Mailman vulnerabilty archives web accessible
I recently failed a security audit on my 10.6 server. I use the standard setup for webmail and squirrelmail. Unfortunately, if someone types in my server address they can access all my mailing list archives. For example, http://192.168.1.1/pipermail/
A unauthorized user has full access to all internal emails. This is a huge security issue and after reading various discussions about upgrading mailman/python/pipermail I don't see any easy fix.
Has anyone else had this issue?
If Apple has altered the basic Mailman config, is there an alternative that would work well?
Alas, Mailman is gone. Here's one guide for installing it yourself:
http://www.livetime.com/mountain-lion-mailman-mailing-list/
Similar Messages
-
We are looking for a centralized point to monitor the archiving
jobs for different systems such as BW, PI, etc.
Is Archive Web Monitor a solution? If so, how to use it? Thanks!Can you help? Thanks!
-
Archive Web Page for Off Line Use
Hi all,
I'm currently enrolled in an online music program where I have to review/study web pages for my course instruction. These pages contain standard HTML text, graphics, mp3s, multiple flash applications and quite often embedded quick time movies. To date to back these pages up I have physically printed each page and then discretely downloaded and saved all mp3s, flashes, and quick time movies. However, as I'm sure you can guess, this leads to a very disjointed "archive" of paper product, separate quick time movies, and flash applications. So here's the question:
Is anyone aware of an archive utility that will save a web page like above in it's entirety onto my mac for off line use? I have seen a few web archive tools like I'm looking for, but all appear to be for Windows or older versions of mac OS. So any direction would be much appreciated.
Thanks,
Rick.Hi
Welcome to Apple Discussions
Give this utility a try. The way this works. After you install the app. in your Applications folder, open it. A panel appears.
Then go back to Safari. Open the web page you want to archive. File>Save As. When the panel opens make sure the drop down menu is set to "Web Archive". Then go to the location where you saved that page. Move the web archive file onto the Utility's panel. This will create a folder with the various web components for that web site.
Also, either update your tag to your current version of OS X Leopard, or if 10.5.2 is correct, consider upgrading to 10.5.5 via Software Update.
Message was edited by: Hawaiian_Starman -
Group Mail, Mailman and archives
Im confused. I have a mailman list I want to migrate to Leopard Server. Id like to let the listers have a wiki. Ive set up the group, and the wiki and I see it. (i have other problems with that but ignoring them for the minute)
Will poste to my mailman list be the mail archive?
If so can I migrate my old archive somewhere to make sure the old data is still searchable.
Or, is a mailman list completely separate from a group mailing list.
Like I said. Im confused.
If this is all explained somewhere please point me. Ive looked for doc and searched - probably not enough.
thanks
AngusHi
"It seems that group mail introduced in previous Snow Leopard Server, it's gone. There is mailman, but I don't need a mailing list , just a simple mail grooup functionality. It's impossible to do in Lion Server?"
Actually Group e-mailing was available in previous versions of the Server. It's not impossible to do in Lion Server either. It's just not obvious if you want to use the interface. There's not much documentation regarding this either.
These two threads (you could have searched this for yourself) should have the information you need:
https://discussions.apple.com/thread/3518290?start=0&tstart=0
https://discussions.apple.com/thread/3229060?start=0&tstart=0
There's also a way of doing this using WorkGroup Manager's Info Tab.
You should get into the habit of using the command line on OS X Server - the Terminal application in /Applications/Utilities - as this is the most effective way for you to get what you want, especially with the Mail Service.
The other Server Administration applications (which you may not be aware of?) are available for free download here:
http://support.apple.com/kb/DL1488
You will need Server Admin to initially configure the Mail Service properly. As ever remember to set up DNS Services correctly as everything you want or may want will depend on it.
HTH?
Tony -
Can't Export/Archive Web Services for Migration
We have several web services that I'd like to copy from one
server to another. I tried creating a ColdFusion Archive but the
web services that I selected are not included in the CAR file. Is
this a known issue?
Is there any other way to migrate web services from one
server to another? Are the entries stored in an XML file?
Thanks for any help,
GlennBill:
Welcome to the Apple Discussions. Try the following:download and run BatChmod on the iPhoto Library folder with the settings shown here, putting your administrator login name, long or short, in the owner and group sections. You can either type in the path to the folder or just drag the folder into that field. See if this will help.
Next, log into another account or boot into Safe Mode and see if you can export to a web page. If so then there's something amiss with your account. If not, then a reinstall of iPhoto seems appropriate.
Do you Twango?
