected]>, relay=none, delay=599, delays=599/0.02/0.01/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]:10024: Connection refused)
    JUNK Mail/ VIrus Scanning
    Apr 26 21:07:38 xserve.filmmakerforacause.org /usr/bin/amavisd[27443]: DKIM signature verification disabled, corresponding features not available. If not intentional, consider enabling it by setting: $enabledkimverification to 1, or explicitly disable it by setting it to 0 to quench down this warning.
    It is NOT grey listing as i have long since fixed that. Any help out there? I have NO email right now, so this is a MAJOR issue. We installed the security update over the weekend. I am pointing toward that as the issue?

    Ok I have fixed the ability to send. The console said that root wasn't owner of "amavisd.conf" .. i used the sudo chown.. and now I can send to external addresses & internal addresses and receive internal to my network. Mail is still not coming in from EXTERNAL addresses. help?

  • ADOBE ANNOUNCE: Preparing for upcoming April 2008 Flash Player 9 security update

    Flash Player team is doing some 'pre-communication' around
    the security changes in the -next- version of Flash Player,
    releasing in April 2008.
    So we're starting with some blog posts, articles and
    technotes so that these changes can spread to the community. There
    will likely be more than this by release time as well (and new
    communication will come at that time).
    Blogs:
    Emmy Huang:
    http://weblogs.macromedia.com/emmy/
    Justin Everett-Church:
    http://justin.everett-church.com/
    Developer Center articles:
    "Preparing for the Flash Player 9 April 2008 Security Update"
    http://www.adobe.com/devnet/flashplayer/articles/flash_player9_security_update.html)
    Everyone should read and become familiar with the current
    article on Flash Player 9.0.115.0's 'phase 1' security changes..
    this outlines a lot of what's been changed, and gives you an idea
    what to think about for the upcoming April release. "Security
    Changes in Flash Player 9" (v9.0.115.0) at
    http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html.
    There are a few other articles with specifics about
    socketpolicyfile handling coming up, but they’re not quite
    done yet..
    Specific technotes w/ code:
    “Changes in allowScriptAccess default (Flash
    Player)”
    http://www.adobe.com/go/kb403183)
    “Authorization header does not work for an HTTP request
    (Flash Player)”
    http://www.adobe.com/go/kb403184)
    “Arbitrary headers are not sent from Flash Player to a
    remote domain”
    http://www.adobe.com/go/kb403185)
    “Sockets do not function in Flash Player versions later
    than 9.0.115.0”
    http://www.adobe.com/go/kb403186)
    “javascript:" URLs no longer function in networking
    APIs (Flash Player)”
    http://www.adobe.com/go/kb403187)[b
    technotes w/ code:

    Is there a release date yet? I've had management phoning me
    over the weekend panicking that the new player was going live this
    weekend. When 9,0,115,0 came out our global financial trading
    platform broke due to the socket security changes in release 115.
    This time we are prepared (as we already use dynamically generated
    socket policy files) although with no access to a beta player we
    were unable to test. Unfortunately its just another bit of negative
    perception of Flash/Flex that others can use to promote alternative
    RIA platforms. I will have a fight on my hands this year to stop us
    migrating to Silverlight.
    I'm signed up for security alerts from Adobe - is there a
    mailing list for Flash Player release date? And why can't I see a
    beta version of the new player in order to test?

  • MS14-055 security update for Microsoft Lync Server 2010

    hello
    after applying this security update do I need to Apply it to the back end database? or is that just when regular patches are applied?

    Hi totalnet32,
    From http://support.microsoft.com/kb/2493736, we know that
    "After you install the update for the Core Components server role on a Lync Server 2010 Enterprise Edition front end server, the updated SQL database files are dropped to the computer that has the Core Components server role installed.This
    also applies to a Lync Server 2010 Standard Edition server. To apply the database changes, run the following cmdlets:
    Install-CsDatabase -Update -ConfiguredDatabases -SqlServerFqdn <EEBE.Fqdn> -UseDefaultSqlPaths
    2982388
    (https://support.microsoft.com/kb/2982388/            )    
    MS14-055: Description of the security update for Microsoft Lync Server 2010 (Response Group Service): September 9, 2014
    2982385
    (https://support.microsoft.com/kb/2982385/            )    
    MS14-055: Description of the security update for Microsoft Lync Server 2010 (Security update for Standard/Enterprise edition Server): September 23, 2014
    There's no Core Components server role update, as far as my experience, the DB update is not required.
    And I suggest that reboot the Lync Servers once after the updates have been installed.
    Best regards,
    Eric

  • Security Update 2010-001 - install error

    I just tried to run the 2010 security update 001 on my Mac Book Pro and I get this error:
    You cannot install Security Update 2010-001 on this volume. This volume does not meet the requirements for this update.
    I run OSX 10.5.8 and have searched the internet and apple site and can't find anyone else with a similar issue.
    Does anyone have any ideas?

