Extends security

Hi folks,
I'm trying to get a reasonable cluster security solution working using Kerberos. I want to be able to secure nodes joining the cluster and secure things
like Extends connections via the proxies. So far the cluster node security piece seems to be working fine (using the standard Coherence security).
To secure the Extends connection I've tried using the Oracle example solution from here [http://wiki.tangosol.com/pages/viewpage.action?pageId=1343626 |http://wiki.tangosol.com/pages/viewpage.action?pageId=1343626 ]
(even though it doesn't seem ideal due to the number of security checks) but it causes a problem when the Extends proxy node itself is
authenticated with the cluster. The example solution uses an EntitledNamedCache class that calls checkAccess() in every method. In this
checkAccess() method the code fetches the current subject from what it says is the "calling thread". The problem is that it actually returns the subject
that the Extends node used to authenticate against the rest of the cluster - not the subject associated with the Extends call. Has anyone tried something
similar and got it to work? Like I say - this only seems to be a problem if you have your Extends node authenticating with the rest of the cluster. I guess all it needs is a successful way to get the subject details from the Extends call.
Another interesting issue is that if you obtain a Subject from the Coherence Security.login(..) call and then call Security.runAs(..) the subject
is POF serialized and sent over the wire. If you obtain the same subject by using standard JAAS login, and call Security.runAs(..) it's not serialized. Odd.
I'm using Java 1.6 and Coherence 3.5.1b461. Any help/comments would be much appreciated. Many Thanks,
Reon Campbell.

Hi Reon,
The root problem seems to be that somehow the Subject is not being passed by Extend for you.
Extend will always run in the context of a Subject if one is available. The security framework (standard Coherence security) will only log in if there is no current Subject. So, if the Subject is passed by Extend, the proxy will execute the message in a Subject.doAs(). The security framework checks to see if there is a current Subject and, if so, it will use it. Otherwise it will call the configured callback handler to log in. If in EntitledNamedCache you are seeing the security framework Subject, it means no Subject was passed and the security framework called the callback handler.
Also, it shouldn't matter whether you use standard JAAS or not because the implementation of Security.login and Security.runAs just use JAAS.
Extend only passes the Subject when a Channel is created, which is the first time a cache reference is retrieved. After that, the Subject associated with the Channel will always be used. My guess, is that you are not running in the context of a Subject when you get that first cache reference. Here is some sample code:
        Subject subject = Security.login("manager", "password".toCharArray());
        NamedCache cache   = null;
        try
            cache = (NamedCache) Security.runAs(subject, new PrivilegedAction()
                public Object run()
                    NamedCache cache = getNamedCache("dist-test");
                    return cache;
        catch (Exception e)
            // failed if security exception
            e.printStackTrace();
        cache.put("key", "value");The final issue for you is that the built in SubjectPofSerializer does not serialize public or private credentials and PrincipalPofSerializer only serializes principal name, so the built in serializers will not serialize a Kerberos ticket. The only solution currently is to write a custom serializer.
Regards,
David
Coherence Development

Similar Messages

OS 10.7, SMB Connection, Change to Unicode with Extended Security on Windows Server 2008 Standard

Hi All, I've searched Google, and I've also contacted Apple Support with no luck: I want to implement unicode with extended security on Windows Server 2008 Standard server shared folders so that Lion can connect normally (i.e. Finder->Go->Connect to Server->IP Address or server name) to SMB shares and access files. I'm lacking information; has anyone actually implemented unicode with extended security? If so, how?
Thanks in advance.
Tom

Thanks for the reply aorlich. Do you mean enable file sharing on my Mac? With file sharing enabled, I still cannot get to my Windows 7 shares, although the files on my Mac do become available to Windows. Thanks again.

Jcifs.smb.SmbException: NTLMv2 requires extended security

Hi,
I'm implemeting SSO for my application deployed in tomcat using JCIFS. It was working for some time and after more sessions like > 3 its throwing error like
jcifs.smb.SmbException: NTLMv2 requires extended security (jcifs.smb.client.useExtendedSecurity must be true if jcifs.smb.lmCompatibility >= 3)
at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)I'm using jcifs 1.3.7 and jdk 1.5. Also my web.xml is like
<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE web-app
PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN"
"http://java.sun.com/dtd/web-app_2_3.dtd">
<web-app>
<display-name>Tomcat Documentation</display-name>
<filter>
<filter-name>NtlmHttpFilter</filter-name>
<filter-class>jcifs.http.NtlmHttpFilter</filter-class>
<init-param>
<param-name>jcifs.http.domainController</param-name>
<param-value>10.202.0.41</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.lmCompatibility</param-name>
<param-value>1</param-value>
</init-param>

