How to avoid interferences caused by rogues APs

Similar Messages

• How to jam rogue APs

  Dear
  I have detected several rogue APs in my company, one is with no security key. We are using 4402 WLC, i tried to contain those rogue APs , after this it shows these APs as contained, but no effect on SSID, still anyone can use it. Can someone tell me is it possible to disable rogue APs so that they are not used by employees. Thanks

  Your theory seems to be correct, as I was able to Contain one SSID of my own D-LINK AP.
  What was the RSSI value when you did this?  How many APs were assigned to contain?
  after that when I contain the client associated with that Contained AP then I was able to dis-associate.
  Not a good idea because you'll need to contain alot of clients.  What if the clients want to join YOUR valid SSID?
  Cud u tell me what are possible RSSI values or distance between which we should be able to contain APs without issues.  Is it related with APs or WLC model etc.
  Y'know what?  I'm not so sure because "containing" an AP isn't really a "sport" you want to brag about and Cisco frowns upon it.  I just theorized because your RSSI values are just too low.  If you have a value of, say, -75 dBm then there's a chance of being successful.
  I plan to implement switch port security with mac-filtering on access switches.
  Here's the deal.  This is OK if the rogue AP happens to be connected to YOUR network.  What if, and this is very common occurance here in Australia, if the rogue AP IS/WAS NOT connected to your network?  What if the AP is actually acting as a honeytrap or siphoning your enterprise WLAN traffic and sending it the other side?  As Scott recommended, the best way is to go to the owner of the offending rogue AP with two other big and burly colleagues and tell the offender to take the rogue AP out or you'll send your "enforcers" back.
  This AP is just two floors away.
  What are the inter-floors made of?  Are they made of concrete or wood?  Sounds like it's made out of concrete which makes propagation of wireless signal more difficult.  A recent study in Australia regarding the propagation of rogue APs are caused by staff bringing in their own chop-suey wireless access point.  The reason why they are doing it is because they are sick and tired of management telling them "No, you can't do it."  The same study stated that if management is un-willing to improve work-related technology then staff will do their best to it themselves and without any authorization or approval.  When it comes to wireless technology in the workplace, you'll be surprise to know how many managers are still ignorant about the security implications and consider wireless as a "punishment from G0d".
  My opinion is this:  Roll out wireless to your floors and buildings.

• How to Prevent or Block Rogue APs from Joining Your Wired or Wireless WLANs

  Hi all, I deployed a WLAN with 1 WLC 4400 and 5 1252AP. I do not see the way to Block Rogue APs from Joining the Wired or Wireless WLANs

