ColdFusion MX 7 locking up

One of our ColdFusion MX 7 servers is locking up about 10
times a week. Restarting the application server is the only thing
that seems to make it respond again. When it locks up, IIS returns
nothing. A browser will just try and try before the HTTP request
times out. On the back end, we have an ODBC connection into a
foxpro database (unfortunately). Our legacy application was built
on foxpro, and we are in the early stages of phasing it out. My
question is, 1) Is there any way to tell exactly what is locking CF
up? and 2) Is there any setting which I could set to possibly
alleviate the locking up, or at least minimize the chances of CF
dying? Thanks.

Look at Seefusion
http://www.seefusion.com.
This app looks at Cf in real time and also has DB logging.
Its a life saver.

Similar Messages

Can Coldfusion Report Builder Lock .MDB Files?

I have been seeing an issue where an .mdb file will be locked into a read only mode state. There is no .ldb lock file on the object, but when I open the DB up a banner pops up at the top stating it is in read only mode. While it is in this mode it cannot be queried by CF pages and nothing on the site works.
If I rename the same file to soemthing else it works find. If I rename it back to its original name it says it is locked and will not respond. I have been trying to figure out what has a hold o f the .mdb file when this is happening.
Yesterday afternoon I was working in the coldfusion report builder and was connected to the datasource .mdb through the rds server. I am now wondering if it is report builder that is locking the DB.
Has this happened to anyone else? Has anyone ever seen issues like this?

I have never found a solution. It is a problem specific to report builder and PDFs. If you output to flashpaper it will work fine. If you output in coldfusion directly to pdf, it is fine as well with Cyrillic. I have just given up and used flashpaper for a little while longer though would prefer going to pdf for longevity and ease for the users of saving the documents.
May not hurt to post a bug report specifically for this one. I didn't know this tool existed. It does seem like a bug because the fonts that I have tried to use have Cyrillic available, it just can't deal with them.

Link to download Hotfixes/Updates?

Our ColdFusion instance is locked down inside our DMZ, so while the built-in update feature is cool, we still need to download hotfixes in order to install them. I've done a bunch of searches and come up empty.
Can anybody point me to a location to download hotfixes?
Thanks.

Don't forget to look for security fixes too. They will be here before they are rolled up into a hotfix.
http://www.adobe.com/support/security/#coldfusion

Why does a feature of CFLOCK seem like a bug?

I searched this forum for discussions about cflock
and read the livedocs at
http://livedocs.adobe.com/coldfusion/8/htmldocs/help.html?content=sharedVars_20.html.
This reading is on top of me thinking I already knew
everything about using the cflock tag.
Apparently, I am not understanding a very critical
aspect of the cflock tag when locking the session scope.
My issue is regarding one user, one session, multiple
and concurrent requests arriving at the CF8 server
from the same user session.
Meaning, a web page that uses ajax, frames, pop-ups,
or the user hitting ctrl-n, will generate multiple
requests to the CF8 server using the same session.
Based on my understanding, using type="exclusive" will
effectively single-thread the access to code between
the lock tag. So my question is:
Why doesn't <cflock scope="session" type="exclusive" ...
>
single-thread the access to the code between the cflock
tag?
If you are kind enough to respond, I would really
appreciate an explanation why the current behavior
in CF8 is the more correct behavior. If the scope
is changed from session to application or server, it
will infact single-thread the access/execution.
So why is this not the case when the scope is session?
I arrived at this problem because I was trying
to explain to someone the difference between:
<cflock scope="session" type="exclusive" ... >
and
<cflock scope="session" type="readOnly" ... >
Based on my simple test and what I'm seeing, I discovered
I myself don't know the difference!
I know how to re-write the code to do exactly
what I want to do. I just can't seem to wrap
my head around why the cflock tag is implemented
this way (with respect to session and exclusivity).
However, it is more likely that I have a bug in my
simple test code...?
If you're interested, here's the code I used to
confirm/test my assumption:
Thank you for reading this post to the end!

Please be sure that I am very grateful that you both
are responding to my post. I am having difficulty
articulating exactly the issue since it may be a
feature of the CFLOCK tag and not a bug.
I thank you for being patient.
> You don't actually say what you're seeing to
> suggest that it's not working to spec.
What I'm seeing (with respect to the session scope
and exclusivity) is that the CFLOCK tag is not
behaving as documented in livedocs.
In particular, I'm referring to this statement in
livedocs:
"Exclusive - Allows single-thread access to the CFML
constructs in its body. The tag body can be executed
by one request at a time. No other requests can start
executing code within the tag while a request has an
exclusive lock. ColdFusion issues exclusive locks on
a first-come, first-served basis."
It occurred to me that it would be somewhat trivial
enough to prove this statement as being true. My
attached code was the beginnings of my attempt to
actually see single-threading at work.
However, what I actually observed was that this statement
from livedocs is actually false when using scope="session"
and type="exclusive".
Meaning, it did NOT "single-thread access to the CFML
constructs in its body".
> I don't see anything to suggest what you're seeing.
> ... I don't know what your evidence is to suggest
> anything's wrong
My attached code is the beginnings of an attempt to
gather some evidence. I was attempting to cause the
first request/browser to simulate a process that
takes 30 seconds. While the first request is performing
it's 30 second long process, I caused the second request/
browser to simulate a process that takes zero seconds
to perform.
My expectation was that the second request/browser will
not have an opportunity to begin processing since
the first request is holding an exclusive lock.
What I actually observed was that second request was
able to perform/continue without waiting or being blocked.
However, when I changed the scope from session to
application or server, I finally did observe the second
request waiting/being blocked. If I switch the scope back
to scope="session", the second request continues without
waiting/being blocked.
It is really hard for me to believe that there is a bug
here. I really do think that someone went out of their
way to allow this feature. I just wish I knew the rational
behind allowing this feature (and yet NOT documenting this
abnormal behavior in livedocs).
Thank you again for responding and taking the time to
modify and run my sample code (code must be modified
to experience the abnormal behavior). I did take note
of your mention that you experienced some "interesting"
behavior.