<init-param>
<param-name>jcifs.util.loglevel</param-name>
<param-value>3</param-value>
</init-param>

<init-param>
<param-name>jcifs.smb.client.domain</param-name>
<param-value>DOMAINAME</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.username</param-name>
<param-value>1233</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.password</param-name>
<param-value>P@ssw0rd1</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>NtlmHttpFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<description>
Tomcat Documentation.
</description>
<servlet>
<servlet-name>test1</servlet-name>
<servlet-class>TestServlet</servlet-class>
</servlet>
<servlet>
<servlet-name>uploadexcel</servlet-name>
<servlet-class>TestUpload</servlet-class>
</servlet>
<servlet>
<servlet-name>testServlet</servlet-name>
<servlet-class>SampleTest</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>test1</servlet-name>
<url-pattern>/test</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>uploadexcel</servlet-name>
<url-pattern>/uploadexcel</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>testServlet</servlet-name>
<url-pattern>/testServlet</url-pattern>
</servlet-mapping>

<error-page>
<exception-type>java.lang.NullPointerException</exception-type>
<location>/error.jsp</location>
</error-page>
</web-app>Please let me know whether any cofiguratio settings needs to be made
Regards,
Sukuimar

Hi,
Thanks for suggestion. After making it true i got below error.
note: NtlmPasswordAuthentication.java was java class obtanied with JIFS utility
jcifs.smb.SmbException
java.lang.NullPointerException
     at jcifs.smb.NtlmPasswordAuthentication.nTOWFv1(NtlmPasswordAuthentication.java:197)
     at jcifs.ntlmssp.Type3Message.<init>(Type3Message.java:177)
     at jcifs.smb.NtlmContext.initSecContext(NtlmContext.java:75)
     at jcifs.smb.SmbSession.sessionSetup(SmbSession.java:347)
     at jcifs.smb.SmbSession.send(SmbSession.java:235)
     at jcifs.smb.SmbTree.treeConnect(SmbTree.java:161)
     at jcifs.smb.SmbSession.logon(SmbSession.java:171)
     at jcifs.smb.SmbSession.logon(SmbSession.java:164)
     at jcifs.http.NtlmHttpFilter.negotiate(NtlmHttpFilter.java:189)
     at jcifs.http.NtlmHttpFilter.doFilter(NtlmHttpFilter.java:121)
     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:186)
     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:157)
     at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:214)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:198)
     at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:152)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:929)
     at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160)
     at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
     at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
     at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
     at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)
     at java.lang.Thread.run(Thread.java:595)
     jcifs.smb.NtlmContext.initSecContext(NtlmContext.java:90)
     jcifs.smb.SmbSession.sessionSetup(SmbSession.java:347)
     jcifs.smb.SmbSession.send(SmbSession.java:235)
     jcifs.smb.SmbTree.treeConnect(SmbTree.java:161)
     jcifs.smb.SmbSession.logon(SmbSession.java:171)
     jcifs.smb.SmbSession.logon(SmbSession.java:164)
     jcifs.http.NtlmHttpFilter.negotiate(NtlmHttpFilter.java:189)
     jcifs.http.NtlmHttpFilter.doFilter(NtlmHttpFilter.java:121)Even i tried to change it to
<init-param>
<param-name>jcifs.smb.lmCompatibility</param-name>
<param-value>0</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.useExtendedSecurity</param-name>
<param-value>false</param-value>
</init-param>
But still its giving previous error. So, should i upgrade it to 1.3.8. Also am i hitting any bug in 1.3.7 please let me know
Regards,
Sukumar
Edited by: Sukumar-Java-Beginner on Mar 30, 2009 11:39 PM

UPnP Extended Security? Please Help.

Hello i was recently trying to complete this turorial:
http://www.youtube.com/watch?v=o9vJedWSyw8
as my internet is bad on black ops 2, (strict) and my Bt does not allow me to port forward properly :/
I have tried it but i got a error, so i got in touch with the author of the video and recieved this message,
"from the looks of it you are setting up the right ports, but your router isnt allowing you to forward them. This will most likely be caused by a security setting on your router. There should be some option on the games and application sharing page, that disables extended security. That should fiix the problem if you can find it."
So how can i disable this UPnP Extended Security, or Extended Security?
I have a Bt Home Hub 2.
Thanks,

Elhadi wrote:
I know how to turn it off, im trying to disable something called extended security so it lets me use portmapper
On the Home Hub 3 B you get the following screen (distorted by cut and paste) on the Port Forwarding , UPnP tab
The Home Hub 2 may not have this facility.
Wireless Broadband Home Network Port Forwarding System Basic Settings
Configuration Supported Applications UPnP DMZ Firewall
UPnP
Universal Plug and Play (UPnP) enables a wide range of applications, such as games and messaging, and devices to connect to each other and work together.
UPnP:   On
             Off
Extended UPnP Security:   On
                                      Off
                                                                                                                             Apply    Cancel
It is recommended to keep the Extended UPnP security enabled to ensure the security of your home network.