  PART 1
  There are three parts to this:
  1. detect - automatic
  2. classify - by default APs are untrusted/unknown, various methods can be configured to classify them as trusted and threat (connected to wired network).
  3. over the air contain (aka mitigate) - in 4.x this is manual, in 5.x you can configure auto-containment
  First you need to detect. WLC does this automatically out of the box. It listens the air for unknown APs, clients and ad-hocs. Are you seeing Rogue APs under Monitor > Rogues > Rogue APs?
  Next, you can manually classify rogue APs as "known" (internal or external). Starting with 5.0 you can also build rogue rules based on RSSI, SSID, Clients, etc. If an AP is classified as "known" (internal or external), WCS stops alerting you.
  Another key classification piece is to detect whether or not the rogue AP is physically connected to your network which is a high security risk. There are three ways WLC can detect it and neither of them is automatic. You must configure these methods manually.
  1. Rogue AP Detector, aka ARP sniffing. You have to dedicate one AP as "Rogue Detector" (change AP mode from local to rogue detector). Configure the port the AP is connected to as switchport mode trunk (normally it's switchport mode access). Rogue Detector AP turns off and doesn't use its radios. When WLC detects rogue APs it can also detect the MAC addresses of any clients associated to that rogue APs, and the rogue detector AP simply watches each hardwire trunked VLAN for ARP requests coming from those rogue AP clients. If it sees one, WLC automatically classifies the rogue AP as "threat" indicating that the rogue AP is physically connected to your network. It doesn't actually do anything with the rogue AP, it simply classifies it and alerts you. Also, keep in mind that this method doesn't work if the rogue AP is a Wireless Router, because Wireless Routers NAT and ARP requests don't propagate to the wire.
  2. RLDP. Rogue Location Discovery Protocol. This feature is by default turned off and can be enabled under Security > Wireless Protection Policies > Rogue Polices. This feature works only when the rogue SSID is open, meaning that it's not using WEP/WPA/802.1x. When you enable RLDP, your WLC will pick some AP (you can't pick manually) which hears Rogue AP traffic, it will temporarily shut off its radio, turn it into a client, and instruct it to associate to the Rogue AP as client (this is where the requirement comes in for the Rogue SSID to be open authentication). Once associated, AP gets a DHCP IP through Rogue AP, it then sends a special small UDP port 6352 RLDP packet to every possible WLC's IP address (mgmt ip, ap manager ip, dynamic int IPs). If WLC gets one of those packets, it means that rogue AP is physically connected to your network. This method will work when Rogue AP is a Wireless Router. But this method is not recommended. It has an adverse effect on your wireless clients because RLDP AP goes offline for a period of time disconnecting