Locking down coldfusion for security threats

Hi,
We were looking to lockdown our coldfusion server from outside threats and have lookd at multiple forums for it. Most of them were referring to run coldfusion under an unprivileged user account (other than administrator).
Has anyone done similar kind of configuration before as we haven't got any clue how to do this. We will appreciate if someone could write down all the steps to do it.
Thanks
Steve Jordan
http://hyve.com

Depending on the version you are running, Adobe has lockdown guides for securing ColdFusion.
ColdFusion 10: http://www.adobe.com/content/dam/Adobe/en/products/coldfusion/pdfs/cf10/cf10-lockdown-guid e.pdf
ColdFusion 9: http://wwwimages.adobe.com/www.adobe.com/content/dam/Adobe/en/products/coldfusion/pdfs/910 25512-cf9-lockdownguide-wp-ue.pdf
They were written for Adobe by Pete Freitag of Foundeo. Pete is a ColdFusion security guru.
-Carl

SQL Timeouts and Blocking Locks

SQL Timeouts and Blocking Locks
Just wanted to check in and see if anyone here has feedback on application settings, ColdFusion settings, JBOSS settings or other settings that could help to limit or remove SQL Timeouts and blocking locks on SID's.
We're using MS SQL 2000 with JBOSS and IIS5.
We've been seeing the following error in our logs that starts blocking locks in SQL:
java.sql.SQLException: [newScale] [SQLServer JDBC Drive] [SQLServer] Lock request time out period exceeded.
Once this happens, we're hosed until we remove the blocking SID in SQL. These are the connections to the application.
Any feedback would be great. Thanks!

Hi
This is your exact solution:
Select a.username, a.sid, a.serial#, b.id1, c.sql_text
From v$session a, v$lock b, v$sqltext c
Where b.id1 in( Select distinct e.id1
from v$session d , v$lock e
where d.lockwait = e.kaddr ) and
a.sid = b.sid and
c.hash_value = a.sql_hash_value and
b.request =0;
Thanks
Sarju
Oracle DBA
<BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:</font><HR>Originally posted by I'm clueless:
Can someone give me the SQL statement to
show if there are any blocking database locks and if so - which user is locking the Database?
Thanks in Advance<HR></BLOCKQUOTE>
null

ColdFusion Script not work with Httpservice

At first I use PHP to generate xml output on page then use
the data to my httpservice with resultformat e4x. Everything is
fine. But now I want to use coldfusion script since I'm planning to
use ColdFusion as my web server. I have this script located on my
server and generate the data in XML file then the XML file is used
in my web, loaded through httpservice.
My PHP code was like this :
<?php
define( "DATABASE_SERVER", "localhost" );
define( "DATABASE_USERNAME", "root" );
define( "DATABASE_PASSWORD", "" );
define( "DATABASE_NAME", "MyCinema" );
$mysql = mysql_connect(DATABASE_SERVER, DATABASE_USERNAME,
DATABASE_PASSWORD) or die(mysql_error());
mysql_select_db( DATABASE_NAME );
$Query = "SELECT * FROM film";
$Result = mysql_query( $Query );
$Return = "<movies>";
while ( $film = mysql_fetch_object( $Result ) )
$Return .= "<film><judul>".$film->JUDUL.
"</judul><deskripsi>".$film->DESKRIPSI.
"</deskripsi><genre>".$film->GENRE.
"</genre><produser>".$film->PRODUSER.
"</produser><produksi>".$film->PRODUKSI.
"</produksi><homepage>".$film->HOMEPAGE.
"</homepage><durasi>".$film->DURASI.
"</durasi><url>".$film->URL."</url></film>";
$Return .= "</movies>";
mysql_free_result( $Result );
print ($Return);
?>
And now I try to get the same result using coldfusion script.
At first I dont write the XML to file, I just cfoutput it just like
I do with PHP just print result but it doesnt work out with my
HTTPservice. Until I try to write it to XML file then coding my
httpservice to read directly from that XML file. here is my
coldfusion code.
<cfcomponent>
<cffunction name="a" returnType="Void" output="true"
access="remote">
<cfprocessingdirective suppresswhitespace="Yes">
<cfquery name="GetFilm" datasource="myCinemaData">
SELECT b.* FROM playing a, film b
WHERE a.kode_film=b.kode_film AND a.start >
<cfqueryPARAM value = "#DateFormat(Now())#"
CFSQLType = "CF_SQL_STRING">
</cfquery>
<cfxml variable="userXML">
<movies>
<cfloop query="GetFilm">
<cfoutput>
<film>
<judul>#GetFilm.JUDUL#</judul>
<deskripsi>#GetFilm.DESKRIPSI#</deskripsi>
<genre>#GetFilm.GENRE#</genre>
<produser>#GetFilm.PRODUSER#</produser>
<produksi>#GetFilm.PRODUKSI#</produksi>
<homepage>#GetFilm.HOMEPAGE#</homepage>
<durasi>#GetFilm.DURASI#</durasi>
<url>#GetFilm.URL#</url>
</film>
</cfoutput>
</cfloop>
</movies>
</cfxml>
</cfprocessingdirective>
<cffile action="write"
file="#expandPath(".")#\userXML.xml" output="#userXML#">
</cffunction>
</cfcomponent>
Because I need to create the XML files first I try to execute
this coldfusion script first using webservice before I execute my
Httpservice but the XML file creation is slower than the execution
of my httpservice afterthat so it shows an error that my XML file
isn't not available. What can i do? I've tried to show the output
using cfoutput and run that script directly on my httpservice just
like the way I use print result on PHP but it produce an
error.