Extending security privileges

Just after a bit of advice on security...
If I build a form in LiveCycle, am I able to extend security priviliges in Acrobat to allow users of the free Reader software to password protect the form?
Or can I set the form up so that when the user comletes and saves it, it automatically password protects it?
The second option is my preferred choice, just not sure if either are possible.
Any help is much appreciated.
Thanks,
Chris

Thank you for your reply.
In that case I'll expand on what we want to achieve and hopefully someone can propose a solution.
We send our clients some forms which they complete, lock/flatten and then send back to us. We now need to ask our clients to enter their bank details onto the form. We want to make this as secure as possible and asking the client to email us back using an encrypted email isn't really viable, hence we wanted the form to password protect itself on completion/saving.
Is there anything else we could put in place to make this work?
Thanks again

Kerberised CIFS / SMB Extended Security

Does anyone have any info when kerberised CIFS or SMB extended security is likely to be introduced into the S7000 series?
I had some info from a Sun Engineer that fixes relating to this would be coming in 2009.Q4 (which became 2010.Q1)
Example CR's related to this are:
6791642
6791165
6791210
Amongst others.
Does anyone know if this is on the radar for a future release of the 7000 series appliance kit?
Alan

Hi Alan
I just wondered if the lack of kerberised CIFS or SMB extended security is causing a problem I've been trying to get around.
We have a share set up on our 7310, to host MSI packages to be deployed via a Windows Server 2008 R2 group policy object, the packages are failing to install with errors pointing to permission problems. I've checked through the permissions and all seems well, with the computer account having full access to the share.
The packages deploy fine when they are hosted on a Windows based server, from what I've read this could be a kerberos authentication problem or some other missing feature from the CIFS implementation on the Sun. I can connect to the share on the Sun once logged onto the Windows computer and install the packages.
Thanks
Matthew

Extend Security FAQ Example Broken?

I have been trying out the Extend Seurity example in the Coherence FAQ here http://coherence.oracle.com/pages/viewpage.action?pageId=1343626
Basically the way it works is that the Extend proxy uses a class scheme that uses a sub-class of com.tangosol.net.cache.WrapperNamedCache to wrap the "real" cache. This sub-class can then override methods you want to secure to do an access check before forwarding the method call to the wrapped cache.
Now, this all appeared to work fine until I tried to execute queries against the cache. The queries will execute against the "wrapped" cache which resides in the storage enabled nodes of the cluster, as the Extend proxies are storage disabled. I started to get back errors that the methods I was querying on did not exist in the objects I had put into the cache.
E.G. Missing or inaccessible method: com.tangosol.util.Binary#getIntValue[]
The reason for this it turns out is that the "put" method of the WrapperNamedCache in the extend proxy gets instances of com.tangosol.util.Binary for its key and value parameters as the Extend Client has POF serialized the values to send over the wire. When WrapperNamedCache calls "put" on the real cache presumably it send these com.tangosol.util.Binary values. It then appears that these are serialized again to go over the wire to the real cache so the underlying real cache ends up containing a serialized value of a serialized value and hence my queries fail.
Is this "double" serializing due to me mis-configuring the caches, or am I stuck with it?
Obviously it is pretty impractical to de-serialize the objects in the methods of the WrapperNamedCache sub-class.
Presumably making the Extend proxies storage enabled nodes of the cluster wouldn't make any difference either.
I am beginning to give up on ever having a secure Coherence cluster as so many things related to security in Coherence seem broken.
Banging my head in frustration...
JK.

I haven't been able to get this to work, and I'm using Noah's updated code.
I'm trying to implement row-level security using the EntitledNamedCache, so basically I'll be intercepting calls to get() and checking the client's privileges against the data they're trying to read.
The problem - as Jonathan experienced - is that inside the EntitledNamedCache the super.get() call to the WrapperNamedCache returns a com.tangosol.util.Binary instead of the actual object that was put() in.
Is there a way for WrapperNamedCache.get() to return the actual object?

How to extend secure network and guest network.

