Differences between Monitor and Decrypt actions in Decryption Policies
Hi Everybody,
Currently I'm working in my first WSA (S170) implementation and some questions has popped up while I was configuring the Decryption policies. The main question here is:
What are the differences between "monitor" and "decrypt" in the URL Filtering options. As I understand the "decrypt" action allows the WSA to decrypt the packet and treats it like a plain HTTP packet applying the Access Policies, malware inspection and so on. Then I do not really know what the Monitor option does, I'm assuming that it does not decrypt the packet and only checks the destination URL and to allow or not the connection.
Thanks in advance for your collaboration.
Jose M. Cortes H.
If you set it for Decrypt, it always decrypts stuff in that category.
If you set it to monitor, then other criteria in the policy are used for whether to decrypt or not, such as Web Reputation...
Here's the flow, which I pulled from the online help:
https://wsaip:port/help/wsa_help/index.html?Decryption_policies11.html#wp1208329
Similar Messages
-
Re: The difference between update() and doFinal() in ClassCipher
Hi Guys,
I found this topic,
The difference between update() and doFinal() in ClassCipher
during a Google Search. I need your help, because I'm working on a project for an university exam.
It's about a Client FTP that sends and received files with the content crypted.
I'm using DES Encryption with "DES/CBC/PKCS5Padding".
I have this doubt: when it's correct to uso the doFinal method? At the last block of the file, or after it? (for encryption)
And during the decryption, how can I use the result of the doFinal operation?Reposting with {code} tags
capagira87 wrote:
Ok these are the functions:
public void CodificaInvia (String cd, String filename, SecretKey Key) // it opens, codes and sends to the server the content of the file 512 bytes per time
int returncode=0;
Socket DataSock = null;
FileInputStream fis = null;
byte [] text = null;
try {
DataSock = new Socket (servAddress,22);
ObjectInputStream cin = new ObjectInputStream (DataSock.getInputStream());
ObjectOutputStream out = new ObjectOutputStream (DataSock.getOutputStream());
byte[] iv = new byte[] { (byte) 0x8E, 0x12, 0x39, (byte) 0x9C, 0x07, 0x72, 0x6F, 0x5A };
AlgorithmParameterSpec paramSpec = new IvParameterSpec(iv);
Cipher cipher = Cipher.getInstance("DES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, Key, paramSpec);
fis = new FileInputStream (cd+File.separator+filename);
int size = fis.available();
if ((size%8)==0)
text = new byte [size];
} else {
do {
size++;
} while ((size%8)!=0);
text = new byte [size];
fis.read(text,0,fis.available());
byte [] ciphertext = cipher.doFinal(text);
out.writeInt(ciphertext.length);
int numblock = ciphertext.length/512;
int resto = ciphertext.length%512;
out.writeInt(numblock);
out.writeInt(resto);
byte [] tempblock = new byte [512];
for (int conta=0; conta<numblock; conta++)
for (int i=0; i<512; i++)
tempblock=ciphertext[(conta*512)+i];
out.write(tempblock);
out.flush();
if (resto > 0) // this block works if the file size is not multiple of 512
java.util.Arrays.fill (tempblock, (byte) 0);
int h= numblock*512;
for (int i=0; i<resto; i++)
tempblock[i]=ciphertext[h+i];
out.write (tempblock);
out.flush();
System.out.println ("OK!");
} catch (Exception e)
e.printStackTrace();
public void RicezioneDecodifica (String filename, SecretKey Key) // in this function I receive the file blocks, I decrpyt them and I save the decrypted text into a file
Socket DataSock = null;
byte [] buffer=null; // it saves the received data
String Plaintext = new String (); // it saves the deciphered text
try {
ServerSocket ss2 = new ServerSocket (TRANSMISSION_PORT);
DataSock = ss2.accept();