... I try to execute this coldfusion script first using
webservice before I execute my Httpservice but the
XML file creation is slower than the execution of
my httpservice afterthat so it shows an error
that my XML file isn't not available.
Then it might help to apply a named lock to ensure that the
Httpservice runs only after the web service call is complete. For
example, apply an exclusive named lock on the code that calls the
web service and a readonly lock of the same name to the Coldfusion
code that interacts with the Httpservice.

Too many open socket connections causing ColdFusion to crash?

I’m currently working on an e-commerce site which sends and receives information to/from the client’s order management system via XML over a TCP/IP socket. It uses a very old java-based custom tag called CFX_JSOCKET (which appears to have been written in 2002) to open the socket, send the data, and get the response. The code that calls the custom tag and sends/receives data from the OMS pre-dates my working on the site, but its always worked, so I haven’t paid it much attention.
Back in the summer of 2009 we started experiencing issues with ColdFusion (v.7 on Window 2003 at the time) locking up on a more and more frequent basis, until it ultimately became a daily issue. After extensive research we narrowed the issue down to the communication between the web server and our client’s order management server. It seemed the issue with ColdFusion hanging was either related to there being too many connections open, or to these connections hanging and resulting in dead threads. This an educated guess based on a blog post I’d seen online, not actual monitoring of either CF or the TCP/IP connections. As soon as we dialed back the timeout on the CFX_JSOCKET tag from 20 seconds to 10, the issue disappeared, so we left it at that and moved on.
Fast forward to this January. The site is hosted at a new location, on a 64-bit Windows 2008 box running ColdFusion 9. Over the years traffic on the site has continued to grow. The nature of the clients business means that August and January are their business times of the year (back to school for college kids) and in January ColdFusion once again started locking up on an almost-daily basis.
One significant difference is that the address cleansing software that previously ran on the box and was used to verify shipping addresses is not available for 64-bit, so when we moved to the new server last summer, that task was moved to the client’s order management software and handled via XML like all other interaction with that system. However, while most XML calls to that server (order input, inventory check, etc) take under a second to complete, the address cleansing call regularly takes over 5 seconds to return data, and frequently times out.
Once we eliminated the address cleansing call from the checkout process, ColdFusion once again stopped locking up regularly. So it appears that once again it’s the communication between the web server and the order management server that’s causing problems. We currently have that address cleansing call disabled on the web site in order to keep ColdFusion from crashing, but that’s not a long term solution.
We don’t have, nor can I find online, the source code for the CFX_JSOCKET custom tag, so I decided I’d write some CF code utilizing the java methods to open the socket, send the data, get the response, and close the connection. My test code is working fine (under no load). However, in trying to troubleshoot an issue I had with it, I started monitoring the TCP/IP connections using TCPView. And I noticed that all the connections to the order management server, whether opened via the custom tag or my new code, remain open in either a TIME_WAIT or FIN_WAIT2 status for well over 2 minutes, even though I know for a fact that my new code is definitely closing the connection from the web server side.
They do all close eventually, but I’m wondering 1. Why they’re remaining open that long; 2. Is that normal; and 3. If all these connections remaining open could be what’s causing ColdFusion to choke.
Does this sound plausible? If so, does anyone have any suggestions/recommendations about how to fix it? My research seems to indicate this might be a matter of the order management system not closing the connection on its end, but I’m in way over my head, and before I go to client and tell them it’s their OMS causing the issue, I need to feel a little more confident that I’m on the right track.
Any help or advice would be very greatly appreciated. And thanks for taking the time to read through my long-winded explanation of the problem.
Set-up details:
ColdFusion Version: 9,0,0,251028 Standard
Operating System: Windows Server 2008
Java Version: 1.6.0_14
Java VM Name: Java HotSpot(TM) 64-Bit Server VM
Java VM Version: 14.0-b16
Thanks,
Laurie

Hi Laurie,
Not aware of custom tag called CFX_JSOCKET. I guess the process you described very well is consuming a resource then you are getting a problem. Trick is what parameter to adjust. Perhaps you are running out of one the threads in CFadmin > Server Settings > Request Tuning.
I expect if you enable CF Metrics logging where you can log the threads and other resources then you can find out which parameter needs adjusting. Let me know if you want some details on enabling CF Metrics. Perhaps others will have much better idea than me and help without the overhead of logging.
The other interesting thing is you are using CF9.0.0. Do you have some reasons for not being on updater1 CF9.0.1?
HTH, Carl.
PS I posted before however seems to have gone, just hope does not come back and then I have posted twice.

Censorship on Adobe ColdFusion forums - Open letter to the management of the Adobe ColdFusion forums