Sorry if this has been covered but I couldn't find it.
I have an Airport Extreme running the 7.6.3 firmware. Once Comcast gets their act together it will be running off a static IP. I want to wirelessly extend my guest WiFi and my secure WiFi. What do I need to get this done? Do I need to get an Express for each network? Or can another Extreme repeat both networks? Eventually I hope we will have Cat5 running to the repeater's location but that could be a long way off.
Thanks!

I cannot get the web page to open when I do a search on the SMC8014, but it appears that this is a modem/router or gateway type of device.....which will not allow the Guest Network feature to be enabled on the AirPort Extreme.
I did find this, which confirms that the SMC is a modem/router or gateway....not what you want.
http://www.speedguide.net/routers/smc-smc8014-biz-business-cable-gateway--534
The solution is to find out from SMC or your Internet Service Provider whether or not the 8014 can be configured to operate in "Bridge Mode".....which would then allow you to configure the AirPort Extreme to operate as the main router on the network. This would allow the Guest Network option on the AirPort Extreme to be enabled correctly.
Or better yet.....ask your ISP for a simple modem.......not a modem/router or gateway type of device.
So assuming this is all compatable (or I get compatable equipment), I can extend both networks with 1 express or 1 extreme?
That is correct.

Extending & securing my network using AX

I have a 2Wire wireless modem at the house I've just moved in. Its encryption is WEP and I think it's easily guessable. I'd like to use my AirPort Express unit to extend this network and make it more secure using WAP2 as I had in my old house. Is that possible? How to?
I tried to connect my AX to a nearby power outlet and even though AirPort Utility found it, I couldn't get beyond the orange blinking. I can see both networks (my AX and the 2Wire), but I can't connect to my AX. I can modify the AX configuration and everything, so maybe I'm doing something wrong?
Thanks.
JJ

I'd like to use my AirPort Express unit to extend this network and make it more secure using WAP2 as I had in my old house. Is that possible?
In order to extend the 2Wire's wireless network, you would have to configure both the 2Wire & AirPort Express Base Station (AX) into a Wireless Distribution System (WDS). Unfortunately, very few non-AirPort routers are WDS-compatible so it will be very unlikely that you will be able to extend the 2Wire with the AX.

OIM: Extending Security Outside of the Enterprise

o.k., long story short, we have an installation of OIM 10.1.4 governing our enterprise security. we have many custom Java J2EE applications registered as Partner Applications on the domain, some using the SSO SDK, and others using MOD_OSSO. everything is working just fine within the enterprise, on our primary security domain. so, pretending our domain is "secure.com", we have "https://app1.secure.com", "https://anotherapp.secure.com", etc., and everyone is playing nicely together.
however, as our company grows and expands, we are starting to get requests from external organizations to integrate via SSO with our security enterprise. again, they are outside of our enterprise, with completely different servers and applications, and would not / could not be on our "secure.com" domain. i don't know all the details, but their applications have their own internal user base, security, etc...
now, i do understand there would be issues around synchronizing user stores, etc., but putting that aside for a minute... is there any way to "extend the reach" of our enterprise security (using Oracle technologies or other...), such that once someone has presented valid credentials on our "secure.com" server, i could return them to "othercompany.com" as a valid user...?
obviously, i can think of Java code i could write that passes an encrypted value around, like Oracle does, but writing my own security code doesn't necessarily sound like a promising option, especially when experts have already written software like this.
so, given a primary user store at our location, and federated user stores elsewhere on other domains, how might i extend our enterprise security and SSO infrastructure safely outside our network?
thanks,
.rich

Hi rhoward,
In most cases, I would say, from a practical standpoint, the answer to your question is "yes".
I suppose that it might be possible to cobble together your own federation endpoint :)...
The thing is that OASIS specifies a number of different "profiles" (=~usage scenarios), and some of them can get pretty complicated, with re-directs going all over the place.
The benefit of using a commercial federation "product" would be that assuming you picked the right one, it would provide the pieces for all of the profiles that you need to support (I don't know which ones, because that will depend on what you need).
It's been awhile since I've worked directly in the federation space, but there were basically 3 "players" awhile ago, Oracle (OIF), RSA (FIM) and Ping Identity. Sun had a federation product as part of their "FAM" product line, but I don't know what the status of that is now.
So, it all depends on what you need. FYI, among the OASIS profiles, the XASP is probably the least complicated, basically just a request-response, but integrating that into a WAM can be a challenge.
Jim

Unable to follow links in pdf document which use asynchronous pluggable protocol on Windows unless we disable extended security completely (Reader 11.0.7) - is there any other way round this?