your clients and forcing them to associate to another AP. Also, keep in mind, that WLC runs this RLDP process *once* per detected rogue AP. It doesn't periodically do this, it only does it once. In some later WLC versions, you can configure RLDP to run only on "monitor mode" APs, eliminating impact on your clients. Also, you can manually trigger RLDP for a rogue AP from CLI "config rogue ap rldp initiate ". You can "debug dot11 rldp" to see the process.
  3. Switchport Tracing (need WCS, and WLC 5.1). This is a later feature that requires WCS. You can add your Catalyst switches to WCS, and WCS will look at CDP information and MAC tables on your switches to detect whether or not Rogue AP is connected to your network. This works with secured and NAT rogues. You can also *manually* instruct WCS to shut down the switchport that Rogue AP is connected to.

• How to avoid db file parallel read for nestloop?

  After upgraded to 11gr2, one job took more than twice as long as before on 10g and 11gr1 with compatibility being 10.2.0.
  Same hardware. (See AWR summary below). My analysis points to that Nestloop is doing index range scan for the inner table's index segment,
  and then use db file parallel read to read data from the table segment, and for reasons that I don't know, the parallel read is very slow.
  AVG wait is more than 300ms. How can I fluence optimier to choose db file sequential read to fetch data block from inner table by tweaking
  parameters? Thanks. YD
  Begin Snap: 13126 04-Mar-10 04:00:44 60 3.9
  End Snap: 13127 04-Mar-10 05:00:01 60 2.8
  Elapsed: 59.27 (mins)
  DB Time: 916.63 (mins)
  Report Summary
  Cache Sizes
  Begin End
  Buffer Cache: 4,112M 4,112M Std Block Size: 8K
  Shared Pool Size: 336M 336M Log Buffer: 37,808K
  Load Profile
  Per Second Per Transaction Per Exec Per Call
  DB Time(s): 15.5 13.1 0.01 0.01
  DB CPU(s): 3.8 3.2 0.00 0.00
  Redo size: 153,976.4 130,664.3
  Logical reads: 17,019.5 14,442.7
  Block changes: 848.6 720.1
  Physical reads: 4,149.0 3,520.9
  Physical writes: 16.0 13.6
  User calls: 1,544.7 1,310.9
  Parses: 386.2 327.7
  Hard parses: 0.1 0.1
  W/A MB processed: 1.8 1.5
  Logons: 0.0 0.0
  Executes: 1,110.9 942.7
  Rollbacks: 0.2 0.2
  Transactions: 1.2
  Instance Efficiency Percentages (Target 100%)
  Buffer Nowait %: 99.99 Redo NoWait %: 100.00
  Buffer Hit %: 75.62 In-memory Sort %: 100.00
  Library Hit %: 99.99 Soft Parse %: 99.96
  Execute to Parse %: 65.24 Latch Hit %: 99.95
  Parse CPU to Parse Elapsd %: 91.15 % Non-Parse CPU: 99.10
  Shared Pool Statistics
  Begin End
  Memory Usage %: 75.23 74.94
  % SQL with executions>1: 67.02 67.85
  % Memory for SQL w/exec>1: 71.13 72.64
  Top 5 Timed Foreground Events
  Event Waits Time(s) Avg wait (ms) % DB time Wait Class
  db file parallel read 106,008 34,368 324 62.49 User I/O
  DB CPU 13,558 24.65
  db file sequential read 1,474,891 9,468 6 17.21 User I/O
  log file sync 3,751 22 6 0.04 Commit
  SQL*Net message to client 4,170,572 18 0 0.03 Network

