File whitelisting

Does W10TP build 9879 have a whitelist?
I ask because the default name used for the AV app Webroot is "wsainstall.exe" which generates a PCA popup as soon as one tries to install it where 9841 and 9860 didn't. The PCA can't be turned OFF which is another issued not answered yet
but it was suggested to rename the file. I changed the name to "wrsa.exe", no PCA popup, it installed and I have been using it ever since then.
Bill

Microsoft made a number of things that they'd rather we didn't run while testing the TP "incompatible" via their list. Classic Shell is another one, even though it appears to work fine. It's clear they've done this on purpose.
With some justification, I suppose, Microsoft hopes to learn from the pre-release of the Technical Preview too, and clearly they'd prefer to keep greater control over the things we run on it.
And yes, to force the install renaming the installer is all you have to do. But you're kind of on your own if something goes wrong.
Lastly, don't assume a 3rd party antivirus package is going to work right with Windows 10. I'd suggest you keep with the Windows Defender package provided by Microsoft, out of the box.
-Noel
Detailed how-to in my eBooks:
Configure The Windows 7 "To Work" Options
Configure The Windows 8 "To Work" Options

Similar Messages

Open, Save, Save As Plus the pop up at the bottom of the page

When opening an .mdb file on our intranet home page (medium security) while in IE 8, the link activates the access database within the link and opens access in a new window (as intended).
We have been testing with IE 10 and the link now wants to open the older style "OPEN, SAVE, SAVE AS" pop-up (3x5 card with white background).
After selecting OPEN, we also get the new style of pop-up at the bottom saying "couldn't be loaded" RETRY, CANCEL, VIEW DOWNLOADS.
Regardless of what I select the access db still opens as intended.
The big question is,
HOW do I make it so no one will see the first or second pop-ups. I don't want the user to have an option to OPEN, SAVE, or SAVE AS, and I don't want the bottom pop-up either.
I just want it to open like it did under IE 8.

Hi,
the default security slider value for the Intranet zone is Medium-low... and Medium on server versions of windows. mdb files are 'unsafe'. Check your registry for any 'unsafe files' whitelists..
look in these keys.
Const HKEY_Include = "SOFTWARE\Microsoft\Internet Explorer\UnsafeFiles\Include"
Const HKEY_Exclude = "SOFTWARE\Microsoft\Internet Explorer\UnsafeFiles\Exclude"
Use GPO to customize your security zone settings and prevent users from changing your customizations.
file downloads are controlled by the IE Download manager, that checks the mime-type returned from the server with the extension on the file....
mdb==application/x-msaccess
Inspect the value of this registry key
HKEY_CLASSES_ROOT\.mdb
I suspect that you will need to have a open sub-command that points to your access.exe file location in your Office folder.
Rob^_^

Provisioning Service - Whitelist Extraction Text File Size Limit

I just needed a confirmation in this regard as to what the acceptable size of the text file is when trying to run a whitelisted extraction using provisioning service? The Whitelist Text Tagging is currently failing at 10 MB+. Would this be the limit? Somehow could not find documented details, although it feels like having read it somewhere before.

Thoughts?

How do I whitelist the 'file:' scheme in the NoScript preferences so I can use Zotero?

I am using Firefox 15.0. When I opened Zotero, I received the message, "The NoScript extension is preventing Zotero from displaying notes. To use NoScript and Zotero together, whitelist the 'file:' scheme in the NoScript preferences and restart Firefox."
I looked under NoScript for preferences, but I could not find any references to "preferences." What does the message mean and how do I get Zotero and NoScript to work together?

Thanks, the-edmeister. I have tried looking at various entries in the list at your link. However, the top-level entries in the list are so generic that I have not found anything useful even after a couple of hours poking around in various lists.
What is the message trying to tell me (see my first entry)? After my earlier unsuccessful attempts to find what it seems to be indicating, I have realized the message is gibberish to me at this point.

Trouble with Protected Mode whitelisting and file links

Our system details first: Adobe Reader 11.0.7, Windows 7 SP1 32bit, IE9
We have some documents that contain URLs (file://...) which point to other documents (mostly PDF and DOCX files) on the local harddrive or on remote network shares. Those links work perfectly fine when Protected Mode is turned off - you click on it, IE opens and displays the document (PDF) or prompts you to open/download it (DOCX). As soon as you turn on Protected Mode those links stop working completely and I can see an access denied entry in the AdbeReaderBroker.log. All as expected.
Where it get's weird is that the links still don't work even if I whitelist nearly everything. I can click on them and nothing happens, they don't even generate an entry in the broker logfile anymore. Just so you have an idea, here is my current whitelist used for testing:
FILES_ALLOW_ANY = \??\C:\*
PROCESS_ALL_EXEC = \??\C:\*
REG_ALLOW_ANY = HKEY_LOCAL_MACHINE\Software\Adobe*
REG_ALLOW_ANY = HKEY_LOCAL_MACHINE\SOFTWARE\Adobe*
REG_ALLOW_ANY = HKEY_CURRENT_USER\*
And here's everything contained in the broker logfile (including when I click on links):
[07:07/15:29:57] Adobe Reader Protected Mode Logging Initiated
[07:07/15:29:57] Found custom policy file: C:\Program Files\Adobe\Reader 11.0\Reader\ProtectedModeWhitelistConfig.txt
[07:07/15:29:57] Adding custom policy: FILES_ALLOW_ANY = \??\C:\*
[07:07/15:29:57] Adding custom policy: PROCESS_ALL_EXEC = \??\C:\*
[07:07/15:29:57] Adding custom policy: REG_ALLOW_ANY = HKEY_LOCAL_MACHINE\Software\Adobe*
[07:07/15:29:57] Adding custom policy: REG_ALLOW_ANY = HKEY_LOCAL_MACHINE\SOFTWARE\Adobe*
[07:07/15:29:57] Adding custom policy: REG_ALLOW_ANY = HKEY_CURRENT_USER\*
So the policies get applied, Protected Mode isn't blocking anything anymore, the links still don't work and now I'm out of ideas. I also tried all of this with the Trust Manager setting "Allow opening of non-PDF file attachments with external applications" turned on, same situation.
I hope someone here can point me in the right direction, maybe I'm missing something completely obvious here.
Edit for people having the same issue:
After some further testing it became clear that the issue only occurs when the PDF containing the hyperlinks is created using the built in PDF generator of Word 2010. PDFs generated with Adobe Acrobat Professional work just fine and can also open the applications directly without opening IE first. I'm not sure about the exact difference in the generated link, Word seems to generate file:// URLs which I can access with right click -> Copy Link Location, something that's not possible for the links generated by Acrobat.

Maybe the information http://samwel.tk/laptop_mode/faq might help. Particularly #3 and onward.
I only use powerdown. Thread = https://bbs.archlinux.org/viewtopic.php?id=134109
packer -S powerdown
substitute packer with yaourt or do manually if you wish so.