We have a pdf document which contains links of the format appname://some/path.
This is using Windows Asynchronous Pluggable Protocols which we have defined in the registry so these links should launch the application with the path as an argument.
If we disable enhanced security in Reader 11.0.7 then this works - otherwise it just fails to do anything.
With enhanced security on, we get warning and select trust this site for all pdfs.
Adobe then stores the first part of the path i.e. for appname://some/path it will store path in [HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\11.0\TrustManager\cDefaultLaunchURLPerms].
Don't get warning after that but the application still doesn't launch if enhanced security is enabled.

Apologies was mislead - it's not enhanced security which is causing the issue, it is protected mode.

OWB Security Model Using WBSecurityServiceImpl

Hi,
I'm currently trying to implement the extended security model using the WBSecurityServiceImpl package in OWB v10.2.0.2.
However I'm having a few difficulties in creating user roles using this method as I do not have a complete list of OBJECT_TYPE_ID's and OPERATION_TYPE_ID's - does anyone know where I can get hold of these?
Any help with this would be much appreciated.

Hi,
I'm currently trying to implement the extended security model using the WBSecurityServiceImpl package in OWB v10.2.0.2.
However I'm having a few difficulties in creating user roles using this method as I do not have a complete list of OBJECT_TYPE_ID's and OPERATION_TYPE_ID's - does anyone know where I can get hold of these?
Any help with this would be much appreciated.

SAP Management Console security

Not sure if this is the correct section so apologies if not.
Does anyone know how to prevent just anyone using SAP management Console?
For example, if someone downloads it from SAP marketplace onto their PC, they can run it and enter instance info and see what is going on for that instance.
They can look at log files etc.
Is it possible to prevent anyone viewing this info?

I am having the feeling you might want to read sap note [1439348 - Extended security settings for sapstartsrv|https://service.sap.com/sap/support/notes/1439348]
And nobody would have to download mmc from service marketplae, it is much simpler. All you need to do is to call http://<yourserver>:50013
But with the default configuration one cannot stop anything without proper authentication.
Kind regards, Michael

I have erased hard drive before I sell using installation CD.Is that now secure?

Hi, to anyone who would kindly advise on secure erasing of data on my G4 Flat panel OS X 10.1.2 Mac hard drive.
This is what I have done prior to disposing of it.
Mac OS X Install disc>Disc utility>hard drive>OS Extended>Erase.
I suppose I would like to feel that I can now safely go ahead and sell/donate the mac.
Les

Thanks noondaywitch for your help .
But with OS X 10.1.2 Install disc >Disc Utility....:'' >OS Extended>security options>zero out data>erase ".
I could only see ...OS Extended>Erase.No options.
But I will unbox the G4 again to double check to- morrow.
If your suggestion not available -then that's all I can do.
Thanks again
Les

Total lock-ups with fan running - translate system.log file please!?