  Its not possible to say anything just by looking at the events.You must understand that statspacks and AWR actualy aggergate the data and than show the results.There may be a very well possibility that some other areas also need to be looked at rather than just focussin on one event.
  You have not mentioned any kind of other info about the wait event like their timings and all that.PLease provide that too.
  And if I understood your question corretly,you said,
  How to avoid these wait events?
  What may be the cause?
  I am afraid that its not possible to discuss each of these wait event here in complete details and also not about what to do when you see them.Please read teh Performance Tuning book which narrates these wait events and corresponding actions.
  Please read and follow this link,
  http://download.oracle.com/docs/cd/B19306_01/server.102/b14211/instance_tune.htm#i18202
  Aman....

• LD_ASSUME_KERNEL does not work in recent distros. How to avoid?

  LD_ASSUME_KERNEL=2.4.XX does not work in all recent distros.
  $ export LD_ASSUME_KERNEL=2.4.20
  $ ls
  ls: error while loading shared libraries: librt.so.1: cannot open shared object
  EBS contains very old cmponents like MWA wich not compiled without this setting. How to avoid errors?

  You can unset LD_ASSUME_KERNEL and EBS 11i (11.5.9 and 11.5.10) will work fine on 2.6.16 kernels (SLES-10 and RH 5.0).
  The following instructions should get you going:
  1) Setup the environment as you would for running Applications on RH 4 or SLES9
  I.E. follow Oracle Applications Installation Update Notes, Release 11i (11.5.10.2)
  http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=316806.1
  2) Remove any LD_ASSUME_KERNEL references in O/S /etc/profile.d files
  3) Comment out LD_ASSUME_KERNEL entries in $ORACLE_HOME/appsutil/bin/adgetlnxver.sh and $AD_TOP/bin/adgetlnxver.sh
  if [ ${setflag}x = "x" -a $os = "Suse" ]; then
  # LD_ASSUME_KERNEL="2.4.21"
  # export LD_ASSUME_KERNEL
       os="Suse"
  fi
  if [ ${setflag}x = "x" -a $os = "RH" ]; then
  # LD_ASSUME_KERNEL="2.4.19"
  # export LD_ASSUME_KERNEL
       os = "RH"
  fi
  If doing a rapid install, the database startup will fail and rapidwiz will prompt to ignore or retry. At this point, edit $ORACLE_HOME/appsutil/bin/adgetlnxver.sh as shown above and click on retry. It will then run to the autoconfig step at the end and error out. Just hit cancel, edit $AD_TOP/bin/adgetlnxver.sh and run autoconfig.
  On Suse, one needs compat-gdbm for libgdbm.so.2
  rpm -Uhv compat-gdbm-1.8.0-7.i586.rpm
  Preparing... ########################################### [100%]
  1:compat-gdbm ########################################### [100%]
  Also in /usr/lib run ln -s libdb.so.2 libdb.so.3
  Ref:
  Note:300807.1 for Suse
  create symbolic link called libdb.so.2 pointing to libdb.so.3, as follows:
  $ cd /usr/lib
  $ ln -s libdb.so.3 libdb.so.2 (or install db1-1.85-85.1 which does the same)
  Note:294043.1 for Red Hat
  As per an internal Bug 4045349, this is an issue with O/S side installation of compat-db rpm.
  libdb.so.3 gets installed when compat-db rpm is installed.
  - The O/S installation CD would contain compat-db
  e.g compat-db-4.1.25-6.i386.rpm ( may change as per your version ).
  - Manually install the compat-db rpm
  e..g "rpm -ivh compat-db-4.1.25-6.i386.rpm"
  OR
  Note:345172.1
  A library is missing: libdb.so.2 is from gnome-libs-1.4.1.2.90-34.1.i386.
  This error also occurs in SLES9, same cause, slightly different resolution. SLES9 comes with libdb.so.3 and libdb.so.4 but not libdb.so.2 - need to install db1-1.85-85.1 to get libdb.so.2.
  4) In order to relink cplex library executables (MSC, MSO, MSR, MST, WIP, etc), edit $AD_TOP/bin/adrelinknew.sh and add the following LD option (-Wl,--noinhibit-exec) in the LINUX section:
  LINUX)
  LDFLAGS='-s -L$(ORACLE_HOME)/lib -L$(ORACLE_HOME)/lib/stubs -ldl'
  DEBUG_LDFLAGS='-g -L$(ORACLE_HOME)/lib -L$(ORACLE_HOME)/lib/stubs -ldl'
  exe_line='ELF .*executable'
  SHRLIB_LD='gcc'
  LD='gcc'
  SHRLIB_LDFLAGS='-L$(ORACLE_HOME)/lib -L$(ORACLE_HOME)/lib/stubs -shared'
  if test -f "/etc/redhat-release"; then
       CPP_LIBS='/usr/lib/libstdc++-2-libc6.1-1-2.9.0.so'
  elif test -f "/etc/SuSE-release"; then
       CPP_LIBS='/usr/lib/libstdc++.so.2.9'
  else
  CPP_LIBS=''
  fi
  CPP='g++'
  CPP_LDFLAGS='-s -L$(ORACLE_HOME)/lib -L$(ORACLE_HOME)/lib/stubs
  set CPP_LDFLAGS='-s -L$(ORACLE_HOME)/lib -L$(ORACLE_HOME)/lib/stubs
  to CPP_LDFLAGS='-s -L$(ORACLE_HOME)/lib -L$(ORACLE_HOME)/lib/stubs -Wl,--noinhibit-exec'
  After this chance, you can apply any MRP, ASCP patch and all executables will relink correctly. You can also use adadmin to relink all executables and it completes without error.
  5) Discoverer 4.1.38.08 Follow Metalink Note 280598.1 Discoverer 4i On Linux: Required Patch and Configuration for Discoverer Server Stability to use JDK 1.3.1 and oadj. I updated the autoconfig template files with this change after applying 3895177. Discoverer viewer and plus standard BIS reports all open correctly on SLES-10