How To Make mozilla.cfg, override.ini, all-companyname.js, Files To Work Once And For All For All Users

I'm currently trying to apply a fix to the firefox browser (version 23.0.1) on over 250 computers. Setting default webpages, disabling annoying prompts like the default browser and importing bookmarks, and erasing the history on shutdown, or startup. This is very easily done modifying the pref.js file, but I will not edit that file, it's out of the question. Another FF update will erase or overwrite all of my modifications.
I run a computer lab in the university that is locked down using a Net Support School console. You don't need to look that up. Basically all websites are restricted except the ones the ones I whitelist. The websites we use have extensive API's for JS, CSS, Java, PHP, etc... We utilize technology in order for students to use graphing calculators, video's, and taking module test from these white-listed websites, like Pearson, or Aleks. Now with that said, cookies, and stored profile history become a problem, and on some day's up to 25% of the students using the computers need their entire history deleted in order for a page to load. I think I fixed this problem permanently by whitelisting backend sites importing plugins, and API's etc, that I found from the developers console. Whatever. What I've learned from all of this is that Firefox can be very customizable utilizing the "...\Mozilla Firefox\mozilla.cfg" and the "...\Mozilla Firefox\defaults\prefs\all-companyname.js" (or custom.js) The problem, is no matter what I try I can't get these to work. The closest I got was here:
http://www.intrntpirate.com/?p=615
Again, even that ^^ didn't work. I followed these directions to a "T". What is wrong with the above information provided in the link? Why is firefox making harder and harder for us to optimize it for massive deployments across a corporation and a university? I'm not going to do any fancy hacks to avoid the main issue. I need mozilla.cfg, and the all-companyname.js, and the override.ini files to work, if and only if they are still relevant.
These are what my files look like so far:
name: all-lmc.js 
location: C:\Program Files (x86)\Mozilla Firefox\defaults\pref\ 
pref("general.config.filename", "mozilla.cfg"); 
pref("browser.startup.homepage", "https://(some url)"); 
name: override.ini 
location: C:\Program Files (x86)\Mozilla Firefox\ 
[XRE] 
EnableProfileMigrator=false 
 
name: mozilla.cfg 
location: C:\Program Files (x86)\Mozilla Firefox\ 
// 
lockPref("privacy.sanitize.sanitizeOnShutdown", true); 
lockPref("privacy.sanitize.promptOnSanitize", false); 
lockPref("browser.shell.checkDefaultBrowser", false); 
lockPref("toolkit.telemetry.enabled", false); 
lockPref("toolkit.telemetry.prompted", 2); 
lockPref("toolkit.telemetry.rejected", true);
I've tried using, and not using, the automatic mozilla configurator. I've tried changing lockPref to pref. Nothing works. Not the override.ini, not the all-lmc.js, and not the mozilla.cfg. I've wasted hours reading through blogs of experts telling us to modify files that don't exist, or beating around the bush. I'm done researching. If you have the answer or want to help me figure this out just remember to keep it simple. Please. I ultimately want to package all the config files, with a how to, in a zip folder onto our shared drive. To have FF customized and ready to deploy to different departments across campus.

Thanks very much for your help, but I'm still overlooking something. I double checked to make sure that I did not have a hidden .txt file extention. I then decided to abandon the lock on preferences idea until I get it working. I converted my mozilla.cfg file back to plain text. I made sure I do not have an extra blank line at the end of each file. The syntax looks good, as far as I can tell. I'll copy and paste what I have so far. Did I have the file locations correct posted above? Also, if you feel i can delete some lines of text in my mozilla.cfg file I'll be happy to do so.
mozilla.cfg
<pre><nowiki>//
pref("privacy.sanitize.sanitizeOnShutdown", true);
pref("privacy.sanitize.promptOnSanitize", false);
pref("browser.rights.override", true);
pref(“app.update.auto”, false);
pref(“extensions.blocklist.enabled”, false);
pref(“extensions.shownselectionUI”, true);
pref(“browser.shell.checkDefaultBrowser”, false);
pref(“toolkit.telemetry.enabled”, false);
pref(“toolkit.telemetry.prompted”, 2);
pref(“toolkit.telemetry.rejected”, true);
pref(“app.update.auto”, false);
pref(“browser.download.useDownloadDir”, true);
pref(“browser.search.update”, false);
pref(“signon.autofillForms”, false);
pref(“signon.rememberSignons”, false);
pref(“browser.download.manager.scanWhenDone”, true);
pref(“browser.formfill.enable”, false);
pref(“xpinstall.enabled”, true);</nowiki></pre>
channel-prefs.js
pref("app.update.channel", "release");
override.ini
[XRE]
EnableProfileMigrator=false
all-lmc.js
pref("general.config.filename", "mozilla.cfg");
defaultPref("browser.startup.homepage", "data:text/plain,browser.startup.homepage=http://bbc.co.uk");
Again, thank you very much for your time. Do I create my own browserconfig.properties, and firefox.js? Also, I forgot to mention I'm running Windows 8.

Airport Extreme is allowing access to screen sharing, file sharing from external IP addresses (some from China, Canada etc)

How to get control over the ports/port forwarding etc in Airport Extreme?
How to make AE drop packets to certain ports from external ports. Or create whitelist/blacklists?
I figured out where the MAC filtering is! (It is inside the Timed Access Control). I wish it had a list of connected device and allowed me to select, name and add them.
I am getting requests from Chinese IP to the screen sharing ports forwarded to my iMac. Had requests to other ports as well. There was one IP address from CANADA too.
I want to open file sharing for local use only.

Why is Airport Extreme forwarding requests for screen sharing from external ip addresses to my imac? I don't have a public address, nor use dynamic dns service, and I have removed the server app (at least I think I have, but Apple Store doesn't think so).

FDF file not opening in IE 8 with Adobe reader 9 or Adobe pro 9

Hi
I have a fdf file that is working fine with IE 7 when I am using adode reader 9 or pro. But the same fdf is not working fine if my browser is IE 8 . The target element for the fdf is a file that is there in our web server. The same FDF is also working fine in IE 8 if the version is reader used is 8 or lower
can any one help me to fix this.
Thanks in Advance
RAVISH G

I will add a "Me too" onto this thread. I have to use a third-party site which sends an FDF document (over Internet Explorer), however Adobe Reader doesn't load inside this browser window, but rather launches itself *outside* of this browser window (in standalone mode, more or less)...
In fact, when Adobe Reader is loading outside the browser window the only thing I have here is the original PDF document where the data should be added on. The PDF file is actually a form but I have it displayed "blank", that is without any user-provided data. On Internet Explorer's point of view, I only have the "PDF File" icon in the center of my window, but nothing else (all white)
Here are the specs:
Toshiba Satellite laptop
Windows Vista Home Premium, all patched
Latest Adobe Reader available when typing this reply (9.3)
I have:
Uninstalled, reinstalled Adobe Reader, but nothing better happens (Adobe Reader just pops out of the browser to display the original PDF file)
Upgraded to Internet Explorer 8 (as I was running IE7 on this PC), also added the URL of the intranet site in question in my "trusted sites" in IESpeaking of Internet Explorer, I also did a "reset to default values" many times over this process
Double-checked the values in the Windows Registry in HKEY_CLASSES_ROOT to see that both FDF and PDFs are gonna be executed on Adobe Reader (I have no other PDF readers or writers installed anyway)
Double-checked that the Activex control that is needed to be run so Adobe Reader can start is actually whitelisted in Microsoft's IE registry, more on this here
Ensured that Edit, Preferences, Internet, "Display in the browser" is in fact checked. I did the extra mile here: I unchecked, pressed OK, left Adobe Reader then came back to enable it again just in case something doesnt get written accordingly to those settings in the UI.
Now i'm out of clues
For what its worth, only internet explorer gives me this problem, Firefox and Chrome just opens Adobe Reader inside the browser with the FDF provided.