Hi, all. My late 2005 2.3 gig dual G5 has been experiencing random lock ups for as long as I can remember. My system is up to date and I have tested each pair of the 5 gigs of ram that I have and the system freezes with each pair. It can happen at any time, when I am doing absolutely nothing, for example, overnight. I am at my wits end!
Here's the system log file for the latest freezes. Can anyone tell me what's going on here??? I really need to get to the root of this problem. Thanks so so much in advance.
Apr 12 17:32:52 Marc-Weinbergs-Computer kernel[0]: AFP_VFS afpfs_Reconnect: connect on /Volumes/Macintosh HD failed 89.
Apr 12 17:32:52 Marc-Weinbergs-Computer kernel[0]: AFP_VFS afpfs_unmount: /Volumes/Macintosh HD, flags 524288, pid 62
Apr 12 17:44:46 Marc-Weinbergs-Computer /Library/Application Support/FLEXnet Publisher/Service/11.03.005/FNPLicensingService: Started\n
Apr 12 17:44:46 Marc-Weinbergs-Computer /Library/Application Support/FLEXnet Publisher/Service/11.03.005/FNPLicensingService: This service performs licensing functions on behalf of FLEXnet enabled products.\n
Apr 12 18:01:06 Marc-Weinbergs-Computer KernelEventAgent[62]: tid 00000000 received unknown event (256)
Apr 12 18:01:49 Marc-Weinbergs-Computer KernelEventAgent[62]: tid 00000000 received unknown event (256)
Apr 12 18:08:29 Marc-Weinbergs-Computer diskarbitrationd[69]: SDCopy [1056]:36091 not responding.
Apr 12 18:16:18 Marc-Weinbergs-Computer KernelEventAgent[62]: tid 00000000 received unknown event (256)
Apr 12 18:16:53 Marc-Weinbergs-Computer KernelEventAgent[62]: tid 00000000 received unknown event (256)
Apr 12 19:24:12 Marc-Weinbergs-Computer ntpd[191]: time reset -0.650307 s
Apr 13 01:05:45 Marc-Weinbergs-Computer ntpd[191]: time reset -0.496917 s
Apr 13 03:15:03 Marc-Weinbergs-Computer cp: error processing extended attributes: Operation not permitted
Apr 13 07:15:03 Marc-Weinbergs-Computer postfix/postqueue[1778]: warning: Mail system is down -- accessing queue directly
Apr 13 03:15:03 Marc-Weinbergs-Computer cp: error processing extended attributes: Operation not permitted
Apr 13 15:53:53 Marc-Weinbergs-Computer KernelEventAgent[62]: tid 00000000 received unknown event (256)
Apr 13 15:53:54 Marc-Weinbergs-Computer KernelEventAgent[62]: tid 00000000 received unknown event (256)
Apr 13 22:15:48 localhost kernel[0]: standard timeslicing quantum is 10000 us
Apr 13 22:15:47 localhost mDNSResponder-108.6 (Jul 19 2007 11: 33:32)[63]: starting
Apr 13 22:15:48 localhost kernel[0]: vmpagebootstrap: 506550 free pages
Apr 13 22:15:47 localhost memberd[70]: memberd starting up
Apr 13 22:15:49 localhost kernel[0]: migtable_maxdispl = 70
Apr 13 22:15:49 localhost kernel[0]: Added extension "com.firmtek.driver.FTATASil3132E" from archive.
Apr 13 22:15:49 localhost kernel[0]: Added extension "com.firmtek.driver.Sil3112DeviceNub" from archive.
Apr 13 22:15:49 localhost kernel[0]: Copyright (c) 1982, 1986, 1989, 1991, 1993
Apr 13 22:15:49 localhost kernel[0]: The Regents of the University of California. All rights reserved.
Apr 13 22:15:49 localhost kernel[0]: using 5242 buffer headers and 4096 cluster IO buffer headers
Apr 13 22:15:49 localhost kernel[0]: AppleKauaiATA shasta-ata features enabled
Apr 13 22:15:49 localhost kernel[0]: DART enabled
Apr 13 22:15:47 localhost DirectoryService[75]: Launched version 2.1 (v353.6)
Apr 13 22:15:49 localhost kernel[0]: FireWire (OHCI) Apple ID 52 built-in now active, GUID 001451ff fe1b4c7e; max speed s800.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:48 localhost lookupd[71]: lookupd (version 369.5) starting - Sun Apr 13 22:15:48 2008
Apr 13 22:15:49 localhost kernel[0]: USBF: 20.590 OHCI driver: OHCIRootHubPortPower bit not sticking (1). Retrying.
Apr 13 22:15:49 localhost kernel[0]: Extension "com.microsoft.driver.MicrosoftKeyboardUSB" has no kernel dependency.
Apr 13 22:15:49 localhost kernel[0]: AppleSMUparent::clientNotifyData nobody registed for 0x40
Apr 13 22:15:49 localhost kernel[0]: Security auditing service present
Apr 13 22:15:49 localhost kernel[0]: BSM auditing present
Apr 13 22:15:49 localhost kernel[0]: disabled
Apr 13 22:15:49 localhost kernel[0]: rooting via boot-uuid from /chosen: 82827EDF-0263-3B93-BEED-4B114E820B85