• Please reply:how to avoid extra trailing spaces while using cursor sharing

  i am using cursor sharing with FORCE or SIMILAR.
  what is the solution to avoid extra trailing spaces without any java code change.
  do we have any option in oracle to avoid extra trailing spaces during the query processing ?
  I am using Oracle 10g
  CURSOR SHARING is a feature in which multiple sql statements
  which are same will have a shared cursor (in the library cache) for an oracle session,
  i.e, the first three steps of the sql processing (hard parse, soft parse, optimization)
  will be done only the first time that kind of statement is executed.
  There are two ways in which similar SQL statements with different condition values can be made to "SHARE" cursor during execution:
  1. Writing SQLs with Bind Variables: SQLs having no hard coded literals in them
  For e.g., the query below
  SELECT node.emp_name AS configid
  FROM emp node
  WHERE emp_no = :1
  AND dept_no =
  DECODE (SUBSTR (:2, 1, 3),
  :3, :4,
  (SELECT MAX (dept_no)
  FROM emp
  WHERE emp_no = :5 AND dept_no <= :6)
  AND node.dept_type = :7
  ORDER BY node.emp_name
  Here all the variables are dynamically bound during the execution. The ":X" represents BIND Variable and the actual values are bound to the SQL only at the 4th step of the execution of the SQL.
  In applications: The queries written with "?" as bind variables will be converted into ":X" and are sqls with Bind Variables.
  2. The CURSOR_SHARING parameter: Only Useful for SQL statements containing literals:
  For eg., the query below:
  SELECT node.emp_name AS configid
  FROM emp node
  WHERE emp_no = 'H200'
  AND dept_no =
  DECODE (SUBSTR (:1, 1, 3),
  'PLN', :2,
  (SELECT MAX (dept_no)
  FROM emp
  WHERE emp_no = :3 AND dept_no <= :4)
  AND node.dept_type = :5
  ORDER BY node.emp_name
  In the query above, there are two hard coded literals H200 , PLN. In this case when the same SQL executed with different values like (H2003 , PLN), oracle will create a new cursor for this statement and all the first three steps ( hard & soft parse and optimization plan) needs to be done again.
  This can be avoided by changing the CURSOR_SHARING parameter which can be set to any of three values:
  1. EXACT: Causes the mechanism not be used, i.e. no cursor sharing for statements with different literals. This is the default value.
  2. FORCE: Causes unconditional sharing of SQL statements that only differ in literals.
  3. SIMILAR: Causes cursor sharing to take place when this is known not to have any impact on optimization.
  So, FORCE and SIMILAR values of the parameter will be helping in cursor sharing and improve the performance of the SQLs having literals.
  But here the problem arises if we use the FORCE and SIMILAR other than EXACT.
  alter session set cursor_sharing ='EXACT'
  select 1 from dual;
  '1'
  1
  alter session set curson_sharing='FORCE'
  select 2 from dual;
  '2'
  2
  alter session set curson_sharing='SIMILAR'
  select 3 from dual;
  '3'
  3
  So, this will give extra trailing spaces in when we retrieve from java method and any
  further java processing based on the hardcoded literal values will fail. this needs lot of
  effort in remodifying the existing millions of lines of code.
  My question is i have to use cursor sharing with FORCE or SIMILAR and can't we do the trimming
  from the oracle query processing level ?
  please help me on this ?
  Message was edited by:
  Leeladhar
  Message was edited by:
  Leeladhar

  Please reply to this thread
  How to avoid extr trailing spaces using Cursor sharing opton FORCE, SIMILAR

• How to avoid performance problems in PL/SQL?

  How to avoid performance problems in PL/SQL?
  As per my knowledge, below some points to avoid performance proble in PL/SQL.
  Is there other point to avoid performance problems?
  1. Use FORALL instead of FOR, and use BULK COLLECT to avoid looping many times.
  2. EXECUTE IMMEDIATE is faster than DBMS_SQL
  3. Use NOCOPY for OUT and IN OUT if the original value need not be retained. Overhead of keeping a copy of OUT is avoided.

  Susil Kumar Nagarajan wrote:
  1. Group no of functions or procedures into a PACKAGEPutting related functions and procedures into packages is useful from a code organization standpoint. It has nothing whatsoever to do with performance.
  2. Good to use collections in place of cursors that do DML operations on large set of recordsBut using SQL is more efficient than using PL/SQL with bulk collects.
  4. Optimize SQL statements if they need to
  -> Avoid using IN, NOT IN conditions or those cause full table scans in queriesThat is not true.
  -> See to queries they use Indexes properly , sometimes Leading index column is missed out that cause performance overheadAssuming "properly" implies that it is entirely possible that a table scan is more efficient than using an index.
  5. use Oracle HINTS if query can't be further tuned and hints can considerably help youHints should be used only as a last resort. It is almost certainly the case that if you can use a hint that forces a particular plan to improve performance that there is some problem in the underlying statistics that should be fixed in order to resolve issues with many queries rather than just the one you're looking at.
  Justin