There was an error opening this document. This file cannot be found

An automation script on one of our QA environments kept tripping on the error: "There was an error opening this document. This file cannot be found". The same script ran fine against our Production servers (hint, which were "whitelisted").
It took a little time to resolve/trace what was happening (but with the aid of ProcessMonitor and tracing all "pdf"-related file activity...)
The problem lies squarely between McAfee (75%), Adobe (20%) and Microsoft (5%):
NORMAL WORKFLOW. IE (Internet Explorer) when popping a PDF document, has to (1) write the document to the IE cache, then (2) launching and "handing off" the document reference to the Adobe viewer (which might then be able to open the document, et al) -- assuming largely a "synchronous" workflow.
BUT "WAIT", HOLD THE HORSES -- McAfee takes ownership and decides infact "wait for us" (during the workflow), it wants to first perform a virus scan on the document (ahead of writing the document to cache) involving potentially large latency (delay) before making the document available to the system. However, instead of "fessing up"-that their scan may be taking too long, McAfee appears to have taken their work "off-line" in violation of the sychronous interface above. I'm guessing the developers at McAfee might have been trying to hide any extra processing overhead being incurred by assuming they could somehow convert this to an "asychronous" event. (This may also have more reach than just PDF's.)
Unfortunately, the browser's "PDF OPEN"-dialog box pops allowing Adobe to launch-and-open the "as-yet-not-virus-scanned-and-thus-not-yet-cached"-document. Thus clicking the OPEN-button will cause the related "...FILE NOT FOUND"-error to be seen (because the file is still in McAfee "limbo").
Note: If you close the ADOBE reader (but don't yet close the popup-OPEN-dialog) you can click OPEN a second time and it will probably now open the document - which McAfee finally finished scanning!
You can observe all these interactions with ProcessMonitor, and use the monitored file states to adjust the timings of events to reproduce both the failure and non-failure scenarios.
- Best Regards, Ziggy
ps. My assessed distribution of "ownership" of the problem is because ALL these parties should be aggressively resolving this for the customer-base!

What, exactly, were you trying to do when you got it, and how?

Error while collecting files in AE CS3 - You do not have permission to open this file (-54)

I've got a rather large project that I'm attempting to collect. 35,000+ files to collect (lots of image sequences as footage), totaling near 80GB. The collect process starts and copies files for a while, but inevitably errors out during the copy procedure with the error "You do not have permission to open this file" -- a different file each attempt.
I'd read some complaints of a similar error last year due to QT 7.4, but I'm on the current Quicktime (7.6.4).
Anyone seen this before? What can I do!? Thanks in advance for any ideas.
--Rob LaRose
Imaginary Forces

Well, we're just a small shop, but since it usually falls upon me to administrate, here's a few general tips:
Hide all resources that are not meant to be accessed by certain people. This can be done easily by using different sub-nets on your network and defining access privileges. Write down the network MAC addresses and use a whitelist/ blacklist. A bit of work initially, but a lot safer than working with user names.
Forget about individual user privileges. At one point or another everyone will bump into situations where they cannot access stuff, but need it for their work. Simply ramp up all users to Power User status, but assign individual groups to them which only you can manage. That leaves it up to you to define who can access what, but without having to dig so deep that you always end up with individual adjustments. You merely add or remove users from groups (which is more practical for interns and freelancers, even)
Quota can do miracles for you. If a user only has x GB of storage available, he'll quickly learn to not create redundant data by copying files.
Prevent all local storage. Artists have a tendency to offline files at whim for experimentation and then forget about it. Give them a "garbage dump" directory on the server instead where they can store their private data and any non-persistent work files, but with quota. Use server-side desktops and user home directories, if possible, but unfortunately many programs cause problems with that (including Adobe's), so it's not always an option.
For each new project, create a pre-defined folder structure. We e.g. use number_clientname_worktype_year for the root, and inside have directories for compositing, 3D stuff, print, client data etc.. Define it so from the getgo, that specific structures like project directories for 3D programs with their sub-folders for textures etc. are in place, but users cannot create additional folders. When they are forced to use existing folders, they will be much more careful in naming their files.
Define versioning rules and naming conventions. Now "siginificant milestone" is a matter of view, but I at least try to create new version files for that. So if e.g in the morning I open up a comp project and change a few things in it that take more than 10 minutes to reproduce, this is significant and a new version is safed. I don't care much for simple things like adding effects - I can reproduce them in a wee in case of crashes or data loss - but complex masking, elaborate 3D modeling, dynamics simulations etc. qualify.
Of course back up every day, at least incrementally. If following the above rules, this can be as easy as copying the project folder to an external disk.
As for the rest - simply be hard-nosed. Your artists will whine and complain for a while, but they will get used to it and eventually see the wisdom in a regulated system. It's also up to you to brief them accordingly and remind them from time to time.
Mylenium