TIP: For insurance against the iPhoto database corruption that many users have experienced I recommend making a backup copy of the Library6.iPhoto database file and keep it current. If problems crop up where iPhoto suddenly can't see any photos or thinks there are no photos in the library, replacing the working Library6.iPhoto file with the backup will often get the library back. By keeping it current I mean backup after each import and/or any serious editing or work on books, slideshows, calendars, cards, etc. That insures that if a problem pops up and you do need to replace the database file, you'll retain all those efforts. It doesn't take long to make the backup and it's good insurance.
I've written an Automator workflow application (requires Tiger), iPhoto dB File Backup, that will copy the selected Library6.iPhoto file from your iPhoto Library folder to the Pictures folder, replacing any previous version of it. It's compatible with iPhoto 08 libraries. iPhoto does not have to be closed to run the application, just idle. You can download it at Toad's Cellar. Be sure to read the Read Me pdf file. -
Open file from a directory that is not web accessible?
Subject says it all really, I'd like users to be able to download files from a directory that is otherwise not accessible by the browser. There is a way to do this is PHP, the readfile() function. Is there something equivalent in Java?
Thanks!You can do that with a Servlet and a shot of java.io API.
Here's an example: [http://balusc.blogspot.com/2007/07/fileservlet.html]. -
I created a camera archive from a DV tape. Everything appeared to import correctly and I now have a 13GB .fcarch file. The problem is the FCPX does not see this file. When I try to open it in the camera import box, the file is greyed out. I confirmed that the archive package contains the clips.
Any ideas?I had the same problem. The way I solved it was to select Import Camera (as if I was importing from a new tape), and when I got the import window I selected the .fcarch file (that was already there), and selected import all.
A sweep then appeared next to the file name, indicating the fraction imported. It took only a few minutes.
A bizarre way to do things. -
Archiving web pages and websites
Hi, i've got 19 websites with each 2 to 10 pages each, some with videos... all very very heavy. Everytime I want to publish a new website, it takes FOREVER as it publishes everything, page by page, and freezes my computer... can I store/archive my old websites i don't use so i can work on one website in the iWeb application at a time?
iWeb stores your website's data in a domain file whose default location is Home Folder/Library/Application Support/iWeb.
Its a lot easier to manage multiple websites if they are built on separate domain files. I keep mine in separate folders and launch them individually in iWeb by double clicking the appropriate domain file.
The alternative is to use an application like iWebsites to manage them. This application is also capable of merging domain files.
http://mistergregg.com/cocoadrillosoftware/iWebSites/
You can split up sites that are built on one domain file by duplicating the file as many times as there are websites and placing these duplicates in separate folders. Each one is launched in iWeb in turn and the sites that you don't want are deleted.
I prefer to build each site on a new domain file to decrease the chances of domain file corruption.....
http://www.iwebformusicians.com/WebMusic/SiteLayout.html
"I may receive some form of compensation, financial or otherwise, from my recommendation or link." -
Prevent Printing of Web Accessible pdf created with Acrobot Pro X
I posted this elsewhere but have not had an reply so wondered if I asked in the wrong place.
Hello,
Could I get brief answers to the following three questions...
Question 1:
Do the prevent printing advanced options in Adobe Acrobat Pro X work reliably across all main browsers, such that I can safely display the .pdf files on a website, knowing that the majority of users (Chrome, Firefox. IE), will not be able to print the files, even if they save them to their local disk?
Question 2:
Can I go further than that and actually prevent the local saving of the .pdf files altogether?
Question 3:
Assuming one or both of the answers is Yes, which is what I am hoping for, will security measures prevent Google reading and indexing the files.
Actually, I want this also to be a yes. It is only the downloading and printing of the files I hope to prevent, restricting those actions to people who purchase the documents.
Many thanks in advance for your help.Question 1: No.
Question 2: No. -
Safari 5 not showing Web Archive pages
Hello, I have Safari 5, and I can't see some of the pages that I need to see. This has been a problem for me for a while, not matter what version of Safari I use. I click on the link from a website, and when the page loads, instead of getting the page that I should be getting, I get a very long page, covered in system codes, or something of the such, and at the top of the page, it says, in typewriter-like font,
"This document is a Single File Web Page, also known as a Web Archive file. If you are seeing this message, your browser or editor doesn't support Web Archive files. Please download a browser that supports Web Archive, such as Microsoft Internet Explorer."