This is reproduced from its original location at http://cfmlblog.adamcameron.me/2013/06/censorship-on-adobe-coldfusion-forums.html; it is also posted on the relevant ColdFusion forum. Apologies for the cross-post, but the two forums have different membership, and I think it's relevant to both.
Open letter to the management of the Adobe ColdFusion forums
(I do not know how to contact you, but I will try to find out and send this to you directly as well, as a courtesy).
Hi.
I am a veteran user of your ColdFusion support forums. Over the last decade or so I have been visiting the site daily (indeed several times a day: I get notified when any post is made on any of your ColdFusion-centric forums), and answering as many of people's questions as I can. For the last few years it's been via the web UI so you can go check my participation, but prior to that I was using the forums via NNTP, and my participation during that period is less easy to quantify, but it's to the tune of a few thousand posts / answers to people's questions. I consider myself an asset to the forums, and the ColdFusion community. I mean this just as "for the record", rather than any attempt to inflate any sense of my worth.
However as of today - unless you take remedial action as I will go on to detail - I will be surrendering my membership of your forums, and ceasing all attempts to assist people there.
Why am I considering doing this? Well firstly I will reproduce a thread from your forums, then I will discuss it. Where possibly the quoted material below is as it was initially posted, and if it's not exactly as originally presented, this is an accident on my part. I have highlighted some points I wish to discuss with you, simply for ease of cross-reference.
I have confirmed with Jason Dean (12Robots) that is happy for me to quote him here. I did not attempt to contact the other participant: "grazan".
Below is a chronological reproduction of the thread (in its original form, anyhow):
cold fusion 9 500 Internal server error.
created by grazan
all of a sudden none of our cfm web pages work on a windows 8 server running iis 7 .... the
server shows no errors in the event viewer .... occasionally functionality comes back w/o doing
anything ...... cold fusion did have all the hotfixes updated a few months ago but i cant get to
the admin page to give what the version is
thxs
created by 12Robots
First, ColdFusion is one word.
Second, what is a WIndows 8 server?
Third, and most important, you have provided ZERO detail. We can't help you if you don't provide something other than "none of our cfm web pages work". ColdFusion has logs (<coldfusionDir>/logs) JRun has logs (<coldfusionDir>/runtime/logs). Even if the Windows event viewer shows nothing, there should be info in those log files about what is going on.
Good luck,
Jason
created by grazan
YOU KNOW JASON YOUR A FRICKING IDIOT ......
I DIDNT REALIZE THIS WAS A GRAMMATICALLY CORREDCT FORUM ...
THANKS FOR NO HELP
created by 12Robots
*you're
jason
created by Adam Cameron
Hahahahaha. Nice.
Adam
created by Adam Cameron
Well if you got over your misplaced indignation for a moment, let's see:
ColdFusion is what people will google for, so in the spirit of helping others who might have the same question as you later on, spelling it right will help the community.
Jason's observation that you give us absolutely nothing to go on so it's basically impossible to help you is a fairly poignant observation, right? You do want help? Right, so here's some suggestions:
Articulate your issue clearly, with sufficient detail that we can help you. Read this:
http://www.catb.org/esr/faqs/smartquestions.html
Secondly... being rude to someone like Jason who really is one of the most helpful people on
these forums is a pretty stupid idea. And just serves to make you look a bit of a dick. Esp. with the caps lock on.
But anyway, let's call that a false start. Give us the details of your issue, and we'll try to help.
Cheers.
Adam
At this point, the moderator started redacting earlier messages, as detailed below:
Redacted version of earlier message:
created by 12Robots
First, [Jason, please see forum guidelines]
[rest of message as above]
Redacted version of earlier message:
created by grazan
[please see forum guidelines]
Redacted version of earlier message:
created by Adam Cameron
Entire message redacted
Redacted version of earlier message:
created by Adam Cameron
[unnecessary comments removed - Adam please see forum guidelines]
Give us the details of your issue, and we'll try to help.
Cheers.
Adam
And now back to the live thread:
created by 12Robots
Forum admin,
You censored the comment "ColdFusion is one word"? Seriously?
I didn't realize that suggesting that someone spell the name of the product correctly was against the forum guidelines. I guess I could go look it up, but I will just unsubscribe and help out at Stack Overflow instead.
Good luck,
Jason
created by Adam Cameron
Please see how much I used to help out on these forums.
I'm outa here, but not before I complain about your dictatorial behaviour.
Censorial nazi idiot.
[The entire message above has now been redacted].
That's the end of the relevant part of the thread.
Clearly I wish to speak to you about this censorship your moderator is choosing to undertake.
Firstly, let me say that I understand the perception that forums require moderation. Personally I think this position is of dubious merit, but so be it: it's a common practice. And I generally understand when I see things that have been moderated, or when a moderator step in and advises that they consider someone's wording contravenes forum guideline. I understand all this.
However.
I think the behaviour of your moderator in this situation is unacceptable. Let me elaborate.
Firstly, The highlighted comment of Jason's was removed. This comment stated - correctly - that the correct spelling of ColdFusion is as one word, as per his guidance. This comment was censored/redacted by your moderator. For the life of me, applying my most "socially modest" mindset, I cannot see what was wrong with Jason's comment, and why it needed any follow-up on any description. It was accurate advice.
The original poster's response to Jason was indeed a bit gratuitous, but - really - so what? No-one is taking offence here, and there's nothing anyone reasonable could take offence at. The person is just being a bit childish in their response. And, I hasten to add, at their own expense, I think. I see not reason to have redacted what they said.
We now come to my responses. One entire response I made was redacted (I've only just noticed this, whilst proofreading this letter). A number of tracts was redacted from my own initial post on the thread. Here I was simply explaining why Jason said what he did, and why it's good advice. And it was good advice. Your moderator here has removed both good advice, and an explanation as to why it was good advice. Again, I cannot fathom why your moderator has done this.
Following on from this I back-up Jason's assertion that the original post was inadequate on detail for us to help. This too is accurate. I reiterated this to try to make the origial poster see that Jason wasn't simply being unhelpful - to the contrary - pointing out we need more information before we can help is very good initial advice here. Advice that has now been deleted.
Next is some slightly contentious wording on my part, I suppose... at least if one doesn't actually read what I say, instead simply zooming in on one word and assessing it out of context. I pointed out that being abusive and writing in all-caps is unnecessary, and makes the person look like a dick. Note I didn't say the person was a dick (that would be abuse... very mild though), I was saying that given the behaviour the person was engaging in, they could be perceived that way. Which is... accurate. And saying someone is a dick and suggesting they could be perceived as a dick are two different things. One is ad hominem attack (bad), one is simply an observation / guidance (not bad).
At this point Jason drew my attention to this censorship going on. And this is another thing that I think is inappropriate on the part of the moderator. I have little problem with them thinking that content on this thread needs censorship (whilst they are wrong, they are entitled to their opinion), to silently and anonymously redact people's posts is an inappropriate - and to be frank cowardly - handling of this situation. If the moderator has an issue with something written on the forums, the courteous and professional thing to do would be to advise the participants that they have overstepped. This would give us a chance to remediate the situation, or to simply disagree. Simply excising someone's work - because this is volunteer work we are engaging in here - is unacceptable.
If anything ought to have been censored from the thread it was my last comment. Whilst it was accurate, I did use harsh sentiment, I accept this. However in the given situation, I don't think I have been the most out-of-line participant in proceedings.
I would like you to remediate this situation, and here is how I would like you to do it.
Restore Jason's original post. There was no reason to censor it.
Restore grazan's all-caps post. It was doing no harm.
Restore my second post (not the one laughing at Jason's joke, the longer one I discuss above). Again, useful and accurate information was removed from this post, and there was simply no reason to have had done so.
You can leave my last comment redacted. Fair enough. Whilst I stand by what I said, it is unhelpful in the context of the thread.
I also want the moderator to be censured, and I would like them to apologise for their behaviour, by posting on that thread explaining that they understand their behaviour was inappropriate and unacceptable.
If they are a community volunteer, they should be dismissed from their position. They are clearly not capable of fulfilling this role in a professional, well-balanced manner.
If they are an Adobe staff person, then the censure will have to be sufficient, although I think they should be relieved from their duties as a forum moderator, as they are not up to the task at hand.
Talk to your other moderators and advise them they need to act with a sense of balance and professionalism when moderating the forums.
In return, I will continue my participation on the forums, and continue to help the ColdFusion community members where I can, in the spirit of goodwill and co-operation. I will also try to convince Jason to do the same.
If you cannot see right to resolve this situation appropriate, I will surrender my membership of the forums and cease helping your community.
You can reply to me either via a comment against this post, or via email ([email protected]). That said, see the caveats in my communications policy: I reserve the right to publish any communications on this topic as I see fit (within the bounds of common sense).
Thanks for your time.
Adam Cameron

