Permissions to add workstation to domain but not login locally

Similar Messages

• Add another local domain but not sending

  dear all,
  i have OCS R2 i am able to send email form local domain (ocsmail.x.com) to the same domain and extarnaly to hotmail.
  i had to add another mail domain (mail.xyz.com) now i am not able to send emai from mail.xyz.com to ocsmail.test.com while i am able to send emials outside to hotmail, what configration should i do to let it send emails localy but to other domails.

  Hi
  Havic,
  >>When I try those setting, I cannot logon locally with this new account (good).  I can remove it from the domain (good).  I cannot add it back.  I'm getting a:
  "The join operation was not successful.  This could be because an existing computer account having the name was previously created using a different set of credentials..."
  According to your error message, it is limited by access is denied.
  So to solve the problem, please  add the complete set of permission to allow the appropriate users to rejoin the computer accounts in Active Directory.
  During my test, these permissions are necessary:
       Create Computer objects
       Delete Computer objects
       Reset Password
       Read and write Account Restrictions
       Validated write to DNS host name
       Validated write to service principal name
  Here is the link for how to do: https://support.microsoft.com/en-us/kb/932455
  Best Regards
  Mary Dong

• Public Folders Permissions Tab Missing on one pc but not another

  this has to be pc related but i just can't find any info anywhere. when i log into a pc and startup outlook and go to public folders, i cannot see the permissions tab on the folders at all. but if i go to another pc, same OS and office version, i CAN see
  and edit the permissions on public folders! has anyone else run across this problem?
  Exchange Server 2007
  Desktops Win7
  Outlook 2013

  Hi,
  Since the issue only happens to specific client, the issue should be related to client side. I suggest we can do the following method to narrow down the issue:
  1. Start Outlook in safe mode(Start > Run >type “Outlook /safe”> Enter) to check whether the issue persists.
  2. Perform a clean boot for Windows to have a try.
  If the issue doesn’t happen in safe mode, the issue may be caused by any third-party add-ins. We can disable third-party add-ins one by one to find out the root cause.
  If the issue persists in Outlook safe mode but not occurs after performing a clean boot, please disable the related third-party program in Windows to resolve the issue. For more information about clean boot, please refer to:
  http://support.microsoft.com/kb/929135/en-us
  Regards,
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
  Winnie Liang
  TechNet Community Support

• Write permissions issues / lots of "ACL found but not expected" errors / hardware failure? on brand new Mac Mini (still within warranty). OSX Mavericks 10.9.1.

  I was hoping that I could receive some feedback from you fine folks here
  My situation:
  I bought a 2012 Mac Mini 2.6 Ghz Intel Core i7 from the online Apple store. It came with Mavericks 10.9.1 pre-installed and was delivered two days ago (I know, the mini update is evident but I needed the machine).
  I noticed that I had to enter my password every time I created, moved or deleted a folder. I did not think much of it.
  I did, however, think much of not being able to install files from certain developers. I received the "The installer is damaged" notification as shown in this topic: https://discussions.apple.com/thread/5541793
  This screenshot is someone elses, I tried to install audio software.
  Based on that error, I contacted the developer of the software. But then I noticed that I got the same error for other developers too.
  I tried the solution that the topic starter marked as solving his issue in https://discussions.apple.com/thread/5541793. It involves booting in OSX Recovery (command+R) and excecuting the 'resetpassword' command. That did not work for me. It also looks like my password data isn't stored as I do not see the 'obfuscated' password dots that the screenshot shows in that topic, even when I entered and saved it multiple times -- but I'm not sure if that is part of the main issue (which I'm gettting to).
  I also made sure gatekeeper allows applications to be installed from unidentified developers, as shown here: http://www.instantteamspeak.com/static/en/img/mac-gatekeeper-anywhere.png That didn't help either.
  Next I opened up Disk Utility and ran a check on write permissions. That got me worried.
  The check ran for a long time, spitting out "ACL found but not expected" errors.
  I proceeded to restore write permissions. That took 20-25 minutes.
  Once it finished I checked write permissions again. An equal amount of permissions needed to be restored! It's as if Mavericks didn't remember anything it did.
  The good news is that I could now install the files I previously couldn't, but the fact that I've restored write permissions three times now, and each time it seems as if nothing of that is remembered, has gotten me worried.
  I've made a video with some explanation here http://youtu.be/a0hKQvy-Km8 - my sincerest apologies for the shaky camera.
  I then checked the hard disk and the partition above it. The Macintosh HD gave me the green 'ok' light, but something weird happened when I checked the partition on the level above it. It will take ages to finish and I see Disk Utility doing some strange 'jumping around': http://youtu.be/hyLAEhLRnKc (warning - long video so you might want to skip through it. The point is to demonstrate how long it takes).
  When I checked the hard disk for a second and third time, I got 'everything ok' results pretty quickly.
  Checking both the HD and the partition above it again, this is what happens (and what now worries me the most): http://youtu.be/4l2Fb2RvOW4
  Edit: I sum up my findings at the end of the video, might be better to skip here and then watch the full thing only if it's not clear yet.
  There is some further explanation in the video. It basically comes down to Disk Utility not finishing/not providing any conslusion, while Activity Monitor shows it's not doing anything -- please bare with me when watching the video, I know it's not the most exhiting video ever posted on YouTube but it does bring my point across (there is some more talk in this one; not sure if that's an improvement in terms of entertainment value though ).
  ** Is my hard disk failing? In that case I'll return the Mac immediately.
  ** Or just a software issue?
  As said, this Mac Mini is brand new. If at some stage anyone would feel the wise thing to do is to return my Mac, please do let me know. There is a 14 day return policy in The Netherlands (on top of other warranties) and I'd rather return it in case of doubt, than end up with technical issues with this machine once I've started working with it. I'm ok with doing some troubleshooting if the machine is fine, but I'd rather not take a gamble with a 1200 € machine under warranty.
  Thank you so much in advance - your help is highly appreciated. 
  Paul