Wiki whitelist.plist not working here's the script and steps taken

1. whitelist.plist created according to instructions in wiki admin manual.
2. file placed in: /Library/Application Support/Apple/WikiServer/
3. File permissions set to allow _teamsserver access like other files in directory.
4. Webserver restarted.
5. Attempt to add <head> tag to wiki fails. Code is stripped out after save.
6. Has anyone got this working? I can't find any syntax errors in the file and I've tried the suggestion from another post to place the file in: /etc/wikid
Here's the contents of whitelist.plist
I don't know what else I can do to make it work. Any help is appreciated.
I've pasted the code below:
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>protocols</key>
<array>
<string>file</string>
<string>afp</string>
<string>feed</string>
<string>feeds</string>
<string>fax</string>
<string>ftp</string>
<string>gopher</string>
<string>http</string>
<string>https</string>
<string>itms</string>
<string>itpc</string>
<string>ldap</string>
<string>mailto</string>
<string>news</string>
<string>nfs</string>
<string>nntp</string>
<string>rdar</string>
<string>rtsp</string>
<string>sip</string>
<string>sips</string>
<string>sftp</string>
<string>smb</string>
<string>ssh</string>
<string>svn</string>
<string>svn+ssh</string>
<string>tel</string>
<string>telnet</string>
<string>vnc</string>
<string>webcal</string>
<string>xmpp</string>
</array>
<key>styles</key>
<array>
<string>font-style</string>
<string>font-weight</string>
<string>text-decoration</string>
</array>
<key>tags</key>
<dict>
<key>all</key>
<array>
<string>style</string>
<string>class</string>
<string>title</string>
</array>
<key>a</key>
<array>
<string>href</string>
<string>name</string>
<string>rel</string>
</array>
<key>blockquote</key>
<array>
<string>cite</string>
</array>
<key>body</key>
<array/>
<key>br</key>
<array/>
<key>caption</key>
<array/>
<key>dd</key>
<array/>
<key>div</key>
<array/>
<key>dl</key>
<array/>
<key>dt</key>
<array/>
<key>em</key>
<array/>
<key>h1</key>
<array/>
<key>h2</key>
<array/>
<key>h3</key>
<array/>
<key>h4</key>
<array/>
<key>h5</key>
<array/>
<key>h6</key>
<array/>
<key>head</key>
<array>
<string>title</string>
<string>base</string>
<string>link</string>
<string>meta</string>
</array>
<key>html</key>
<array/>
<key>img</key>
<array>
<string>src</string>
<string>alt</string>
<string>name</string>
<string>width</string>
<string>height</string>
<string>longdesc</string>
</array>
<key>li</key>
<array/>
<key>node</key>
<array/>
<key>object</key>
<array>
<string>classid</string>
<string>width</string>
<string>height</string>
<string>codebase</string>
</array>
<key>ol</key>
<array/>
<key>p</key>
<array/>
<key>param</key>
<array>
<string>name</string>
<string>value</string>
</array>
<key>pre</key>
<array/>
<key>q</key>
<array>
<string>cite</string>
</array>
<key>span</key>
<array/>
<key>strong</key>
<array/>
<key>table</key>
<array/>
<key>tbody</key>
<array/>
<key>td</key>
<array>
<string>colspan</string>
<string>rowspan</string>
</array>
<key>tfoot</key>
<array/>
<key>th</key>
<array>
<string>colspan</string>
<string>rowspan</string>
</array>
<key>thead</key>
<array/>
<key>tr</key>
<array/>
<key>ul</key>
<array/>
</dict>
</dict>
</plist>

Ok. Found some more stuff. It appears that, as of 10.6.2, you can't have this in your whitelist: :
<key>protocols</key>
<key>styles</key>
What's missing? Even if you have nothing to add to an area you must have the array tags e.g.
<key>protocols</key>
<array/>
<key>styles</key>
<array/>
The problem is that the Wiki just fails if there is any problem with your whitelist, with no warning. To see the fault you have to look in the console log. There you will see something like this, which indicates a faulty whitelist file:
8/01/10 10:34:00 AM com.apple.wikid[4416] Traceback (most recent call last):
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/application/app.py", line 689, in run
8/01/10 10:34:00 AM com.apple.wikid[4416] config.parseOptions()
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/application/app.py", line 669, in parseOptions
8/01/10 10:34:00 AM com.apple.wikid[4416] usage.Options.parseOptions(self, options)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/python/usage.py", line 226, in parseOptions
8/01/10 10:34:00 AM com.apple.wikid[4416] for (cmd, short, parser, doc) in self.subCommands:
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/application/app.py", line 679, in subCommands
8/01/10 10:34:00 AM com.apple.wikid[4416] for plug in plugins:
8/01/10 10:34:00 AM com.apple.wikid[4416] --- <exception caught here> ---
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/plugin.py", line 204, in getPlugins
8/01/10 10:34:00 AM com.apple.wikid[4416] adapted = interface(plugin, None)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/System/Library/Frameworks/Python.framework/Versions/2.6/Extras/lib/python/zop e/interface/interface.py", line 625, in callconform
8/01/10 10:34:00 AM com.apple.wikid[4416] return conform(self)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/plugin.py", line 68, in _conform_
8/01/10 10:34:00 AM com.apple.wikid[4416] return self.load()
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/plugin.py", line 63, in load
8/01/10 10:34:00 AM com.apple.wikid[4416] return namedAny(self.dropin.moduleName + '.' + self.name)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/python/reflect.py", line 462, in namedAny
8/01/10 10:34:00 AM com.apple.wikid[4416] topLevelPackage = _importAndCheckStack(trialname)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/caldavd/lib/python/twisted/python/reflect.py", line 398, in _importAndCheckStack
8/01/10 10:34:00 AM com.apple.wikid[4416] return _import_(importName)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/wikid/lib/python/twisted/plugins/wikid.py", line 9, in <module>
8/01/10 10:34:00 AM com.apple.wikid[4416] from apple_utilities.tap import WikiServiceMaker
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/wikid/lib/python/apple_utilities/tap.py", line 25, in <module>
8/01/10 10:34:00 AM com.apple.wikid[4416] from apple_utilities import SettingsManager, Authentication
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/wikid/lib/python/apple_utilities/SettingsManager.py", line 916, in <module>
8/01/10 10:34:00 AM com.apple.wikid[4416] globalSettings = SettingsManager(defaultConfigFilePath)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/wikid/lib/python/apple_utilities/SettingsManager.py", line 151, in _init_
8/01/10 10:34:00 AM com.apple.wikid[4416] whitelist = WhitelistContentFilter.WhitelistContentFilter(userWhitelistPath, self.data['wiki']['whitelist'])
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/usr/share/wikid/lib/python/apple_wlt/WhitelistContentFilter.py", line 120, in _init_
8/01/10 10:34:00 AM com.apple.wikid[4416] systemPlist = plistlib.readPlist(systemWhitelistFileLoc)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/System/Library/Frameworks/Python.framework/Versions/2.6/lib/python2.6/plistli b.py", line 78, in readPlist
8/01/10 10:34:00 AM com.apple.wikid[4416] rootObject = p.parse(pathOrFile)
8/01/10 10:34:00 AM com.apple.wikid[4416] File "/System/Library/Frameworks/Python.framework/Versions/2.6/lib/python2.6/plistli b.py", line 405, in parse
8/01/10 10:34:00 AM com.apple.wikid[4416] parser.ParseFile(fileobj)
Message was edited by: John Holley NZ

CoreSync.exe blocks all network traffic while (slowly) syncing my Creative Cloud files