    Ensure you have the update for Leopard and not Snow Leopard: http://www.apple.com/downloads/macosx/apple/security_updates/securityupdate20100 01clientleopard.html

  • G4 won't boot after last Security Update

    I have an AGP G4 tower that's been running 10.4.11 fine until today. The last thing I did was Software Update. The only things on the list were an iLife update and a Security Update. I don't know the update number but since I always keep the system updated, I can only assume these two updates were the latest available.
    So after the update... I hit the "restart" button but then I get the grey screen with a prohibitory sign and a spinning wheel.
    It's not a hardware issue... I can reboot this machine into an alternate hard drive just fine.
    I fixed permissions.
    I ran disk utility - hard disk checked out ok.
    Still can't boot using this drive.
    Obviously this last security update broke my system folder because it's as if it can't find a valid system.
    So now the question is, what can I do to fix my system folder?
    Thank-you.

    Simple fix.
    I downloaded and installed the 10.4.11 Combo Update onto original drive while booted into the alternate drive. I then downloaded and installed the Security Update 2008-0001 onto the original drive. As a precaution I repaired permissions on the original drive.
    Successfully booted into original drive.

  • PHP/MySQL issue after security update 2010-005

    Hello,
    I run Apache/PHP/MySQL on my MBP for testing Web sites.
    After the 2010-005 security update I can't connect to my databases anymore.
    I don't know how to fix this, I even don't know where to start looking.
    Ideas, anyone?

    coloma wrote:
    etresoft, thanks for sharing this ... I decided to go with the TriangleJuice suggestion instead for two reasons ... first is that I wasn't sure where to find this launchd file.
    There is nothing wrong with TriangleJuice's suggestion. My only issue with creating a php.ini file is that now I have to worry about all those other settings in the ini file. If something else in PHP breaks, I have to figure out if I am the one who broke it.
    Apple ships MySQL with MacOS X Server. They probably adjusted the PHP settings to match how they have MySQL setup in MacOS X Server.
    For MySQL's, no, Sun's - drat! no, Oracle's part, they still haven't acknowledged the fact that Apple has shipped MacOS X 10.4. MySQL still ships with a Startup Item. If you don't know where the launchd file is, it is because you don't have one. You probably have a MySQL entry in /Library/StartupItems or maybe /System/Library/StartupItems. Startup Items were deprecated in 10.4. Oracle should be creating a file named com.mysql.mysqld.plist in /Library/LaunchDaemons.
    Here is what mine looks like now:
    <?xml version="1.0" encoding="UTF-8"?>
    <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
    <plist version="1.0">
    <dict>
    <key>KeepAlive</key>
    <true/>
    <key>Label</key>
    <string>com.mysql.mysqld</string>
    <key>ProgramArguments</key>
    <array>
    <string>/usr/local/mysql/bin/mysqld</string>
    <string>--socket=/var/mysql/mysql.sock</string>
    <string>--basedir=/usr/local/mysql</string>
    <string>--datadir=/usr/local/mysql/data</string>
    <string>--user=mysql</string>
    <string>--log-error=/usr/local/mysql/data/Pele.local.err</string>
    <string>--pid-file=/usr/local/mysql/data/Pele.local.pid</string>
    </array>
    <key>RunAtLoad</key>
    <true/>
    </dict>
    </plist>
    I also don't have a /var/mysql directory and wasn't sure whether I should just create one or if this meant my configuration was different. If you feel like explaining any of this, I'd be curious to know.
    You have to create one. Such a directory probably already exists on MacOS X Server. Just make sure it is owned by mysql.
    sudo mkdir /var/mysql
    sudo chown _mysql:staff /var/mysql
    sudo chmod 0755 /var/mysql
    [jdaniel@Pele:516] /var $ ls -al /private/var | grep mysql
    drwxr-xr-x 3 _mysql staff 102 Aug 26 20:03 mysql
    Of course, /var is a symbolic link to /private/var. Long story there.