After that, it goes into the code. I have looked other places on the internet, but never found anything like what I am experiencing. Any help from anyone? Thanks.HI,
.mht
Definitely Microsoft "The MHT file type is primarily associated with 'MHTML Document' by Microsoft Corporation. Archived Web Page. When you save a Web page as a Web archive in Internet Explorer, the Web page saves this information in Multipurpose Internet Mail Extension HTML (MHTML) format with a .MHT file extension. All relative links in the Web page are remapped and the embedded content is included in the .MHT file. The absolute references or hyperlinks on the Web page remain unchanged and the .MHT file is viewed using Internet Explorer. Note: This file type can become infected and should be carefully scanned if someone sends you a file with this extension."
http://filext.com/file-extension/MHT
with a program that will not be supported by Safari/Mac?
That's it. -
Archiving/zipping to different folder
Hello
Normally the Finder Archive function (accessible e.g. from contextual menu in Finder) archives to a .zip archive in the same folder as the original object being archived.
The Finder Archive function use BOMArchiveHelper, which is in:
/System/Library/CoreServices/BOMArchiveHelper.app/Contents/MacOS/BOMArchiveHelpe r
So the same archiving can be achieved in an AppleScript by the following statement:
do shell script "/System/Library/CoreServices/BOMArchiveHelper.app/Contents/MacOS/BOMArchiveHel per" "theUnixname"
where theUnixname is the Unix name of the file or folder being zipped. This works.
My question is the following: Is there any option to BOMArchiveHelper that permits the resulting file to be in a different folder than the original file or folder? This would permit archiving directly to another disk, e.g. an external hard disk, without first copying the uncompressed files or without using disk utility to make a compressed disk image.
(The reason I would like to use the zip files is that they are more universal than the compressed disk images. And I want to use BOMArchiveHelper rather than another ZIP program such as ZipIT because the Macintosh structure with resource forks is preserved by BOMArchiveHelper in a way that still permits the ZIP archive to be opened on e.g. a Windows or Linux machine, which is not the case for the MacBinary implementation in ZipIt).
Thanks in advanceI think you can use a shell-like command in an AppleScript.
In this command you could use gzip "sourcefile" > "targetfile" -
Unique rollback in a BPEL process using web services
We are a cellular communication company using Oracle DB (10g) and Oracle Forms to run our business applications (customer care and the like). We have planned a system migration using the SOA approach with the latest release of Oracle BPEL Suite (business logic), Oracle ADF BC (presentation level), Oracle OAS (application server) and JDeveloper (application development IDE).
Within our current applications we have processes that perform several tasks (inserts, updates and/or deletes on the same DB) as part of one atomic DB transaction. Using the SOA approach we’ve deemed those tasks as being ‘services’ that we, let’s say for the sake of argument, could implement either as web services (so as to be published for reuse) or as stored procedures encapsulated via DB adapters (BPEL lexicon).
Our biggest challenge, and hence our question to the SOA world, is how to attain that same unique transaction. We understand that there is no one perfect approach, for the ‘solution’ depends on too many factors and choices; what we’d like to know are past experiences people had or, at best, what do people consider what the best practices in the industry are regarding this matter.
<strong><u>Approach A:</u></strong> all services are implemented as DB adapters (stored procedures and the like).
<strong><u>PROS</u><u>:</u></strong> one single DB rollback should any service fail to execute properly and so undo all changes made so far.
<u><strong>CONS:</strong></u> highly coupled, non-visible components (via UDDI); impossibility to manage, control and audit (via WS Manager) components; weak/poor SOA Governance.
<u><strong>Approach B:</strong></u> all services are implemented as web services.
<u><strong>PROS:</strong></u> loosely coupled, self-contained, and web accessible visible components (via UDDI) besides the ease to manage, control and audit (via WS Manager); strong SOA Governance.
<u><strong>CONS:</strong></u> since each web service is a ‘different’ transaction with its own ‘commit’, a unique rollback transaction for the whole process will not be possible should a WS fail, for previous WSs will have already committed their data changes before doing the rollback.
<u><strong>Approach C:</strong></u> services implemented as a mix of web services and DB Adapters.
<strong><u>PROS:</u></strong> those of Approach B for web services.
<strong><u>CONS:</u></strong> those of Approach A (DB adapters) + those of Approach B (web services).
<hr />
So, the 64,000 dollar question is how to attain a single transaction when you have web services as part of your process? Do we need to ’build/create’ a schema/functionality similar to the ‘DB-undo-segment’ in order to obtain a single rollback transaction for the whole process or does the BPEL COMPENSATE delivers this functionality somehow?
Are we not seeing the obvious? Are we not seeing the forest because we’re looking at a tree? Please keep in mind that we are using Oracle BPEL.