Hello folks,
Since the latest Creative Cloud update (I'm using version 1.9.0.465 as of this writing), I've been unable to successfully sync my Creative Cloud Files folder.
First things first, as other forum users have posted elsewhere, when the update installed itself, my Creative Cloud Files folder was moved from my chosen location to its default location (C:\Users\MyUserName) and I've been unable to put it back where I wanted it.
However, more pressingly, I noticed that every time I booted my computer, neither my wife nor I were able to access the Internet. After a couple days' trial and error I realized that Creative Cloud was trying (unsuccessfully) to sync about seven files (totaling about 750MB) to the cloud, and anytime the sync was actively working, my network access was completely blocked. Even the Creative Cloud desktop app itself couldn't access the Internet to authenticate my apps or Typekit fonts.
I have managed to get much smaller files (1MB, 5MB, up to 15MB) to sync successfully, however this takes a really long time, and no one on my network can manage to load a web page on their device until the sync is complete.
Right now I've got syncing paused, and everything on my network is working fine.
For some additional info, I've attached a screen grab of my Networking tab from Task Manager:
The big spikes in that graph are me and my wife loading up tons of web content-- YouTube videos, a million tabs of who-knows-what, all acting normally. Then I hit Resume on CC's sync operation, my activity line clamps way down, and no one can load any Internet content anywhere. After that, I released my computer's IP address from the command prompt, at which point Creative Cloud Desktop returned a connection failure, and I quit the app. When I renewed my IP address, I noticed our network access was still blocked, even though Creative Cloud was not running. I traced the problem back to CoreSync.exe, which had continued running even after I'd quit Creative Cloud. The moment I ended the CoreSync.exe process, everything was back to normal... until I restarted the Creative Cloud app, which in turn restarted CoreSync.exe. It was only after pausing CC's sync operation that we were able to use the Internet again.
So! To sum up, here are my two issues:
Syncing is entirely broken, and prevents everyone on my network from using the Internet while CC spins its wheels.
For some reason, following the same update, I'm unable to change the location of my Creative Cloud Files folder.
Some things I've tried:
Uninstalling & reinstalling the Creative Cloud Desktop app-- no change
Clearing my archived files on creative.adobe.com in case there was some weird argument happening between my live/syncing files and my archived files-- no change
Manually adding CoreSync.exe to my Windows Firewall whitelist-- no change
Finally, I can recreate this issue on my second computer, running the same version of Creative Cloud but running off wireless instead of Ethernet. Same symptoms-- feed it a file to sync, and everyone's Internet access is gone until the sync operation [eventually] finishes.
I'm completely stumped and very frustrated. I rely heavily on CC's file syncing feature, and as it's the only cloud storage product I'm actually paying for, I'm not willing to abandon it for another service like DropBox. I'm willing to try just about anything-- and in the meantime I'm just wishing Creative Cloud Desktop app updates weren't compulsory; the last build I'd installed here was working perfectly fine.
My basic system specs in case it's helpful:
Windows 7 Professional x64 SP1
2x Intel Xeon E5-2670 @ 2.6GHz
64GB DDR3 RAM
nVidia Quadro 4000
Any insights would be incredibly appreciated! Thanks in advance.

Heyo Dave,
Thanks so much for your reply and suggestions. Here's what I've discovered after some more noodling.
I'm no networking guy, but I can't seem to find anything about my modem or router that would explain why my upstream traffic is being throttled using CC-- especially since it's all the same hardware I was using last week before I updated CC.
In addition, I've tried test uploading a couple of files using DropBox, Google Drive, and WeTransfer.com, and neither process interrupts Internet use on my network.
With all that said, I did go in and pull back my Transfer Speed settings in CC from Maximum to Low, and that made a big difference! Syncing continued to work, and our other network requests were working just fine. I managed to get my upload speed set as high as Medium; High and Maximum both kill my network within seconds of being set.
So I'm not sure what was done to the CC application in this release to supposedly enable us to "Sync Files and Fonts faster" (from the release notes), but whatever it is, it's got my uploads capping at 100Kbps (compared to a minimum 350Kbps using Google Drive) unless no one in my home wants to check their email for the next hour. That's a significant bummer for me, as my After Effects projects regularly swell to ~50MB toward the end of a project.
I'd like to submit a big report here, since really the only variable at play in this situation was the Creative Cloud update. However, unfortunately it looks like the bug report form is down... I'll have to try again later.
In the meantime, if there are any other suggestions for experiments I can run on this beast, I'm happy to oblige and report back in case other folks with similar issues can get some relief!
Thanks again,
Jared

Fail to Deploy the applicaiton WAR file build by Spring2.5 framework

The War File build by Spring2.5 Framework can deploy and run successfully on Local WebLogic (10.3.6)
but this WAR file can not deploy on Java Cloud Service ;
I tried to deploy it on the Java Cloud Services Control pages and with OEPE (the Eclipse IDE whichi download from Oracle Cloud Official ) ,but these two were all failed !
the error logs as below ,and their no noticeable info in logs , ple help to fix it
Thanks
LOGS
Deployment to Oracle Cloud failed, please check Error Log for detail.
[deploy]
2013-02-21 01:18:56 CST: Starting action "Deploy Application"
2013-02-21 01:18:56 CST: Deploy Application started
2013-02-21 01:19:02 CST: weblogic.application.ModuleException:
2013-02-21 01:19:02 CST: WLS action state: failed
2013-02-21 01:19:02 CST: Action FAILED with WLS state: failed
2013-02-21 01:19:02 CST: Application deployment failed.
2013-02-21 01:19:03 CST: [Deployer:149194]Operation 'remove' on application 'helloSpring' has succeeded on 'm0'
2013-02-21 01:19:03 CST: WLS action state: completed
2013-02-21 01:19:03 CST: "Deploy Application" complete: status FAILED
[virus-scan]
2013-02-21 01:18:36 CST: Starting action "Virus Scan"
2013-02-21 01:18:36 CST: Virus Scan started
2013-02-21 01:18:53 CST: ----------------------------------------------------------------------
2013-02-21 01:18:53 CST: File Scanned: "helloSpring.war".
2013-02-21 01:18:53 CST: File Size: "4049531".
2013-02-21 01:18:53 CST: File Status: "CLEAN".
2013-02-21 01:18:53 CST: ----------------------------------------------------------------------
2013-02-21 01:18:53 CST: Virus scan passed.
2013-02-21 01:18:53 CST: "Virus Scan" complete: status SUCCESS
[whitelist]
2013-02-21 01:18:53 CST: Starting action "API Whitelist"
2013-02-21 01:18:53 CST: API Whitelist started
2013-02-21 01:18:56 CST: WARNING - There are 3 warnings(s) found for helloSpring.war.
2013-02-21 01:18:56 CST: WARNING - Path:helloSpring.war (3 Warnings)
2013-02-21 01:18:56 CST: WARNING - Path:helloSpring.war (3 Warnings)
2013-02-21 01:18:56 CST: WARNING - Path:WEB-INF**** (1 Warning)
2013-02-21 01:18:56 CST: WARNING - 1:Recommended child element "login-config" missing under element /
javaee:web-app.
If you want to make your application public, you can have empty
<login-config/> in your web.xml. If you need authentication then you must
have <login-config> and its child <auth-method> element in web.xml.
Without this element(<login-config>), users may be challenged by SSO, but
the application code will be executed as anonymous user only. Line No:5.
2013-02-21 01:18:56 CST: WARNING - Path:WEB-INF**** (2 Warnings)
2013-02-21 01:18:56 CST: WARNING - 1:Recommended child element "jsp-descriptor" missing under element /
orcl-weblogic:weblogic-web-app.
If you have a JSP file that is not pre-compiled, The compilation errors
could be shown on the browser. It is recommended to include
<jsp-descriptor><verbose>false<****><****-descriptor> in weblogic.xml.
Line No:2.
2013-02-21 01:18:56 CST: WARNING - 2:Recommended child element "session-descriptor" missing under element /
orcl-weblogic:weblogic-web-app.
You will be required to have distinct cookie-path, if multiple
applications are accessed with in the same SSO session or if you have
multiple applications with different auth-method(CLIENT-CERT, FORM, BASIC)
in the same service instance.
Line No:2.
2013-02-21 01:18:56 CST: WARNING - helloSpring.war had 3 warning(s).
2013-02-21 01:18:56 CST: INFO - Whitelist validation has completed with 0 error(s) and 3 warning(s).
2013-02-21 01:18:56 CST: Whitelist validation passed.
2013-02-21 01:18:56 CST: "API Whitelist" complete: status SUCCESS

This kind of deployment error is typically caused by usage of certain API's or an attempt by the SpringFramework to get certain restricted resources .
Can you please find the Service logs (Via Java service Console " View Service Logs" link ) and se if anything is reported in the timeframe when this deployment error happend.