Adam,
Comments from a kindred spirit...
I suggest you take a breather and go do something else for a few days or weeks. Don't stomp your feet and say "I'm done for good, I won't be back", because like it or not, some of the reason you're here is to benefit YOU, and if you do go cold turkey you'll miss that benefit.
In other words, "never say never".
Like you, I have been extremely frustrated by the running of the forum from time to time as well. Sometimes it's the quality of the forum software, sometimes it's the mix of other immature people who comment, sometimes it's just me. Usually it's not the moderation or actual running of the forum, but I do understand where you're coming from.
I have benefited greatly on several occasions just by taking a vacation from forum participation.
We all have to understand two things:
1. We're able to communicate here by the good graces of Adobe, who are first and foremost a business, trying to achieve their business goals. They'd rather not upset all the idiots, because unfortunately idiots have money to spend too.
2. Nobody's perfect.
I'm not sure about the specifics, but the moderators are generally also volunteers. See item 2 above.
Hope you don't choose to stop contributing to the community, as no matter what, your contribution is good for the world.
-Noel

Locking when using a component as an object in the application scope...

I have a component that I am building right now that hold
application settings that are stored in a database table. The
settings are maintained in a structure "variables.settings" within
the component and can only be accessed by get and set methods. I
use the following to create the instance of the object:
<cfset application.settings =
createObject("settings","component").init() />
Now when getting a setting I do not think locking is needed
as its just reading the value and I am not really concerned with a
race condition...
But when using the set method which will update the value of
the setting.... should I be locking that as technically the object
is in a shared variable scope? Or is it safe because its within the
cfc/object?
If locking is needed, would I need to lock when using the set
method? or can I just build the lock into the set method so that
its always there?

To disagree with craigkaminsky, I think you only need to lock
if you are
concerned about race conditions and what could happen during
a 'dirty
read' and|or conflicting writes.
A lot of developers have an old impression of ColdFusion that
one *must*
lock all shared scope variable access to maintain a stable
application.
This dates from the ColdFusion 4.5 days where there where
bugs in
ColdFusion that could cause memory leaks and eventual
application
instability if one did not lock shared scope reads and
writes. This has
long been fixed, but the advice persists.
So now it is only a matter of your data and what would happen
if one
user read an old value while it was in the process of being
updated by
another user. Or could two users be updating the same value
at the same
time and cause conflict. If either of those two statements
are true,
then yes you should use locking as required by your
application.
But if they are both false and it does not matter that user A
might get
the old value microseconds before user B changes it. Or there
is no
concern with user A changing it once and user B changing it
again to
something different moments later without knowing the user A
has already
changed it. Then locking is probably unnecessary.
There can be a cost to over locking shared variable writes
and|or reads.
Every time one creates a lock, one is single threading some
portion of
ones code. Depending on how the locking is done, this single
threading
may only apply to individual users or it may apply to every
single user
on the entire server. Either way, too much of this in the
wrong places
can create a significant bottle necks in ones application if
too many
user requests start piling up waiting for their turn through
the locked
block of code.

Wierd ColdFusion erro : Error occurred while processing request.

Hi there ,
I am a graduate student and new to ColdFusion.I started working on this already developed project by someone couple of years ago , and the client wants some changes to be done.so i went ahead and did some small modifications to the appearance of the form(insertdata.cfm page) like adding some more options to a drop down menu , changing the label names and so on and am very sure this changes would not have effected the application in any way.And the place where the message says the error can be , i didnt even touch that part.Now after 4 days i start getting this weird error saying " Error Occurred While Processing Request
The system has attempted to use an undefined value, which usually indicates a programming error, either in your code or some system code.
Null Pointers are another name for undefined values."
And this happens randomly not everytime i access the website or different webpages.Here are the errors.
The error occurred in /export/web/virtual/web3_unt_edu/cps/webaccess/sites/Amarillo/index.cfm: line 8
5 :   SELECT UserName,Password FROM user_data WHERE UserName=
6 :   <cfqueryparam value="#FORM.UserName#" maxlength="8">
7 :     AND Password=
8 :   <cfqueryparam value="#FORM.Password#" maxlength="8">
9 :   </cfquery>
10 :   <cfif MM_rsUser.RecordCount NEQ 0>
I tried adding " cfsqltype="cf_sql_clob" " in cfqueryparam also on my friends advice , but it doesnt work out.
2nd ERROR
The error occurred in /export/web/virtual/web3_unt_edu/cps/webaccess/sites/Amarillo/InsertData.cfm: line 13
11 :   <cflocation url="#MM_failureURL#" addtoken="no">
12 : </cfif>
13 : <cfquery name="rsDay" datasource="cps">
14 : SELECT days FROM days
15 : </cfquery>
3rd ERROR
The error occurred in /export/web/virtual/web3_unt_edu/cps/webaccess/sites/Amarillo/InsertData.cfm: line 27
25 : ORDER BY ethnicity ASC
26 : </cfquery>
27 : <cfquery name="rsHospitals" datasource="cps_amarillo">
28 : SELECT *
29 : FROM hospitals
Can anyone help me with this. I have to get the modifications done in 2 weeks.
Thank you
Craj