  • VPN broken after 10.6.4 Update / Security Update 2010-005

    I have a MacMini Server that was running 10.6.3 in use as a gateway for the last 3 or 4 months and everything has been working just fine. However, after applying 10.6.4 and Security Update 2010-005 the iChat and VPN services broke.
    I was able to fix the iChat service by using serveradmin in Terminal - Server Admin was showing the correct name of the iChat server, but serveradmin reported a different (incorrect) name. My only guess is that one of the updates somehow changed that setting behind the scenes.
    I have yet to be able to fix the VPN (L2TP) issue, though. I can connect internally (to 10.0.1.1) with no problem. I can connect with via iPhone over 3G no problem. I cannot connect externally from a 10.5.8 or a 10.6.4 client - any attempt always fails with a timeout. The VPN log shows nothing, but the system log shows:
    Sep 24 14:18:33 gateway racoon[90950]: Connecting.
    Sep 24 14:18:33 gateway racoon[90950]: IKE Packet: receive success. (Responder, Main-Mode message 1).
    Sep 24 14:18:33 gateway racoon[90950]: IKE Packet: transmit success. (Responder, Main-Mode message 2).
    Sep 24 14:18:36 gateway racoon[90950]: IKE Packet: transmit success. (Phase1 Retransmit).
    Sep 24 14:19:03: --- last message repeated 8 times ---
    Sep 24 14:19:03 gateway racoon[90950]: IKEv1 Phase1: maximum retransmits. (Phase1 Maximum Retransmits).
    Sep 24 14:19:03 gateway racoon[90950]: Disconnecting. (Connection tried to negotiate for, 29.171451 seconds).
    Sep 24 14:19:03 gateway racoon[90950]: IKE Phase1 Failure-Rate Statistic. (Failure-Rate = 100.000).
    It would seem that the response to the initial handshake is being blocked. However, serveradmin has this to say about ipfilter:
    gateway:/ *******$ sudo serveradmin settings ipfilter|grep VPN
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN ISAKMP/IKE:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP - Layer-Two Tunneling Protocol:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP\: IKE NAT Traversal:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP\: ISAKMP/IKE:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:action = "allow"
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:readOnly = yes
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:protocol = "gre"
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:name = ""
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:dest-port = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:readOnly = yes
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:protocol = "esp"
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:dest-port = ""
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:oldDescription = "Layer-Two Tunneling Protocol (L2TP)"
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:protocol = "udp"
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:readOnly = no
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:dest-port = "1701"
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:oldDescription = "PPTP VPN"
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:protocol = "tcp"
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:readOnly = no
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:name = ""
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:dest-port = "1723"
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:readOnly = no
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:protocol = "udp"
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:dest-port = "500"
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:readOnly = no
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:protocol = "udp"
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:dest-port = "4500"
    Which seems to be correct to me.
    As with the iChat problem, everything seems to be correct as reported by Server Admin. I have been hunting for the incorrect setting using serveradmin, but so far everything there seems to be correct as well.
    One last item that I just discovered today, and which is probably a huge hint (and I just don't know how to connect the dots), is that when I stop the VPN service (it's running on the gateway server), the entire office loses it's connection to the internet. Turn VPN back on, and the internet is back.
    I think my server is deeply, deeply disturbed, but I am not ready to wipe it clean and start over again. I sure would appreciate any insights on this one....