Apr 13 22:15:49 localhost kernel[0]: Waiting on <dict ID="0"><key>IOProviderClass</key><string ID="1">IOResources</string><key>IOResourceMatch</key><string ID="2">boot-uuid-media</string></dict>
Apr 13 22:15:49 localhost kernel[0]: Got boot device = IOService:/MacRISC4PE/ht@0,f2000000/AppleMacRiscHT/pci@9/IOPCI2PCIBridge/k2-sat a-root@C/AppleK2SATARoot/k2-sata@0/AppleK2SATA/ATADeviceNub@0/IOATABlockStorageD river/IOATABlockStorageDevice/IOBlockStorageDriver/ST3320620AS Media/IOApplePartitionScheme/AppleHFS_Untitled1@10
Apr 13 22:15:49 localhost kernel[0]: BSD root: disk0s10, major 14, minor 12
Apr 13 22:15:49 localhost kernel[0]: jnl: replay_journal: from: 8451584 to: 11420160 (joffset 0x952000)
Apr 13 22:15:50 localhost kernel[0]: AppleSMU -- shutdown cause = 3
Apr 13 22:15:50 localhost kernel[0]: AppleSMU::PMU vers = 0x000d00a0, SPU vers = 0x67, SDB vers = 0x01,
Apr 13 22:15:50 localhost kernel[0]: HFS: Removed 8 orphaned unlinked files
Apr 13 22:15:50 localhost kernel[0]: Jettisoning kernel linker.
Apr 13 22:15:50 localhost kernel[0]: Resetting IOCatalogue.
Apr 13 22:15:50 localhost kernel[0]: Matching service count = 1
Apr 13 22:15:50 localhost kernel[0]: Matching service count = 1
Apr 13 22:15:50 localhost kernel[0]: Matching service count = 1
Apr 13 22:15:50 localhost kernel[0]: Matching service count = 1
Apr 13 22:15:50 localhost kernel[0]: Matching service count = 1
Apr 13 22:15:50 localhost kernel[0]: Matching service count = 3
Apr 13 22:15:50 localhost kernel[0]: NVDANV40HAL loaded and registered.
Apr 13 22:15:50 localhost kernel[0]: PowerMac112ThermalProfile::start 1
Apr 13 22:15:50 localhost kernel[0]: PowerMac112ThermalProfile::end 1
Apr 13 22:15:50 localhost kernel[0]: SMUNeo2PlatformPlugin::initThermalProfile - entry
Apr 13 22:15:50 localhost kernel[0]: SMUNeo2PlatformPlugin::initThermalProfile - calling adjust
Apr 13 22:15:50 localhost kernel[0]: PowerMac112ThermalProfile::adjustThermalProfile start
Apr 13 22:15:50 localhost kernel[0]: IPv6 packet filtering initialized, default to accept, logging disabled
Apr 13 22:15:50 localhost kernel[0]: BCM5701Enet: Ethernet address 00:14:51:61:ee:78
Apr 13 22:15:50 localhost kernel[0]: BCM5701Enet: Ethernet address 00:14:51:61:ee:79
Apr 13 22:15:51 localhost lookupd[86]: lookupd (version 369.5) starting - Sun Apr 13 22:15:51 2008
Apr 13 22:15:51 localhost kernel[0]: jnl: replay_journal: from: 21611008 to: 7857152 (joffset 0x952000)
Apr 13 22:15:51 localhost kernel[0]: jnl: replay_journal: from: 673280 to: 24382976 (joffset 0x952000)
Apr 13 22:15:51 localhost kernel[0]: jnl: replay_journal: from: 3890176 to: 6294016 (joffset 0x7d01000)
Apr 13 22:15:51 localhost diskarbitrationd[69]: disk0s10 hfs 82827EDF-0263-3B93-BEED-4B114E820B85 NewestSeagate /
Apr 13 22:15:52 localhost kernel[0]: NVDA,Display-A: vram [90020000:10000000]
Apr 13 22:15:52 localhost mDNSResponder: Adding browse domain local.
Apr 13 22:15:53 localhost kernel[0]: hfs mount: enabling extended security on Maxtor
Apr 13 22:15:53 localhost diskarbitrationd[69]: disk1s3 hfs 0DBE2113-B1F5-388F-BF70-2E366A095330 Maxtor /Volumes/Maxtor
Apr 13 22:15:54 localhost kernel[0]: NVDA,Display-B: vram [94000000:08000000]
Apr 13 22:15:54 Marc-Weinbergs-Computer configd[67]: setting hostname to "Marc-Weinbergs-Computer.local"
Apr 13 22:15:54 Marc-Weinbergs-Computer /System/Library/CoreServices/loginwindow.app/Contents/MacOS/loginwindow: Login Window Application Started
Apr 13 22:15:56 Marc-Weinbergs-Computer diskarbitrationd[69]: disk2s3 hfs 971CABB3-C211-38FC-8E91-6B4F8EA5FA20 B08-09-07 /Volumes/B08-09-07
Apr 13 22:15:56 Marc-Weinbergs-Computer loginwindow[110]: Login Window Started Security Agent
Apr 13 22:15:57 Marc-Weinbergs-Computer kernel[0]: AppleBCM5701Ethernet - en1 link active, 1000-Mbit, full duplex, symmetric flow control enabled
Apr 13 22:15:57 Marc-Weinbergs-Computer configd[67]: AppleTalk startup
Apr 13 22:15:57 Marc-Weinbergs-Computer TabletDriver[119]: #### GetFrontProcess failed to get front process (-600)
Apr 13 22:15:59 Marc-Weinbergs-Computer configd[67]: posting notification com.apple.system.config.network_change
Apr 13 22:16:00 Marc-Weinbergs-Computer configd[67]: posting notification com.apple.system.config.network_change