ObjectOutputStream out = new ObjectOutputStream (DataSock.getOutputStream());
ObjectInputStream cin = new ObjectInputStream (DataSock.getInputStream());
byte[] iv = new byte[] { (byte) 0x8E, 0x12, 0x39, (byte) 0x9C, 0x07, 0x72, 0x6F, 0x5A };
AlgorithmParameterSpec paramSpec = new IvParameterSpec(iv);
Cipher dcipher = Cipher.getInstance("DES/CBC/PKCS5Padding");
dcipher.init(Cipher.DECRYPT_MODE, Key, paramSpec);
int size = cin.readInt();
int numblock = cin.readInt();
int resto = cin.readInt();
if ((size%8)!=0)
do{
size++;
} while ((size%8)!=0);
int ByteLetti=0; // counter of read bytes
buffer = new byte [size];
for (int conta=0; conta<numblock; conta++)
int a=cin.available();
byte [] tempblock = new byte [a];
cin.read(tempblock, 0, a);
for (int i=0; i<a; i++)
buffer[ByteLetti+i]=tempblock[i];
ByteLetti=ByteLetti+a;
byte[] texttmp=dcipher.update(tempblock);
String tmp = new String (texttmp, "UTF8");
Plaintext=Plaintext+tmp;
if (resto>0)
int a = cin.available();
byte [] tempblock;
if ((a%8)>0)
do {
a++;
} while ((a%8)!=0);
tempblock = new byte [a];
cin.read(tempblock, 0, cin.available());
byte[] texttmp = dcipher.doFinal(tempblock);
String tmp = new String (texttmp, "UTF8");
Plaintext = Plaintext+tmp;
ObjectOutputStream oos = new ObjectOutputStream (new FileOutputStream (filename));
oos.writeChars(Plaintext);
oos.flush();
oos.close();
} catch (Exception e)
e.printStackTrace(); -
What is difference between modify and update i am using
hi
what is difference between mofify and update
my requiremen is to have three condition checkec while mofifying or updating from a internal table
the three fields are
cus no
status
date these all are primary key in the database table
so which sould i use modify or update
there might be entry already existing in database table or new entry to be created if already existin it should check on the primary keys and updatat if not it should add a record
pls suggest whihc to use and how to implement the check on teh threee primary key
like if modify ztable from table it_test
now where condition ? can be used or not with modify? and if yes how
if not should i use update will update create a new entry if no entry is there and please give syntex
regards
AroraHi Nishant Arora,
Modify: It works in performing two actions.
They are: Insert + Update.
For Example If a record that is exited in database, so you are modifying that record, it updates that particular record.
Similarly, If the is not existed in the database, you are modifying it, it inserts a new record.
Update: Update means just it updates the status, I mean it only updates the record. It doesn't inserts any new record if that particular record is not present in the database.
These are the cases you need to write these statements.
Syntaxes: :
Go through this links please.,
http://help.sap.com/saphelp_nw04/helpdata/en/e7/968aa8b2384dd9835f91e7f8470064/content.htm
http://help.sap.com/saphelp_nw70/helpdata/en/fc/eb35eb358411d1829f0000e829fbfe/content.htm
Reward points if useful
Cheers,
Swamy Kunche
Edited by: Swamy Kunche on Jun 11, 2008 2:41 PM -
What is Difference between SXMB_MONI and SXMB_MONITOR?
what is Difference between SXMB_MONI and SXMB_MONITOR?
Can any explain to this question.please?Hello,
Both are same.
SXMB_MONI is area menu which will contain all multiple transactions pertaining to monitoring.
SXMB_MONI contains some functions viz monitoring for Bridging, Archived Msgs, Job overview, persistence layer analysis.
SXI_monitor directly leads to the message monitoring for the IS, which is part of the SXMB_MONI.
SXI_MONITOR directly executes the monitoring report.
Thanks,
Satya -
What is the difference between SWF and F4V in the context of Streaming or progressive Download?
Hello everybody,
I am absolutely a beginner in working with Captivate and furthermore my technological know how is not that good.