How to restrict users from uploading malicious files(exe, dll,etc) & limit file size in a webform

Hello, please i have a file atachment field in a form on my site. I want to restrict the size of the file that can be uploaded and the type. It's a vacancy page and I want candidates to only upload doc and pdf files. I want to also limit the file size to 50mb only. How can this be done within the BC system.
Thanks.

The file extension can't be trusted, like the mime-type it can be faked by a malicious user. Also this method can just be avoided altogether by anyone who has javacript turned off. Using javascript for this is not even remotely secure.
Isn't there a way to allow file uploading but specify a whitelist of filetypes (preferably checked using byte headers or some effective method) somewhere in admin?
Liam Dilley wrote:
Hey there,
You can do the file extension with jquery for example. The basic aspect of that is:
var ext = $('#my_file_field').val().split('.').pop().toLowerCase();
if($.inArray(ext, ['exe','dll','jpg','jpeg']) == -1) {
alert('invalid extension!');
So what is hapepning there is that it checks the value of the field when someone has added the file and checks the file extensiona and produces an alert but you can do as you need.
You could run this on hover of the submit button, on change of the actual file attachement field or on click of the submit button in the checks before it submits.
BC limits files to 100mb anyway so you should be ok on that front, they wont be able to be crazy uploading.

Auto-whitelist

Greetings,
not sure how many people still run 10.4 mail systems. but what the heck
I have a mail server that has been running spammassassin for years. pumping SA learn and running spamtrainer.
recently i received OS and postfix error messages regarding insufficient storage space although i had 30gig of room on the drive.
During a clone operation i discovered a very large Auto-whitelist file in /var/clamav/.spamassassin
i don't remember setting Auto-Whitelist 1
mylocal.cf doesn't mention AutoWhitelist
and my amavisd.conf has it commented out .
#$saautowhitelist = 0; # turn on AWL (default: false)
# Bayesian Auto Learn
auto_learn 1
# Safe Reporting
safe_reporting 0
# Full/Terse Reporting
usetersereport 0
# Subject Tag
subject_tag * Warning: Junk Mail *
# Rewrite the Subject
rewrite_subject 0
# Use Bayesian Filtering
use_bayes 1
# OK locals
ok_locales en
# OK languages
ok_languages en fr de ja
# Required hits to be marked as spam
required_hits 5
I ran a test message through SA, i did not see anything referencing Auto-Whitelist.
here is debug ::: ::
}mx1:/var/clamav root# spamassassin -D < /private/var/root/Documents/Message1.rtf
debug: SpamAssassin version 3.0.1
debug: Score set 0 chosen.
debug: running in taint mode? yes
debug: Running in taint mode, removing unsafe env vars, and resetting PATH
debug: PATH included '/bin', keeping.
debug: PATH included '/sbin', keeping.
debug: PATH included '/usr/bin', keeping.
debug: PATH included '/usr/sbin', keeping.
debug: Final PATH set to: /bin:/sbin:/usr/bin:/usr/sbin
debug: using "/etc/mail/spamassassin/init.pre" for site rules init.pre
debug: config: read file /etc/mail/spamassassin/init.pre
debug: using "//usr/share/spamassassin" for default rules dir
debug: config: read file //usr/share/spamassassin/10_misc.cf
debug: config: read file //usr/share/spamassassin/20antiratware.cf
debug: config: read file //usr/share/spamassassin/20bodytests.cf
debug: config: read file //usr/share/spamassassin/20_compensate.cf
debug: config: read file //usr/share/spamassassin/20dnsbltests.cf
debug: config: read file //usr/share/spamassassin/20_drugs.cf
debug: config: read file //usr/share/spamassassin/20fake_helotests.cf
debug: config: read file //usr/share/spamassassin/20headtests.cf
debug: config: read file //usr/share/spamassassin/20htmltests.cf
debug: config: read file //usr/share/spamassassin/20metatests.cf
debug: config: read file //usr/share/spamassassin/20_phrases.cf
debug: config: read file //usr/share/spamassassin/20_****.cf
debug: config: read file //usr/share/spamassassin/20_ratware.cf
debug: config: read file //usr/share/spamassassin/20uritests.cf
debug: config: read file //usr/share/spamassassin/23_bayes.cf
debug: config: read file //usr/share/spamassassin/25body_testses.cf
debug: config: read file //usr/share/spamassassin/25body_testspl.cf
debug: config: read file //usr/share/spamassassin/25_hashcash.cf
debug: config: read file //usr/share/spamassassin/25head_testses.cf
debug: config: read file //usr/share/spamassassin/25head_testspl.cf
debug: config: read file //usr/share/spamassassin/25_spf.cf
debug: config: read file //usr/share/spamassassin/25_uribl.cf
debug: config: read file //usr/share/spamassassin/30textde.cf
debug: config: read file //usr/share/spamassassin/30textes.cf
debug: config: read file //usr/share/spamassassin/30textfr.cf
debug: config: read file //usr/share/spamassassin/30textit.cf
debug: config: read file //usr/share/spamassassin/30textnl.cf
debug: config: read file //usr/share/spamassassin/30textpl.cf
debug: config: read file //usr/share/spamassassin/30textsk.cf
debug: config: read file //usr/share/spamassassin/50_scores.cf
debug: config: read file //usr/share/spamassassin/60_whitelist.cf
debug: using "//etc/mail/spamassassin" for site rules dir
debug: config: read file //etc/mail/spamassassin/local.cf
debug: using "/private/var/root/.spamassassin" for user state dir
debug: using "/private/var/root/.spamassassin/user_prefs" for user prefs file
debug: config: read file /private/var/root/.spamassassin/user_prefs
debug: plugin: loading Mail::SpamAssassin::Plugin::URIDNSBL from @INC
debug: plugin: registered Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840)
debug: plugin: loading Mail::SpamAssassin::Plugin::Hashcash from @INC
debug: plugin: registered Mail::SpamAssassin::Plugin::Hashcash=HASH(0x1a8be70)
debug: plugin: loading Mail::SpamAssassin::Plugin::SPF from @INC
debug: plugin: registered Mail::SpamAssassin::Plugin::SPF=HASH(0x1af36a4)
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) implements 'parse_config'