Hi Mak
         I can get the stack trace for now , but here is my complete code , may be this ll give u complete idea .........
The index page where i am getting the first error
<cfif IsDefined("FORM.UserName")>
<cfset MM_redirectLoginSuccess="menu.cfm">
<cfset MM_redirectLoginFailed="../../fail.htm">
<cfquery name="MM_rsUser" datasource="cps_amarillo">
    SELECT UserName,Password FROM user_data WHERE UserName=
<cfqueryparam value="#FORM.UserName#" maxlength="8">
    AND Password=
<cfqueryparam value="#FORM.Password#" maxlength="8">
</cfquery>
<cfif MM_rsUser.RecordCount NEQ 0>
    <cftry>
      <cflock scope="Session" timeout="30" type="Exclusive">
        <cfset Session.MM_Username=FORM.UserName>
        <cfset Session.MM_UserAuthorization="">
      </cflock>
      <cfif IsDefined("URL.accessdenied") AND true>
        <cfset MM_redirectLoginSuccess=URL.accessdenied>
      </cfif>
      <cflocation url="#MM_redirectLoginSuccess#" addtoken="no">
      <cfcatch type="Lock">
        
      </cfcatch>
    </cftry>
</cfif>
<cflocation url="#MM_redirectLoginFailed#" addtoken="no">
<cfelse>
<cfset MM_LoginAction=CGI.SCRIPT_NAME>
<cfif CGI.QUERY_STRING NEQ "">
    <cfset MM_LoginAction=MM_LoginAction & "?" & XMLFormat(CGI.QUERY_STRING)>
</cfif>
</cfif>
<cfinclude template="../../../Connections/cps_amarillo.cfm">
<cfif IsDefined("FORM." & "UserName")>
<cfscript>
    MM_valUsername=Evaluate("FORM." & "UserName");
    MM_fldUserAuthorization="";
    MM_redirectLoginSuccess="menu.cfm";
    MM_redirectLoginFailed="../../fail.htm";
    MM_dataSource=MM_cps_amarillo_DSN;
    MM_queryFieldList = "UserName,Password";
    if (MM_fldUserAuthorization IS NOT "") MM_queryFieldList=MM_queryFieldList & "," & MM_fldUserAuthorization;
</cfscript>
<cfquery datasource=#MM_dataSource# name="MM_rsUser" username=#MM_cps_amarillo_USERNAME# password=#MM_cps_amarillo_PASSWORD#>
SELECT #MM_queryFieldList# FROM user_data WHERE UserName='#Replace(MM_valUsername,"\'","
","ALL")#' AND Password='#FORM.Password#'
</cfquery>
<cfif MM_rsUser.RecordCount GREATER THAN 0>
    <cfscript>
      // username and password match - this is a valid user
      Session.MM_Username = MM_valUsername;
      if (MM_fldUserAuthorization IS NOT "") {
        Session.MM_UserAuthorization = MM_rsUser[MM_fldUserAuthorization][1];
      } else {
        Session.MM_UserAuthorization = "";
      if (IsDefined("accessdenied") AND true) {
        MM_redirectLoginSuccess = Evaluate("accessdenied");
    </cfscript>
    <cflocation url="#MM_redirectLoginSuccess#" addtoken="no">
</cfif>
<cflocation url="#MM_redirectLoginFailed#" addtoken="no">
<cfelse>
<cfscript>
    MM_LoginAction = CGI.SCRIPT_NAME;
    if (CGI.QUERY_STRING NEQ "") MM_LoginAction = MM_LoginAction & "?" & CGI.QUERY_STRING;
</cfscript>
</cfif>
<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Amarillo Login Screen</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<script type="text/JavaScript">

</script>
</head>
<body>
<div id="Layer2" style="position:absolute; left:26px; top:112px; width:683px; height:56px; z-index:2">
<div align="right"><font size="+6"><strong><font color="#999999" size="5" face="Verdana, Arial, Helvetica, sans-serif">Seniors
    / Volunteers for Childhood Immunization<br />
    </font></strong></font><font color="#999999" size="5"><strong><font size="4" face="Verdana, Arial, Helvetica, sans-serif">Web
    Access Database</font></strong></font></div>
</div>
<div id="instructions" style="position:absolute; left:160px; top:182px; width:259px; height:30px; z-index:3"><font color="#999999" size="5"><strong><font size="4" face="Verdana, Arial, Helvetica, sans-serif">Please
enter your user name and password...</font></strong></font></div>
<div id="LayerLogin" style="position:absolute; left:427px; top:182px; width:310px; height:94px; z-index:4">
<form ACTION="<cfoutput>#MM_loginAction#</cfoutput>" name="form1" id="form1" method="POST">
    <p><img src="../../../images/image14.gif" alt="" name="UserNameImg" width="150" height="21" border="0" id="UserNameImg" />
      <input name="UserName" type="text" id="UserName" size="15" maxlength="15" />
      <br />
      <img src="../../../images/image15.gif" alt="" name="PasswordImg" width="150" height="21" border="0" id="PasswordImg" />
      <input name="Password" type="password" id="Password" size="17" maxlength="15" />
    </p>
    <p align="right">
      <input name="Submit" type="submit" id="Submit" onclick="MM_validateForm('UserName','','R','Password','','R');return document.MM_returnValue" value="Log In!" />
    </p>
</form>
</div>
</body>
</html>
I checked it again and again , but the code seems to work well on a local host ..... but not whn i upload it to server. Please let me know where i am goin wrong.
Thank you