So, I have problems to understand if the export formats SWF and F4V are both capable to be published in the Internet as streaming video and as progressive Download? Well so, I do not really understand the difference between streaming and progessive download either?
Furthermore I was asking myself if this issue depends on how I imported flash videos (there are these two options) in my Captivate project during the production phase?
I would be very thankful for some helping information!
Greetings,
Mareike the beginnerWelcome to our community
I'm not certain I fully understand the differences myself, but will toss out what I believe to be true about the formats. Hopefully, if I'm incorrect in my bellief, someone with more definitive knowledge will chime in.
It was explained to me a couple of years back and is my understanding that "streaming" only applies to a video based format such as F4V, FLV and it doesn't apply to SWF. With SWF, you may specify a preload value. So when the SWF transmits from the web server to the PC, a certain percentage has to be received before play begins. But that's not streaming. It's preloading.
For streaming to occur, the web server establishes a communication channel between the server and the destination PC. This channel is monitored to see what speed is in use. Only enough information is then transmitted to be comfortable at that speed. If the speed improves during the connection, the server serves data at a faster rate. If the connection degrades, the information transmitted is also scaled back so as to accommodate the lower speed.
With SWF, after it has all been downloaded, a savvy user is able to poke around in their temporary internet files and save the SWF for play later. With streaming, this isn't possible because as the stream is viewed, it evaporates from memory.
Seriously hoping others will chime in here to confirm or deny this.
Cheers... Rick
Helpful and Handy Links
Begin learning Captivate 5 moments from now! $29.95
Captivate Wish Form/Bug Reporting Form
Adobe Certified Captivate Training
SorcererStone Blog
Captivate eBooks -
What's the difference between thunderbolt and mini displayport?
I'm trying to connect my Macbook with a monitor and I'm thinking of what cable to get. I will have to connect using a (Thunderbolt to HDMI cable) or a (mini displayport to HDMI cable).
I was wondering what's the difference between Thunderbolt and mini displayport
Thanks@bontistic: it is not true that only the Macbook Air supports Thunderbolt. All models(!) support thunderbolt: also the Macbook Pro's and Mini's. Eg.: http://www.apple.com/nl/macbookpro/features.html#thunderbolt
My Macbook Pro from 2011 already supported Thunderbolt... -
Hi All difference between abap and hr-abap urgent pls
Hi All difference between abap and hr-abap urgent pls
Hello,
To add to the above points regarding infotypes
Infotypes stand apart in HR and manage a volume of data in HR domain..they are unique to HR module ranging from basic employee information to time management and finally the custom infotypes.....
Payroll and other monetory activities related to an employee also form a vital part of the HR module....
while considering Reports..in HR data is mainly with respect to infotypes and the concept of PAKEY...7 key fields which uniquely defines any record in an infotype is used..with Pernr(employee number),Begda(begindate) and Endda(enddate) form an integral part of the key..Based on the time constraints(1,2,3) of an infotype the keys are judged (to retrieve data from an infotype)
In ABAP HR we also have lots of predefined function modules that can be used..eg:go to se37..put 'HR*' and press F4...
finally to update an HR infotype record we use the function module hr operation rather than direct updates...also there are standard audit trail reports that monitors various activities such as insert/modify/delete operations on an hr infotype record...
Pls revert back for clarity and reward if helpful
Regards
Byju -
What's the difference between Routing and Service Callout in ALSB?
I am puzzled by that.
what's the difference between them.
Or what's the situation should use Routing, and that of service callout?There is little difference between routing and service callout.
Routing is symbolizes the transition of request thread to a response thread starts. (in OSB every invocation of proxy is undertaken by different request and response threads ). So by this definition, there can be only one route node in a pipeline.
Service call out is also used for similar actions as route node , but in pipeline. So service callout can be either in request pipeline (request thread) or in response pipeline (response thread ) . So in a proxy you can have multiple ServiceCallouts but only one route node.
There are some other slight differences.