debug: plugin: Mail::SpamAssassin::Plugin::Hashcash=HASH(0x1a8be70) implements 'parse_config'
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) inhibited further callbacks
debug: config: SpamAssassin failed to parse line, skipping: auto_learn 1
debug: config: SpamAssassin failed to parse line, skipping: safe_reporting 0
debug: config: SpamAssassin failed to parse line, skipping: usetersereport 0
debug: config: SpamAssassin failed to parse line, skipping: subject_tag * Warning: Junk Mail *
debug: config: SpamAssassin failed to parse line, skipping: rewrite_subject 0
debug: using "/private/var/root/.spamassassin" for user state dir
debug: bayes: 17114 tie-ing to DB file R/O /private/var/root/.spamassassin/bayes_toks
debug: bayes: 17114 tie-ing to DB file R/O /private/var/root/.spamassassin/bayes_seen
debug: bayes: found bayes db version 3
debug: using "/private/var/root/.spamassassin" for user state dir
debug: bayes: Not available for scanning, only 0 spam(s) in Bayes DB < 200
debug: bayes: 17114 untie-ing
debug: bayes: 17114 untie-ing db_toks
debug: bayes: 17114 untie-ing db_seen
debug: Score set 1 chosen.
debug: bayes: 17114 tie-ing to DB file R/O /private/var/root/.spamassassin/bayes_toks
debug: bayes: 17114 tie-ing to DB file R/O /private/var/root/.spamassassin/bayes_seen
debug: bayes: found bayes db version 3
debug: bayes: Not available for scanning, only 0 spam(s) in Bayes DB < 200
debug: bayes: 17114 untie-ing
debug: bayes: 17114 untie-ing db_toks
debug: bayes: 17114 untie-ing db_seen
debug: metadata: X-Spam-Relays-Trusted:
debug: metadata: X-Spam-Relays-Untrusted:
debug: ---- MIME PARSER START ----
debug: main message type: text/plain
debug: parsing normal part
debug: added part, type: text/plain
debug: ---- MIME PARSER END ----
debug: decoding: no encoding detected
debug: Loading languages file...
debug: Can't determine language uniquely enough
debug: metadata: X-Languages:
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) implements 'parsed_metadata'
debug: is Net::DNS::Resolver available? yes
debug: Net::DNS version: 0.66
debug: trying (3) sun.com...
debug: looking up NS for 'sun.com'
debug: NS lookup of sun.com succeeded => Dns available (set dns_available to hardcode)
debug: is DNS available? 1
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: URIDNSBL: domains to query: beth.k12.pa.us hetnet.nl aim.com
debug: all '*From' addrs:
debug: Running tests for priority: 0
debug: running header regexp tests; score so far=0
debug: registering glue method for checkhashcash_doublespend (Mail::SpamAssassin::Plugin::Hashcash=HASH(0x1a8be70))
debug: registering glue method for checkfor_spf_helopass (Mail::SpamAssassin::Plugin::SPF=HASH(0x1af36a4))
debug: SPF: message was delivered entirely via trusted relays, not required
debug: registering glue method for checkhashcashvalue (Mail::SpamAssassin::Plugin::Hashcash=HASH(0x1a8be70))
debug: all '*To' addrs:
debug: registering glue method for checkfor_spfsoftfail (Mail::SpamAssassin::Plugin::SPF=HASH(0x1af36a4))
debug: SPF: message was delivered entirely via trusted relays, not required
debug: registering glue method for checkfor_spfpass (Mail::SpamAssassin::Plugin::SPF=HASH(0x1af36a4))
debug: registering glue method for checkfor_spf_helosoftfail (Mail::SpamAssassin::Plugin::SPF=HASH(0x1af36a4))
debug: registering glue method for checkfor_spf_helofail (Mail::SpamAssassin::Plugin::SPF=HASH(0x1af36a4))
debug: running body-text per-line regexp tests; score so far=-2.801
debug: running uri tests; score so far=-2.801
debug: registering glue method for check_uridnsbl (Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840))
debug: Razor2 is not available
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) implements 'check_tick'
debug: URIDNSBL: query for hetnet.nl took 1 seconds to look up (multi.surbl.org.:hetnet.nl)
debug: URIDNSBL: query for aim.com took 1 seconds to look up (multi.surbl.org.:aim.com)
debug: URIDNSBL: query for beth.k12.pa.us took 1 seconds to look up (multi.surbl.org.:beth.k12.pa.us)
debug: URIDNSBL: queries completed: 6 started: 8
debug: URIDNSBL: queries active: at Mon Mar 8 18:06:35 2010
debug: running raw-body-text per-line regexp tests; score so far=-2.801
debug: running full-text regexp tests; score so far=-2.801
debug: Razor2 is not available
debug: Current PATH is: /bin:/sbin:/usr/bin:/usr/sbin
debug: Pyzor is not available: pyzor not found
debug: DCCifd is not available: no r/w dccifd socket found.
debug: DCC is not available: no executable dccproc found.
debug: Running tests for priority: 500
debug: plugin: Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x1924840) implements 'checkpostdnsbl'
debug: URIDNSBL: queries completed: 8 started: 8
debug: URIDNSBL: queries active: at Mon Mar 8 18:06:35 2010
debug: waiting 2 seconds for URIDNSBL lookups to complete
debug: URIDNSBL: queries completed: 0 started: 0
debug: URIDNSBL: queries active: DNSBL=8 at Mon Mar 8 18:06:35 2010
debug: URIDNSBL: query for aim.com took 2 seconds to look up (sbl.spamhaus.org.:132.51.12.64)
debug: URIDNSBL: query for beth.k12.pa.us took 2 seconds to look up (sbl.spamhaus.org.:2.96.96.209)
debug: URIDNSBL: query for aim.com took 2 seconds to look up (sbl.spamhaus.org.:80.73.200.207)
debug: URIDNSBL: query for aim.com took 2 seconds to look up (sbl.spamhaus.org.:107.1.236.64)
debug: URIDNSBL: query for hetnet.nl took 2 seconds to look up (sbl.spamhaus.org.:34.63.75.213)
debug: URIDNSBL: query for hetnet.nl took 2 seconds to look up (sbl.spamhaus.org.:69.63.75.213)
debug: URIDNSBL: query for aim.com took 2 seconds to look up (sbl.spamhaus.org.:232.157.188.205)
debug: URIDNSBL: query for beth.k12.pa.us took 2 seconds to look up (sbl.spamhaus.org.:20.3.172.207)
debug: URIDNSBL: queries completed: 8 started: 0
debug: URIDNSBL: queries active: at Mon Mar 8 18:06:36 2010
debug: done waiting for URIDNSBL lookups to complete
debug: running meta tests; score so far=-2.801
debug: running header regexp tests; score so far=-1.231
debug: running body-text per-line regexp tests; score so far=-1.231