    I have a MacMini Server that was running 10.6.3 in use as a gateway for the last 3 or 4 months and everything has been working just fine. However, after applying 10.6.4 and Security Update 2010-005 the iChat and VPN services broke.
    I was able to fix the iChat service by using serveradmin in Terminal - Server Admin was showing the correct name of the iChat server, but serveradmin reported a different (incorrect) name. My only guess is that one of the updates somehow changed that setting behind the scenes.
    I have yet to be able to fix the VPN (L2TP) issue, though. I can connect internally (to 10.0.1.1) with no problem. I can connect with via iPhone over 3G no problem. I cannot connect externally from a 10.5.8 or a 10.6.4 client - any attempt always fails with a timeout. The VPN log shows nothing, but the system log shows:
    Sep 24 14:18:33 gateway racoon[90950]: Connecting.
    Sep 24 14:18:33 gateway racoon[90950]: IKE Packet: receive success. (Responder, Main-Mode message 1).
    Sep 24 14:18:33 gateway racoon[90950]: IKE Packet: transmit success. (Responder, Main-Mode message 2).
    Sep 24 14:18:36 gateway racoon[90950]: IKE Packet: transmit success. (Phase1 Retransmit).
    Sep 24 14:19:03: --- last message repeated 8 times ---
    Sep 24 14:19:03 gateway racoon[90950]: IKEv1 Phase1: maximum retransmits. (Phase1 Maximum Retransmits).
    Sep 24 14:19:03 gateway racoon[90950]: Disconnecting. (Connection tried to negotiate for, 29.171451 seconds).
    Sep 24 14:19:03 gateway racoon[90950]: IKE Phase1 Failure-Rate Statistic. (Failure-Rate = 100.000).
    It would seem that the response to the initial handshake is being blocked. However, serveradmin has this to say about ipfilter:
    gateway:/ *******$ sudo serveradmin settings ipfilter|grep VPN
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN ISAKMP/IKE:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP - Layer-Two Tunneling Protocol:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP\: IKE NAT Traversal:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP\: ISAKMP/IKE:action = "allow"
    ipfilter:ipAddressGroupsWithRules:array_id:any:rules:_arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:action = "allow"
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:readOnly = yes
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:protocol = "gre"
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:name = ""
    ipfilter:standardServices:arrayid:VPN PPTP\: GRE - Generic Routing Encapsulation protocol:dest-port = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:readOnly = yes
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:protocol = "esp"
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: ESP - Encapsulating Security Payload protocol:dest-port = ""
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:oldDescription = "Layer-Two Tunneling Protocol (L2TP)"
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:protocol = "udp"
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:readOnly = no
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP - Layer-Two Tunneling Protocol:dest-port = "1701"
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:oldDescription = "PPTP VPN"
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:protocol = "tcp"
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:readOnly = no
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:name = ""
    ipfilter:standardServices:arrayid:VPN PPTP - Point-to-Point Tunneling Protocol:dest-port = "1723"
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:readOnly = no
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:protocol = "udp"
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: ISAKMP/IKE:dest-port = "500"
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:readOnly = no
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:protocol = "udp"
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:name = ""
    ipfilter:standardServices:arrayid:VPN L2TP\: IKE NAT Traversal:dest-port = "4500"
    Which seems to be correct to me.
    As with the iChat problem, everything seems to be correct as reported by Server Admin. I have been hunting for the incorrect setting using serveradmin, but so far everything there seems to be correct as well.
    One last item that I just discovered today, and which is probably a huge hint (and I just don't know how to connect the dots), is that when I stop the VPN service (it's running on the gateway server), the entire office loses it's connection to the internet. Turn VPN back on, and the internet is back.
    I think my server is deeply, deeply disturbed, but I am not ready to wipe it clean and start over again. I sure would appreciate any insights on this one....

  • Javascript Behaviour changed in 3.1 or latest security update?

    Since letting software update install everything on my Macbook Air, several sites have started to misbehave in Safari. Specifically, Javascript launched new windows are not happening.
    An example is at http://www.telegraph.co.uk where the "Matt" and "Alex" links on the right do not do anything in Safari on a fully updated 10.5.2 system. They work in Firefox on the same machine. They also worked before the update on the same machine. The links also work properly in 10.5.2 on my MacPro which has Safari 3.0.4 and does not yet have the security update installed. Equally, they work properly on a Tiger system which is also fully updated.
    Since I think I installed 3.1 and the security update at the same time, I am not sure which one broke the behaviour.
    Is there a workaround I need to apply to get javascript back?
    An example script that fails on the example site is:
    javascript:MattWindow('/core/Matt/pMattTemplate.jhtml')
    Edit: Popups are enabled in Safari prefs and so is Javascript.
    Message was edited by: David Greenhalgh

    David, It could be a file(s) in your InputManagers folders and/or a SIMBL file.
    Try the following:
    Quit Safari.
    Drag the 'InputManagers' folders out of the Libraries.
    HD/Library/InputManagers
    HD/Users/yourhome/Library/InputManagers <- +(if you have one here)+
    If you have a 'SIMBL' folder in the 'Application Support' folders move it out.
    HD/Users/yourhome/Library/Application Support/SIMBL
    HD/Library/Application Support/SIMBL
    Good luck,
    Tom
    Message was edited by: Tom_X