Manoj -
Difference between BAPI and IDocs
hello all
what is difference between BAPI and IDocsHi,
BAPI
One of the big plusses for BAPIs is that the interface and function are not supposed to change. This is a big plus when you do upgrades or hot packs because the transaction can change (format, required inputs etc) which means you then need to update the call transaction.
Some of the BAPIs are better documented and easier to use than others. You usually need to perform the BAPI that actually does the COMMIT after you call your BAPI.
The Program coding for calling a BAPI is usually cleaner than setting up the screen flow etc for the Call Transaction.
You don't need to worry about special data circumstances interrupting the normal data flow of the screens and causing errors because of that.
BAPIs probably have better performance since they don't do the screen flow processing.
In general if the BAPI exists for the transaction you want to perform and you can figure out how to use it the BAPI is probably the best way to go.
BAPIs are a subset of the RFC-enabled function modules, especially designed as Application Programming Interface (API) to the SAP business object, or in other words: are function modules officially released by SAP to be called from external programs.
IDOC
IDocs are text encoded documents with a rigid structure that are used to exchange data between R/3 and a foreign system. Instead of calling a program in the destination system directly, the data is first packed into an IDoc and then sent to the receiving system, where it is analyzed and properly processed. Therefore an IDoc data exchange is always an
asynchronous process. The significant difference between simple RFC-calls and IDoc data exchange is the fact, that every action performed on IDocs are protocolled by R/3 and IDocs can be reprocessed if an error occurred in one of the message steps.
While IDocs have to be understood as a data exchange protocol, EDI and ALE are typical use cases for IDocs. R/3 uses IDocs for both EDI and ALE to deliver data to the receiving system. ALE is basically the scheduling mechanism that defines when and between which partners and what kind of data will be exchanged on a regular or event triggered basis. Such a set-up is called an ALE-scenario.
The philosophical difference between EDI and ALE can be pinned as follows: If we send data to an external partner, we generally speak of EDI, while ALE is a mechanism to reliable replicate data between trusting systems to store a redundant copy of the IDoc data. The difference is made clear, when we think of a purchase order that is sent as an IDoc. If we send the purchase order to a supplier then the supplier will store the purchase order as a sales order. However, if we send the purchase order via ALE to another R/3 system, then the receiving system will store the purchase order also as a purchase order.
Regards,
Bhaskar -
Differences between MD01 and MD02.
Dear SAP Experts,
Please tell me the various differences between MD01 and MD02.
In which specific cases, MD01 should be used??
Thanks and regards,
Kaushik Basu.Hi,
1. Md01 is the MRP Run for plant by giving planning scope.
2. Md02 is the mrp run for single Material from plant .
Also refer following T code for your information
Menu Nodes
Transaction
Activity
Master Data
MD25
Create planning calendar
MD26
Change planning calendar
MD27
Display planning calendar
MDSA
Display BOM explosion number
MDSP
Edit BOM explosion number
MEQ1
Maintain quota file
OPPP
Explode BOM by date
MDUS
Display project assignment
MDUP
Process project assignment
MDL1
Create production lot
MDL2
Change production lot
MDL3
Display production lot
Planning
MD20
Create planning file entry
MD21
Display planning file entry
MDAB
Set up planning file entry in background
MDRE
Check planning file entry
MD01
Total planning online
MDBT
Total planning in background
MD03
Single-item, single-level planning
MD02
Single-item, multi-level planning
MD43
Interactive single-item planning
MD50
Multi-level, make-to-order planning
MD51
Multi-level project planning
MF52
Display planning table
MF50
Change planning table
MF57
Planning table by MRP lists
MF51
Planning table by production list
Evaluations
MD04
Stock/requirements list
MD07
Collective access of stock/requirements lists
MD05
MRP list
MD06
Collective access of MRP lists
MDLD
Print MRP list
MD45
Planning result
MD46
Collective access of planning result
MD44
Planning situation for a material
MD47
Planning situation for a product group
MD48
Cross-plant planning situation
MD4C
Order report
MD09
Pegged requirements
CO46
Order progress
Planned Order
MD11
Create planned order
MD12
Change planned order
MD13
Individual access of planned order
MD16
Collective access of planned orders
MD14
Individual conversion of planned order into purchase requisition
MD15
Collective conversion of planned orders into purchase requisitions
MDUM
Convert planned order into purchase requisition in background
CO40
Convert individual planned order into production order
CO41
Collective conversion of planned orders into production orders
CO48
Partial conversion of planned order into production order
COR7
Individual conversion of planned order into process order
COR7_PC
Collective conversion of planned orders into process orders
COR8
Partial conversion of planned order into process order
MDVP
Collective availability check
MDAC
Execute action for planned order
Hope it clear to u.