debug: running uri tests; score so far=-1.231
debug: running raw-body-text per-line regexp tests; score so far=-1.231
debug: running full-text regexp tests; score so far=-1.231
debug: Running tests for priority: 1000
debug: running meta tests; score so far=-1.231
debug: running header regexp tests; score so far=-1.231
debug: running body-text per-line regexp tests; score so far=-1.231
debug: running uri tests; score so far=-1.231
debug: running raw-body-text per-line regexp tests; score so far=-1.231
debug: running full-text regexp tests; score so far=-1.231
debug: auto-learn: currently using scoreset 1.
debug: auto-learn: message score: -1.231, computed score for autolearn: -1.231
debug: auto-learn? ham=0.1, spam=12, body-points=0, head-points=-2.801, learned-points=0
debug: auto-learn? yes, ham (-1.231 < 0.1)
debug: Learning Ham
debug: all '*From' addrs:
debug: all '*To' addrs:
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: uri found: mailto:[email protected]
debug: lock: 17114 created /private/var/root/.spamassassin/bayes.lock.mx1.beth.k12.pa.us.17114
debug: lock: 17114 trying to get lock on /private/var/root/.spamassassin/bayes with 0 retries
debug: lock: 17114 link to /private/var/root/.spamassassin/bayes.lock: link ok
debug: bayes: 17114 tie-ing to DB file R/W /private/var/root/.spamassassin/bayes_toks
debug: bayes: 17114 tie-ing to DB file R/W /private/var/root/.spamassassin/bayes_seen
debug: bayes: found bayes db version 3
debug: ebd3a443815ae7214b74ef30dfb2c5524e3adf7a@sa_generated: already learnt correctly, not learning twice
debug: bayes: 17114 untie-ing
debug: bayes: 17114 untie-ing db_toks
debug: bayes: 17114 untie-ing db_seen
debug: bayes: files locked, now unlocking lock
debug: unlock: 17114 unlink /private/var/root/.spamassassin/bayes.lock
debug: is spam? score=-1.231 required=5
debug: tests=ALLTRUSTED,MISSING_DATE,MISSINGSUBJECT
debug: subtests=_UNUSABLEMSGID
X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on mx1.beth.k12.pa.us
X-Spam-Level:
X-Spam-Status: No, score=-1.2 required=5.0 tests=ALLTRUSTED,MISSINGDATE,
MISSING_SUBJECT autolearn=unavailable version=3.0.1
\f0\fs24 \cf0 Return-Path: <[email protected]>\
Received: from murder ([unix socket]) by bragg.beth.k12.pa.us (Cyrus v2.2.12-OS X 10.4.8) with LMTPA; Sun, 07 Mar 2010 22:32:43 -0500\
Received: from smtp3.beth.k12.pa.us (smtp3.beth.k12.pa.us [10.135.1.13]) by bragg.beth.k12.pa.us (Postfix) with ESMTP id 3D3F02CE4B19 for <[email protected]>; Sun, 7 Mar 2010 22:32:43 -0500 (EST)\
Received: from localhost (mx1.beth.k12.pa.us [10.135.1.6]) by smtp3.beth.k12.pa.us (Postfix) with ESMTP id 7E5EB2425D0C for <[email protected]>; Sun, 7 Mar 2010 22:32:07 -0500 (EST)\
Received: from mx1.beth.k12.pa.us ([127.0.0.1]) by localhost (mx1.beth.k12.pa.us [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 11329-05 for <[email protected]>; Sun, 7 Mar 2010 19:32:06 -0800 (PST)\
Received: from mail2.beth.k12.pa.us (mail2.beth.k12.pa.us [192.227.0.10]) by mx1.beth.k12.pa.us (Postfix) with ESMTP id 9DDDFCF9E5 for <[email protected]>; Sun, 7 Mar 2010 19:32:06 -0800 (PST)\
Received: from cpsmtpb-ews07.kpnxchange.com (cpsmtpb-ews07.kpnxchange.com [213.75.39.10]) by mail2.beth.k12.pa.us (Postfix) with ESMTP id 36E83E51479 for <[email protected]>; Sun, 7 Mar 2010 22:32:05 -0500 (EST)\
Received: from cpbrm-ews29.kpnxchange.com ([10.94.84.160]) by cpsmtpb-ews07.kpnxchange.com with Microsoft SMTPSVC(6.0.3790.3959); Mon, 8 Mar 2010 04:32:05 +0100\
Received: from CPSMTPM-EML04.kpnxchange.com ([213.75.39.74]) by cpbrm-ews29.kpnxchange.com with Microsoft SMTPSVC(6.0.3790.3959); Mon, 8 Mar 2010 04:32:04 +0100\
Received: from localhost ([10.94.77.199]) by CPSMTPM-EML04.kpnxchange.com with Microsoft SMTPSVC(7.0.6001.18000); Mon, 8 Mar 2010 04:32:04 +0100\
X-Sieve: CMU Sieve 2.2\
Content-Class: urn:content-classes:message\
Mime-Version: 1.0\
Content-Type: multipart/alternative; boundary="----=_NextPart_00101CABE6F.E8E7FFDB"\
X-Mimeole: Produced By Microsoft Exchange V6.5\
Message-Id: <[email protected]>\
X-Ms-Has-Attach: \
X-Ms-Tnef-Correlator: \
Thread-Topic: EU INT LOTTO\
Thread-Index: Acqbc/3PXjmnUcQsGeSny2PogEEg==\
X-Originalarrivaltime: 08 Mar 2010 03:32:04.0493 (UTC) FILETIME=[EC150BD0:01CABE6F]\
X-Recipientdomain: beth.k12.pa.us\
X-Spam-Status: No, hits=4.117 tagged_above=-999 required=5 tests=BAYES_50, HTML5060, HTML_MESSAGE, MIMEQP_LONGLINE, NOREALNAME, SUBJALLCAPS, UNDISC_RECIPS, UPPERCASE5075\
X-Spam-Level: **\
EU INT LOTTO\
YOUR EMAIL ID HAS WON \'db1,000,000.00, IN THE FIRST CATEGORY, ALL THE E-MAIL ADDRESSES WERE SELECTED THROUGH ELECTRONIC BALLOTING SYSTEM OF INTERNET E-MAIL USERS, FROM WHICH YOUR E-MAIL ADDRESS CAME OUT AS THE WINNING COUPON.\
Clarification and procedure Contact: [email protected]\
Tel:\'ca\'ca\'ca\'ca +31-630-861-292\'ca\'ca\'ca\'ca\'ca\'ca\'ca\'ca \
Miss. Gillian Rowland \
Qualification winning Number [EU/ILO-564/003/008] \
Expiring date is 19th of March, 2010.\
All response should be send Via Email: [email protected]\
}mx1:/var/clamav root#

postfix receives the mail, then passes it to amavisd.
amavisd decides what scanners to use (clamav/spamassassin and possibly others) and performs the scan
amavisd might not scan the messages if certain criteria are met (size too large, white list, etc), this is all configurable in amavisd.conf. For example, the size threshold by default may be too small, so messages with large graphics may not be scanned.
after amavis processes the message, depending on the config of amavis, certain actions are performed (add headers, discard, reject, bounce, etc).
then amavisd passes the mail back to postfix
postfix delivers any deliverable mail to cyrus/dovecot and/or processes and bounce/rejection.
a rejection doesn't work in the above scenario because it's already been accepted by postfix.
best to discard.
if you would like to learn more about the flow and logic, look at the amavisd config file
/etc/amavisd.conf
and check out the docs
http://www.ijs.si/software/amavisd/
Jeff

File whitelisting

Similar Messages

Maybe you are looking for