Apr 13 22:16:00 Marc-Weinbergs-Computer configd[67]: executing /System/Library/SystemConfiguration/Kicker.bundle/Contents/Resources/enable-net work
Apr 13 22:16:00 Marc-Weinbergs-Computer configd[67]: posting notification com.apple.system.config.network_change
Apr 13 22:16:01 Marc-Weinbergs-Computer lookupd[123]: lookupd (version 369.5) starting - Sun Apr 13 22:16:01 2008
Apr 13 22:16:01 Marc-Weinbergs-Computer kernel[0]: HFS: Removed 2 orphaned unlinked files
Apr 13 22:16:01 Marc-Weinbergs-Computer diskarbitrationd[69]: disk3s3 hfs CDA8BCC5-0CE4-33E8-A910-4B0952DBC230 FullBU-09-07 /Volumes/FullBU-09-07
Apr 13 22:16:04 Marc-Weinbergs-Computer configd[67]: target=enable-network: disabled
Apr 13 22:16:05 Marc-Weinbergs-Computer configd[67]: AppleTalk startup complete
Apr 13 22:16:09 Marc-Weinbergs-Computer TabletDriver[237]: #### GetFrontProcess failed to get front process (-600)
Apr 13 22:16:09 Marc-Weinbergs-Computer launchd[241]: com.wacom.wacomtablet: exited with exit code: 253
Apr 13 22:16:09 Marc-Weinbergs-Computer launchd[241]: com.wacom.wacomtablet: 9 more failures without living at least 60 seconds will cause job removal
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:28 EDT 2008] : ATA device 'ST3320620AS', serial number '6QF0L6LR', reports it is functioning at a temperature of 95.0F (35C) degrees.
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:28 EDT 2008] : Spare blocks for ATA device 'ST3320620AS', serial number '6QF0L6LR', appear to still be available. (Total Available: 36) (Use Attempts: 0)
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:29 EDT 2008] : ATA device 'ST3320620AS', serial number '6QF0LGS4', reports it is functioning at a temperature of 100.4F (38C) degrees.
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:29 EDT 2008] : Spare blocks for ATA device 'ST3320620AS', serial number '6QF0LGS4', appear to still be available. (Total Available: 36) (Use Attempts: 0)
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:29 EDT 2008] : ATA device 'ST3320620AS', serial number '9RV000FC', reports it is functioning at a temperature of 95.0F (35C) degrees.
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:29 EDT 2008] : Spare blocks for ATA device 'ST3320620AS', serial number '9RV000FC', appear to still be available. (Total Available: 36) (Use Attempts: 0)
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:29 EDT 2008] : ATA device 'Maxtor 6B300S0', serial number 'B6211G0H', reports it is functioning at a temperature of 89.6F (32C) degrees.
Apr 13 22:16:29 Marc-Weinbergs-Computer /Applications/DiskWarrior.app/Contents/MacOS/DiskWarriorDaemon: [Sun Apr 13 22:16:29 EDT 2008] : Spare blocks for ATA device 'Maxtor 6B300S0', serial number 'B6211G0H', appear to still be available. (Total Available: 63) (Use Attempts: 0)
Apr 13 22:16:54 Marc-Weinbergs-Computer /System/Library/CoreServices/Finder.app/Contents/MacOS/Finder: _TIFFVSetField: tiff data provider: Invalid tag "Copyright" (not supported by codec).\n
Apr 13 22:16:54 Marc-Weinbergs-Computer /System/Library/CoreServices/Finder.app/Contents/MacOS/Finder: _TIFFVSetField: tiff data provider: Invalid tag "Copyright" (not supported by codec).\n
etc.

Hi-
The machine seems to be having trouble with loading certain drivers, but, as this isn't a crash log, and doesn't show the "hang-up" or freeze, it's hard to tell.
Noted possibilities are:
-Microsoft keyboard (possible USB power problem)
-firmtek driver (from archive) questionable due to the "archive" annotation
-Wacom tablet driver, causing system problems
Running in Safe mode without freezes would help to determine if one of these drivers is the problem.
Other possibilities are outdated drivers, or simply a need to reinstall the OS.
If unnecessary, removing the driver(s) would be a good idea.
External USB and Firewire devices are all suspect, should all be disconnected, revert to Apple keyboard, and test system performance. Adding one device at a time, and testing each will be necessary to clear each device.
I have experienced system trouble when a Wacom tablet was not connected, but the driver was left installed.
Disabling the driver from Startup items may be necessary to test without the Wacom tablet connected.

Extends security

Similar Messages

Maybe you are looking for