• After adding MIME type in sharepoint server, file click opens a popup for file to open as readonly or edit, How to avoid this popup

  After adding MIME type in sharepoint server,
  File click opens a popup for file to open as readonly or edit, How to avoid this popup
  Popup Details:
  You are about to open --> File Details
  How would you like to open --> ReadOnly, Edit
  OS: Window 7
  Jagadish

  this is likely caused by the library requiring check-out/check-in. For a file to be editable, the file needs to be checked out.
  Scott Brickey
  MCTS, MCPD, MCITP
  www.sbrickey.com
  Strategic Data Systems - for all your SharePoint needs

• My imac screen display is unfocussed, odd coloured and blurred (caused by rogue cate walking over keyboard).  I have no idea what settings have changed or what to check.  Any ideas?!

  My imac screen display is unfocussed, odd coloured and blurred (caused by rogue cate walking over keyboard).  I have no idea what settings have changed or what to check.  Any ideas?!

  It could be a number of keyboard shortcuts, here's a few.
  If the screen is zoomed,  hold CNTL and scroll down with mouse or trackpad.
  If screen looks like a negative,  hold down CNTL OPT CMD and click 8.
  Let us know how what other symptoms are shown.
  Regards,
  Captfred

• Alerting of "Malicious" Rogue APs

  Hi,
  In WCS, I see that we can set a severity level for rogue APs, which is minor by default.  What I'd like to do is set APs classificed as Malicious Rogues (based on the rogue policies), to have a different severity -- critical to be specific.  The goal here is to have an email trigger based on rogue AP detection, but only for those classified as malicious.  How do I accomplish this?
  I'm running WCS 7.0, w/  a WLC 4404 on 6.0 code.
  Thanks,
  David Swafford, Network Engineer, CareSource
  Cisco Certified Network Professional  |  Cisco NAC Specialist  |  EC-Council Certified Ethical Hacker

  A possible alternative solution would be to have WCS send SNMP traps to a 3rd-party monitoring system, which could be configured to trigger an alert if it receives a notification indicating a new rogue AP has been detected and classified as malicious.  This is from the WCS MIB file:
  cWNotificationSpecialAttributes OBJECT-TYPE
      SYNTAX          OCTET STRING (SIZE  (1..1024))
      MAX-ACCESS      read-only
      STATUS          current
      DESCRIPTION
          "This object represents the specialized attributes required
          to describe the network condition identified by
          cWNotificationType. These include SNR, RSSI, channel information
          etc. This value is formatted as 'name=value' pairs in CSV
          format. For example, rogueAP Alert's special attributes are sent
          as 'detectingAPRadioType=a0,YCoordinate=0, state=11,
          rogueApType=0, spt Status=0, ssId=wpspsk, on80211A=0,
          numOfDetectingAps=0, on80211B=1, XCoordinate=0,
          classificationType=3, channelNumber=6, containmentLevel=0,
          rssi=-51, rogueApMacAddr=00:1b:2b:35:6a:f3, onNetwork=0, total
          RogueClients=0'. This string can be parsed to get different
          name-value pairs."
      ::= { cwNotificationHistoryEntry 12 }
  I haven't actually gotten around to trying this yet.  Hopefully I'll have time during the holiday season.  If anyone else gets it to work in the meantime, let me know!

• New document: How to avoid known PDF email attachment problems

  Have you ever had problems with PDF attachments sent from Adobe Reader for iOS using Share > E-mail Document?
  You may find this document useful to avoid the problems.
  How to avoid known PDF email attachment problems
  Please let us know if you have encountered different types of problems with PDF attachments.  We can look for solutions or workarounds for you.