Thanks a bunch,
--SergioHi Marinus,
you are absolutely right and not missing anything. OWSM does not free you from taking additional measures to block direct interaction with the unsecure WebService from not "authorized" clients. You must restrict the http response to the OWSM host only (either in the Apache or the OC4J configuration). See the related documentation.
--olaf -
Export Release Build Flash Builder 4.5 fails to load over the web.
Exported Release Build Application fails to load over the web. You can reproduce using the following steps:
1. Create New Flex Project in Trial Flash Builder 4.5.
2. Use the default Flex 4.5 sdk.
3. Configure as a web application.
3. Place the following MXML code in the main application file:
<?xml version = "1.0" encoding = "utf-8"?>
<s:Application xmlns:fx = "http://ns.adobe.com/mxml/2009"
xmlns:s = "library://ns.adobe.com/flex/spark"
xmlns:mx = "library://ns.adobe.com/flex/mx"
minWidth = "955"
minHeight = "600">
<fx:Declarations>
<!-- Place non-visual elements (e.g., services, value objects) here -->
</fx:Declarations>
<s:TextArea text = "Hello World!" width = "100%" height = "100%">
</s:TextArea>
</s:Application>
3. Save the main application file and Export Release Build to bin-release.
4. Place all files in bin-release on IIS web server in a web accessible location.
5. Go to the web accessible location in any browser with newest flash player and view the application's html page.
Actual Results:
Flash movie appears blank. Context menu shows Movie Not Loaded. Network traffic shows application main swf downloaded. Framework dependent swfs not downloaded.
Expected Results:
Movie loads. Hello World! appears in text box. Context menu does not show Movie Not Loaded. Framework dependent swfs downloaded.
Workaround (if any):
Deploy on an Apache web server.
The tests were run on IIS 7.x (7.0 for one, and 7.5)
Flex application was built using Flex 4.5.0 SDK pre-bundled release (built-in flex 4.5 with Flash Builder 4.5 trial) on Mac OS X 10.6.7 (10J869)
Flash Player 10.3.181.14
Example failing website:
http://staging.ibenergy.com/Test.html
Any idea as to why my exported release build fails? Any help would be appreciated.Just tried this out on an IIS server with Flash player 10.3.181.14 - it worked.
Are you using the release version of Flash Builder 4.5 with the release version of Flex SDK (not a prior SDK build)?
The URL you mentioned gives me a 403 forbidden error.
-Anirudh -
What's New in Adobe Creative Cloud for Web Pros | Creative Cloud for Web | Adobe TV
Introducing all of the tools you need to create a more beautiful, modern web — accessible now in Creative Cloud.
http://adobe.ly/11O2G2NI notice your tools are very familiar with Google Chrome, which is still running on Webkit. Is anything going to change once Chrome moves to Blink? Specially on Edge Reflow, which you mention runs Webkit. And...what about supporting other browsers (coff, Firefox)?
-
Keynote with imbedded movies to Web?
I have a keynote presentation with several slides that have QT movies in them, set to play on opening and to loop. I want to make this web-accessible. When I export the presentation to HTML for placement on the web, only the initial frame of the movie is seen, and they cannot be played.
Is there a method for doing this?
Thank you in advance.Dear littlebluman,
unfortunately I can't help you about your subject, but probably you can help me. I`ve aquired recently a Macbook pro and I`m giving my first steps with keynote. Your request is the only o one which is related with my question, which is about Quicktime files in keynote presentations.
Could you tell me how can I import a QT movie int a keynote presentations?.
Thank you in advance,
Alfredo
Macbook pro Mac OS X (10.4.6)
Maybe you are looking for
-
How can I map a drive to Azue file shares without user intervention or having a user logged on?
I have the file share created, and can manually map the drive. I have even created a batch file that will create the drive mapping. One step further, I used the following regedit to create the mapped drive: Regedit: HKEY_LOCAL_MACHINE\SOFTWARE\Micro
-
When I try to import .olm files from my external hard drive back up, where do they go? It says on different forums they go to the "on my computer" folder but they are not there. I go through all the instructions but then my emails do not appear. I'm
-
Hi guys and gals Have not used my macbook pro for couple of months and now she is frozen - opens to wallpaper on desktop of snow leopard but absolutely no response with mouse or track pad . Screen goes blank after 5 mins then the only response is fro
-
when turning on my macbook, I just get the "apple screen" and the spinning dial
-
JAVA API (javaDoc) Functionality
Hello all I have come across the following idea after wasting some considerable time browsing the Java API (JavaDoc). The API is a great tool in assisting programmers who are not so experienced and do not know the API so well. It also helps experienc