Edited by: Atul Zod on Nov 21, 2008 6:59 AM -
Differences Between Object And System Privileges
Hi,
Whats the difference between object and system privileges in oracle?
Cheers
PaulSystem Privileges
A system privilege is the right to perform a particular action, or to perform an action on any schema objects of a particular type. For example, the privileges to create tablespaces and to delete the rows of any table in a database are system privileges.
Schema Object Privileges
A schema object privilege is a privilege or right to perform a particular action on a specific schema object:
For example, the privilege to delete rows from the departments table is an object privilege.
Some schema objects, such as clusters, indexes, triggers, and database links, do not have associated object privileges. Their use is controlled with system privileges. For example, to alter a cluster, a user must own the cluster or have the ALTER ANY CLUSTER system privilege.
A schema object and its synonym are equivalent with respect to privileges. That is, the object privileges granted for a table, view, sequence, procedure, function, or package apply whether referencing the base object by name or using a synonym.
Granting object privileges on a table, view, sequence, procedure, function, or package to a synonym for the object has the same effect as if no synonym were used. When a synonym is dropped, all grants for the underlying schema object remain in effect, even if the privileges were granted by specifying the dropped synonym. -
Difference between P0000 and PA0000?
Hello Everyone,
I'm a fresher(chunnu munnu) in this SAP-ABAP world.
I have started learing ABAP recently.
I have a serious doubt. I'll be obliged if anyone spend some time to solve my doubt and help me to improve further.
<u>Question :</u>
What's the difference between P0000 and PA0000?
What's the difference between table with an Header and without and Header?
( as in VBLK and VBRK and all..... and what's the fun in using a table with an header..) With Internal Table.
Kindly explain with example.
Thanks!
Regards,
Tejas.Hi
P0000 HR Master Record: Infotype 0000 (Actions)
PA0001 HR Master Record: Infotype 0001 (Org. Assignment)
for second question
http://www.sap-img.com/abap/difference-between-work-area-and-header-line.htm
Regards
Shiva -
What is the difference between rfc and idoc
hi,
My name is rambabu.can anyone of u please tell me the main differences between idoc and rfc??
Thanks in Advancehi Ramesh,
Remote Function Calls (RFC) and data exchange through IDoc
message documents. RFC makes direct and synchronous calls of a program in
the remote system. If the caller is an external program it will call an
RFC-enabled function in R/3 and if the calling program is the R/3 system
it will call an RFC-function in another R/3-system or it will call a
non-R/3 program through a gateway-proxy (usually rfcexec.exe). BAPIs are
a subset of the RFC-enabled function modules, especially designed as
Application Programming Interface (API) to the SAP business object, or in
other words: are function modules officially released by SAP to be called
from external programs.
IDocs are text encoded documents with a rigid structure that are used to
exchange data between R/3 and a foreign system. Instead of calling a
program in the destination system directly, the data is first packed into
an IDoc and then sent to the receiving system, where it is analyzed and
properly processed. Therefore an IDoc data exchange is always an
asynchronous process. The significant difference between simple RFC-calls
and IDoc data exchange is the fact, that every action performed on IDocs
are protocolled by R/3 and IDocs can be reprocessed if an error occurred
in one of the message steps.