  Unfortunately, we (Adobe Reader mobile team) do not know if/when Apple will fix the attachment problems (software defects) in Apple Mail.
  In particular, the attachment problem with Microsoft Outlook (See Problem #2 in How to avoid known PDF email attachment problems) appears to be a long-standing defect that has been known for years.  However, Apple has not provided any fix for Apple Mail yet.
  Adobe Reader for iOS merely launches Apple Mail (the default mail app on iOS) to send a PDF document as an attachment.  Adobe Reader has no control over whether or not to embed a preview image of an attachment in the body of an email message, which is known to cause the problem with Microsoft Outlook (on the receiving side).  The same problem happens when you send a single-page PDF document as an attachment along with an email signature from Apple iBooks on iOS.
  For now, all iPad/iPhone users can do is to avoid the problems by using the workarounds that are described in How to avoid known PDF email attachment problems.
  When new and different problems with PDF attachments are reported by Adobe Reader for iOS users, we will update the document above.
  Sorry for the inconvenience.

• How to avoid launching Labview when invoking VI by Teststand

  Hi, friends.
  I'm a learner of teststand. I wrote some VIs by Labview. Now I want to invoke them in teststand environment. But when I run the sequence. Labview will be automatically launched. How to avoid launching Labview when I run the sequence?
  Thanks.
  Solved!
  Go to Solution.

  I'm not sure that I follow what you are saying..  But it sounds like when the VI is called, the LabVIEW development software is started and you want to avoid that.
  If you create an executable or dll and call that from within TestStand, it should not call the development environment.  You would need to have the LabVIEW run-time engine installed on the target PC. 
  It has been many years since I've used TestStand with LV, so my memory may not be accurate.  I think the above had worked for me.  However, it seems that I recall something about having the LV code in debug mode causing it to open the development environment.... but it's a distant memory.    You're not using breakpoints where the LV VI is being called, are you?
  R

• Sir how I avoid I this error FRM-40735: POST-QUERY trigger raised unhandled

  Hi master
  Sir this error crate may problem for me
  FRM-40735: POST-QUERY trigger raised unhandled exception ORA-01403
  sir how I avoid I this error and show my message
  or system not show this error and bypass this error
  please send me code how I avoid this error
  thanks
  aamir

  There may be many causes of this error. You better diagnose and remove them.
  1- A field length may be less than what your query return a data into it.
  2- A POST-CHANGE trigger on any data may return un-desired data (character into numrice field, longer value than a field etc).
  likewise.
  Regards
  Sayeed
  [email protected]

• How to avoid the prompt when verifing signature?

  I sign the doc with my cert.
  The cert is not trusted by Acrobat/Reader itself so when i try to verify the signature Acrobat/Reader will prompt the user cert is not trusted.
  My question is how to avoid this prompt through Acrobat SDK or how to add my cert to trusted cert list through Acrobat SDK?
  Thanks.

  Patrick Leckey wrote:
   You will also see the BER Decoding error when you have a self-signed peer-to-peer cert in your Windows Cert Store, even if it is not the signature you are using to sign.
  Start > Run > certmgr.msc
  Look for any certs that have "peer-to-peer" in the Intended Purpose column
  Remove that cert
  Restart Acrobat
  Give that a shot.
  Patrick,I have not found the Intended purpose of cert names "peer-to-peer".
  But I have just found the cert which will cause the signature failure.
  The key is the cert can not be removed.
  I'm very curious that why a cert has no relationship with the signature could cause the signature failure?
  Is it a BUG of Acrobat/Adobe Reader?
  If not how can i operate successfully?
  Thanks.

• Why Memory Manager .cpp Error.How to avoid this

  I am getting getting the attached error when developing labview program.
  Why this error is coming?
  How to avoid this?
  Attached the error screen shot
  Attachments:
  MemoryCppError.png ‏33 KB

  Hi Selvan,
  we don't know your VI, thus we don't know the cause…
  Practical advice: save often, save early!
  Best regards,
  GerdW
  CLAD, using 2009SP1 + LV2011SP1 + LV2014SP1 on WinXP+Win7+cRIO
  Kudos are welcome