Coldfusion 10 Enterprise with Tomcat + mod_jk and Apache2 experiencing child process hangups

I am experiencing the most bizarre thing that so far I am unable to reproduce with my own visits to the site.
After restarting Apache2 my cacti graphs show that the child processes increment consistently over the course of a day without dropping back down during off hours. This behavior eventually leaves the website inaccessible...
Looking at server-status it is filled with Ws (Sending Reply) and GET calls to my cfm applications :
Current Time: Tuesday, 22-Jul-2014 16:33:00 PDTRestart Time: Monday, 21-Jul-2014 22:51:12 PDTParent Server Generation: 0Server uptime: 17 hours 41 minutes 48 secondsTotal accesses: 194844 - Total Traffic: 3.8 GBCPU Usage: u201.55 s34.46 cu0 cs0 - .37% CPU load3.06 requests/sec - 63.2 kB/second - 20.6 kB/request73 requests currently being processed, 4 idle workers
WWWWWWWWWWWWWWWWWWWWWWWWWKWWWWWWWWWWWWWWWWWCWWWWW_WWWWWWCWWW_WWW _WKW...KWW.W_KWW....W........................................... ................................................................ ................................................................
Scoreboard Key:
"_" Waiting for Connection, "S" Starting up, "R" Reading Request,
"W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup,
"C" Closing connection, "L" Logging, "G" Gracefully finishing,
"I" Idle cleanup of worker, "." Open slot with no current process
Srv
PID
Acc
M
CPU
SS
Req
Conn
Child
Slot
Client
VHost
Request
0-0
15074
0/46/1370
W
7.39
46158
0
0.0
0.44
23.89
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=7000 HTTP/1.1
1-0
11563
0/47/468
W
2.75
58867
0
0.0
4.69
13.64
192.168.1.10
www.mysite.edu
GET /catalog/index.cfm?courselist=list&dept=&searchc=PEHW%20148
2-0
12906
0/65/884
W
7.30
54536
0
0.0
0.80
14.62
192.168.1.10
www.mysite.edu
GET /athletics/resources/nwaacc-athlete-of-the-week/ HTTP/1.1
3-0
13840
0/41/1085
W
4.01
51162
0
0.0
0.56
20.57
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=17001 HTTP/1.1
4-0
15928
0/20/1635
W
5.40
43715
0
0.0
0.06
41.37
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=37000 HTTP/1.1
5-0
18774
0/19/2387
W
0.33
34564
0
0.0
0.24
52.70
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=19009 HTTP/1.1
6-0
4321
0/36/6612
W
3.61
13200
0
0.0
0.28
129.74
192.168.1.10
www.mysite.edu
GET /directory/index.cfm?directory=department&deptexp=28011 HTT
7-0
13077
0/0/808
W
0.42
54383
0
0.0
0.00
24.81
192.168.1.10
www.mysite.edu
GET /directory/index.cfm?directory=department&deptexp=6005 HTTP
8-0
16488
0/118/1673
W
12.39
40692
0
0.0
1.30
35.44
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=31003 HTTP/1.1
9-0
10726
0/15/110
W
0.58
61963
0
0.0
0.05
1.83
192.168.1.10
www.mysite.edu
GET /directory/index.cfm?directory=All&index=Q HTTP/1.1
10-0
13154
0/1/688
W
0.00
54165
0
0.0
0.00
16.83
192.168.1.10
www.mysite.edu
GET /directory/?directory=All&firstname=Patrick&lastname=Murphy
11-0
12590
0/25/516
W
4.45
55851
0
0.0
0.76
11.19
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=4000 HTTP/1.1
12-0
12551
0/13/454
W
1.84
56055
0
0.0
0.38
10.00
192.168.1.10
www.mysite.edu
GET /directory/index.cfm?directory=department&deptexp=20001 HTT
13-0
13333
0/23/626
W
3.86
53189
0
0.0
0.57
11.66
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=31005 HTTP/1.1
14-0
12410
0/13/387
W
2.70
56484
0
0.0
0.42
10.55
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=6003 HTTP/1.1
15-0
13162
0/70/389
W
10.81
53114
0
0.0
0.86
5.60
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=6005 HTTP/1.1
16-0
12309
0/22/275
W
2.23
56878
0
0.0
0.43
3.91
192.168.1.10
www.mysite.edu
GET /directory/?directory=department&deptexp=20005 HTTP/1.1
17-0
13163
0/57/341
W
11.85
53120
0
0.0
1.38
6.49
192.168.1.10
www.mysite.edu
GET /catalog/index.cfm?courselist=list&dept=&searchc=ENGR%26%20
I have straced a hung process to only find the following :
strace -p 6472
Process 6472 attached - interrupt to quit
read(23,
Another interesting bit of info, none of these GET requests make it into my access.log file which I find very peculiar as well.
Here are my CF Specs
Server Details
Server Product ColdFusion
Version 10,0,13,287689
Tomcat Version 7.0.23.0
Edition Enterprise
Serial Number
Operating System UNIX
OS Version 3.2.0-65-generic
Update Level /opt/coldfusion10/cfusion/lib/updates/chf10000013.jar
Adobe Driver Version 4.1 (Build 0001)
JVM Details
Java Version 1.6.0_29
Java Vendor Sun Microsystems Inc.
Here are my Apache2 Specs
Server version: Apache/2.2.22 (Ubuntu)
Server built:   Apr 17 2014 21:49:25
Server's Module Magic Number: 20051115:30
Server loaded: APR 1.4.6, APR-Util 1.3.12
Compiled using: APR 1.4.6, APR-Util 1.3.12
Architecture:   64-bit
Server MPM:     Prefork
threaded:     no
    forked:     yes (variable process count)
Server compiled with....
-D APACHE_MPM_DIR="server/mpm/prefork"
-D APR_HAS_SENDFILE
-D APR_HAS_MMAP
-D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
-D APR_USE_SYSVSEM_SERIALIZE
-D APR_USE_PTHREAD_SERIALIZE
-D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
-D APR_HAS_OTHER_CHILD
-D AP_HAVE_RELIABLE_PIPED_LOGS
-D DYNAMIC_MODULE_LIMIT=128
-D HTTPD_ROOT="/etc/apache2"
-D SUEXEC_BIN="/usr/lib/apache2/suexec"
-D DEFAULT_PIDLOG="/var/run/apache2.pid"
-D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
-D DEFAULT_LOCKFILE="/var/run/apache2/accept.lock"
-D DEFAULT_ERRORLOG="logs/error_log"
-D AP_TYPES_CONFIG_FILE="mime.types"
-D SERVER_CONFIG_FILE="apache2.conf"
I am hoping this is no normal behavior for Coldfusion 10.
Many thanks in advance.