  • Clamd fails after installing Security Update 2010-004

    A few months ago while running clamav-0.96, I began to get "Assertion failed" notices in my system log. But I applied a PowerPC patch available at clamav.net and that solved the problem. Later on, I updated to clamav-0.96.1 and everything continued running fine until yesterday when I installed Apple's Security Update 2010-004. Now I'm seeing the "Assertion failed" messages in my system log again just about every 10 seconds:
    Jun 17 07:55:17 nagxserveg5 net.clamav.clamd[686]: Assertion failed: (ResultPtr
    = -(1 << 23) && ResultPtr < (1 << 23) && "Relocation out of range!"), function
    relocate, file llvm/lib/Target/PowerPC/PPCJITInfo.cpp, line 399.
    Jun 17 07:55:19 nagxserveg5 ReportCrash[705]: Formulating crash report for
    process clamd[686]
    Jun 17 07:55:19 nagxserveg5 ReportCrash[705]: Saved crashreport to
    /Library/Logs/CrashReporter/clamd2010-06-17-075517NAGXServeG5.crash using
    uid: 0 gid: 0, euid: 0 egid: 0
    Jun 17 07:55:19 nagxserveg5 com.apple.launchd[1] (net.clamav.clamd[686]):
    Exited abnormally: Abort trap
    Jun 17 07:55:19 nagxserveg5 com.apple.launchd[1] (net.clamav.clamd): Throttling
    respawn: Will start in 1 seconds
    I tried reinstalling clamav-0.96.1 (configure/make/make install) and
    rebooted, but that didn't help. And attempting to reapply PowerPC patch, I just
    get the message that the patch is already applied. I have had to turn off virus scanning in ServerAdmin/Mail service in order to send/receive any mail. Otherwise, everything fails in virus scanning and just ends up sitting in my Mail Queue.

    Yes, but you also mentioned that you tried to apply the patch which is not needed
    Looks like a freshclam update broke things then. Until they reliably sort it, you can safely rebuild ClamAV using --enable-llvm=no or --disable-llvm (don't remember which one is correct off the top of my head).

  • Please read this before you load SECURITY UPDATE 2010-006

    I've just spent 72 hours with frozen cursors and frozen screens - so far all directly related to security update 2010-006. After successfully using SuperDuper! to erase my Internal HD and load a 2+ week old system without security update 2010-006 I seem to be fine again.
    OK I have so much share-free ware on my MBP-13" (May 2010) running 10.6.4 that maybe I'm the only one on the planet to see this - but there is a 214 PAGE post for MBP-15 and MPB-17's freezing -- prior to Security Update 2010-006 ------ related or not, don't know.
    I believe I will actually get a duplicate MacBook Pro (or at least a MINI with the same chip/speed) so that I can keep one clean and experiment (i.e. download stuff) on the other. Then if a problem, my life doesn't stop. I realize that from banking to photos to news to work to reports to my balance sheet to SKYPE to eMail to....... wow, and in 1983 I just had my HP calculators!! These Macs just have to work!
    Best of success and comments welcome here.
    Steve
    11 Oct 2010

    Thanks for the feedback! I think my system is now "OK" (hours of checks, with Apple as well etc. etc.) but likely there was a conflict - and since I don't know what - and since I can't remove everything right now - if this keeps working I just won't install the security update 2010-006.
    BUT will this sneak up on me in security update 2010-007 or ??? I kinda have to get to the bottom of this - am actually thinking of buying a second, almost identical Mac (or at least a somewhat cheaper MINI 2.4 gHz) to have some backup beyond my external drives (which saved me!)
    Thanks again and any/all comments truly appreciated.
    Best regards,
    Steve Schulte
    Monday 11 October 2010

Maybe you are looking for

  • Hello i can't registrate my iPhone c, apple tells me the the serial number is already in use with another apple id ???

    Hi, i tried to registrate my new iphone 5c, but everytime i put in the serial number in my support profile it tells me that the iphone is already registrated with another apple id.....When i started the iPhone for the first time i used the same id th

  • In the summary section in iTunes, what is "other" on my iPhone 5 ?

    Using iTunes, In the summary section as I review the contents of my iPhone, there is an "other" category and it is taking up over 11GB of memory in my iPhone.  What is in this category? Do I need it?  If not, how do I reduce or remove it?

  • ORA-39126: Worker unexpected fatal error

    Hi, when importing from a full export file by following commande line : impdp system/***@orcl DUMPFILE=EXP_FUL_H9DEV.DMP LOGFILE=MYLOG.log I recieved : ORA-39126: Worker unexpected fatal error in KUPW$WORKER.PUT_DDL [VIEW:"H9DEV"."PS_AEAPPL_VW"] ORA-

  • Adobe CS 5.5 web premium

    i purchased CS5 however i had it installed on another computer.  my new computer has no CD drive is there a way i could download it again on my new computer but a a digital copy

  • JPanel - Any ideas

    I am currently using a JPanel with a null layout because the components in this JPanel can increase. It is like having multiple labels in the JPanel. I do not want to use a layout manager becuase according to my understanding, This simply reduces the