While IDocs have to be understood as a data exchange protocol, EDI and ALE
are typical use cases for IDocs. R/3 uses IDocs for both EDI and ALE to
deliver data to the receiving system. ALE is basically the scheduling
mechanism that defines when and between which partners and what kind of
data will be exchanged on a regular or event triggered basis. Such a
set-up is called an ALE-scenario.
Regards
Sreeram.G.Reddy -
Difference between rsnast00 and rseout00
hi,
Can any one say me the difference between RSNAST00 and RSEOUT00.The ABAP RSNAST00 is the standard ABAP, which is used to collect unprocessed NAST message and to execute the assigned action.
RSNAST00 can be executed as a collector batch run, that eventually looks for unprocessed IDocs. The usual way of doing that is to define a batch-run job with
transaction SM37. This job has to be set for periodic processing and start a program that triggers the IDoc re-sending.
ABAP program RSNAST00 (which is scheduled to run on a periodic basis) reads the NAST records and creates outbound IDocs for each one, based on the ALE configuration. It writes these IDocs to the IDoc tables (EDIDC, EDID4, EDIDS). If the partner profile is set to "Send immediately", then the ALE layer will send the IDocs at this time.
If the partner profile is set to "Collect IDocs", then the ALE layer will not send the IDocs until the ABAP program RSEOUT00 (also scheduled for periodic execution) runs. This program calls the ALE layer to send all collected IDocs of any specified message types. -
What are the differences between tracing and hierarchical profiler?
There are many terms used by people, I am just wondering what are the differences between tracing and hierarchical profiler? Aren't they the same thing?
Thanks a lot.Instrumentation and tracing are two different things; in fact they belong to two different categories - one's a thing the other's an activity.
Tracing is following the execution path of a program. Tracing shows us the the calls a program makes, perhaps the internal choices it makes (ifs and whiles), exceptions thrown, etc,
Instrumentation is code we build into our program to produce a record of its status. There are different techniques, from using DBMS_APPLICATION_INFO calls to monitor status to writing log tables or files. Instrumentation can be used to generate a trace; it can do profiling; it can provide information reports on outputs and exceptions.
In my opinion DBMS_TRACE and DBMS_HPROF are not instrumentation, because they are external to the program under investigation, rather than built into it. However, there is an obvious overlap between the insight they provide and what we might do with our own logging.
Cheers, APC
PS
970992 wrote:
you are not a stranger for me.Really? I don't believe we've met. I'm pretty certain I don't know anybody whose name is just a number.
Maybe you are looking for
-
Setting up USB disks connected to Airport Extreme
I took two different USB drives, formatted one drive with two partitions of Mac OS Extended (journaled) and the other drive formatted NTFS. After attaching the drives to the AE, I established how I wanted to share the devices and set up accounts to a
-
I PURCHASED AN APPLICATION FROM APPLE STORE. AN ERROR OCCURRED WHILST DOWNLOADING IT. IT WANTS ME TO REVERT BACK TO PURCHASES IN ITUNES, AS SOON AS I TAP ON "INSTALL" IT SHOWS THE SAME MESSAGE AGAIN. HOW DO I SOLVE IT PLEASE? IT SHOWS ON MY STATEMENT
-
Different files using variable substitution
Hi, I've one scenario in which I'll be getting information like below Cust_Data 1..1 VKORG 0..unbounded KUNNR 1..1 NAME1 0..1 LAND1 0..1 now I am supposed to create various files containing customer data co
-
Vmtoolsd not starting correctly when started as service
Hello, I have installed Archlinux in a VMware virtual machine and tried to follow the instructions in the wiki but there are a few things which I don't understand. If I enable vmtoolsd in systemd systemctl enable vmtoolsd the system will pause for a
-
Outbound delivery PGI getting done though GR not posted
Hi Experts I have an issue wher in the process is SO is created then a PR is automatically created for the SO , this PR isconverted to PO then GR is being done . Now once there is a GR an outbound delivery is created automatically via jobs using the