We're having the same problem, although with CF11.

Finding errors in a Coldfusion source file at compile time

My application is built using Coldfusion, Flex and MySQL as backend. I am using FlexBuilder 3 for editing/compiling the Flex source(MXML and Actionscript) files. For the Coldfusion(CF) source files(cfm and cfc files), I am using Coldfusion Builder to edit the source files since it is an IDE for Coldfusion so using that I can see the CF syntax highlighted and text which is commented. After, I complete editing the Coldfusion source files in Coldfusion Builder I close them in CF Builder. Then, the application is compiled using the Flex Builder, but I cannot see any syntax errors if they exist in the Coldfusion source files and I learn of the errors at run time that there is a tag nesting error.
After, I edit the Coldfusion source files I close them in CF Builder so that Flexbuilder can compile the project and there is no issue of CF source file being locked due to being open in CF builder.
1. What can I do to ensure I see the CF errors at compile time?
2. Is there a better/another method than what I am doing to work on a project which has Flex/CF source files?
Any advice would be appreciated.
Thanks

While you are 'compiling' your application since it has a FLEX front end that is compiled. This actually does nothing with the ColdFusion files, or at least I can't imagine what it would be doing with those files.
CFML is just-in-time compiled at run time. And I do not believe using it in a Flex builder application would change this.
What I would do in this situation is develop the back-end and front-end separately. Build the CFML, test it with simple test cases run through direct browser requests of the CFML or some test harness CFML that executes your back-end logic and runs it through it paces. Once that is built and tested. Then attach the FLEX front end to it and test that.

Code (not sql) injection by hackers via coldfusion

Does anyone have any information on how hackers might inject code into my coldfusion files. I am having a problem with hackers installing javascript links to their trojans inside the actual pages of my site. I run the server with many different sites on it and the injections are ONLY happening on the coldfusion sites. I tried to search for code injection coldfusion information through the search engines and this forum but didn't find anything. What potential holes in my coldfusion code would allow a hacker to inject code into the actual files on the server? I am mainly seeing the code injected into application.cfm itself so that the links are displayed on every page. Guess these hackers are familiar with coldfusion.

The only way that hackers can modify your ColdFusion Code is to get access to your server so that they can actually modify the CFM and/or CFC files that are stored upon it. Unfortunately, on a shared-hosting setup that's not terribly difficult to do. And, most programmers neglect to consider the file access permissions (other than the "x"ecutable bit in Unix/Linux) that they attach to any particular file when they upload them.
You need to be certain that all of the files in your directories, and the directories themselves, are locked-down so that no one can modify them, and so that no one but "you 'n the web server" can see what they contain. (Remember, shared-hosting companies give away shared-hosting accounts like water, and it's sometimes effortless for "the web-site next door" to see much more than it ought to be able to see... and maybe, to modify something!)
If you're running on a Linux host, see if the server appears to support Access Control Lists (ACLs) and whether you as a secure-shell user can establish them. If so, this will allow you to restrict access more thoroughly than the "owner/group/world" permissions-mask system would allow. The equivalent mantra with regards to Windows hosts is different in details only. One way or the other, implement the "principle of least privilege."
The larger problem, of course, remains with us: the end-user's computer, and the shameless reality that the aforesaid user is probably an all-powerful Administrator of a Windows "Home Edition" something-or-other ... whose entire system, therefore, is a sitting duck with no backups. You can't do anything at all about that.

How to disable erroneous template lock checks in Dreamweaver CC?

I am building a Coldfusion & Bootstrap based app. I have been happily working on it previously in DW CS6. Upon starting work in DW CC I keep getting a "Making this change would require changing code that is locked by a template or a translator. The change will be discarded" pop-up message every time I try to edit the index.cfm document.
This project does not use DW templates and neither have I *ever* used DW templates. I have searched for solutions, all of which point to using "Modify > Templates > Detach from template", but since this file *isn't* a template, this option is greyed out and so not available.
How do I switch off this check as it is completely stopping me from using DW CC with CFM files that use JavaScript libraries (i.,e. just about everything I do that is CF based!). I realise CF support is being deprecated in DW, but surely it should not be completely prevented from working? Is this a bug?

The error message is applicable for Libraries as well.
Have a look here http://help.adobe.com/en_US/dreamweaver/cs/using/WSc78c5058ca073340dcda9110b1f693f21-7e49a .html
Try commenting the JS Library code and see if it helps.

ColdFusion MX 7 locking up

Similar Messages

Maybe you are looking for