  I was hoping that I could receive some feedback from you fine folks here
  My situation:
  I bought a 2012 Mac Mini 2.6 Ghz Intel Core i7 from the online Apple store. It came with Mavericks 10.9.1 pre-installed and was delivered two days ago (I know, the mini update is evident but I needed the machine).
  I noticed that I had to enter my password every time I created, moved or deleted a folder. I did not think much of it.
  I did, however, think much of not being able to install files from certain developers. I received the "The installer is damaged" notification as shown in this topic: https://discussions.apple.com/thread/5541793
  This screenshot is someone elses, I tried to install audio software.
  Based on that error, I contacted the developer of the software. But then I noticed that I got the same error for other developers too.
  I tried the solution that the topic starter marked as solving his issue in https://discussions.apple.com/thread/5541793. It involves booting in OSX Recovery (command+R) and excecuting the 'resetpassword' command. That did not work for me. It also looks like my password data isn't stored as I do not see the 'obfuscated' password dots that the screenshot shows in that topic, even when I entered and saved it multiple times -- but I'm not sure if that is part of the main issue (which I'm gettting to).
  I also made sure gatekeeper allows applications to be installed from unidentified developers, as shown here: http://www.instantteamspeak.com/static/en/img/mac-gatekeeper-anywhere.png That didn't help either.
  Next I opened up Disk Utility and ran a check on write permissions. That got me worried.
  The check ran for a long time, spitting out "ACL found but not expected" errors.
  I proceeded to restore write permissions. That took 20-25 minutes.
  Once it finished I checked write permissions again. An equal amount of permissions needed to be restored! It's as if Mavericks didn't remember anything it did.
  The good news is that I could now install the files I previously couldn't, but the fact that I've restored write permissions three times now, and each time it seems as if nothing of that is remembered, has gotten me worried.
  I've made a video with some explanation here http://youtu.be/a0hKQvy-Km8 - my sincerest apologies for the shaky camera.
  I then checked the hard disk and the partition above it. The Macintosh HD gave me the green 'ok' light, but something weird happened when I checked the partition on the level above it. It will take ages to finish and I see Disk Utility doing some strange 'jumping around': http://youtu.be/hyLAEhLRnKc (warning - long video so you might want to skip through it. The point is to demonstrate how long it takes).
  When I checked the hard disk for a second and third time, I got 'everything ok' results pretty quickly.
  Checking both the HD and the partition above it again, this is what happens (and what now worries me the most): http://youtu.be/4l2Fb2RvOW4
  Edit: I sum up my findings at the end of the video, might be better to skip here and then watch the full thing only if it's not clear yet.
  There is some further explanation in the video. It basically comes down to Disk Utility not finishing/not providing any conslusion, while Activity Monitor shows it's not doing anything -- please bare with me when watching the video, I know it's not the most exhiting video ever posted on YouTube but it does bring my point across (there is some more talk in this one; not sure if that's an improvement in terms of entertainment value though ).
  ** Is my hard disk failing? In that case I'll return the Mac immediately.
  ** Or just a software issue?
  As said, this Mac Mini is brand new. If at some stage anyone would feel the wise thing to do is to return my Mac, please do let me know. There is a 14 day return policy in The Netherlands (on top of other warranties) and I'd rather return it in case of doubt, than end up with technical issues with this machine once I've started working with it. I'm ok with doing some troubleshooting if the machine is fine, but I'd rather not take a gamble with a 1200 € machine under warranty.
  Thank you so much in advance - your help is highly appreciated. 
  Paul

• HT1368 My wishlist is not working on the app store i can not find the add to wishlish icon but it is working fine with the itunes store so i am able to add films and music but not apps does anyone know how to fix this

  My wishlist is not working in the app store on my ipad it is woking fine in itunes store so i can add films and music but the icon "add to wish list" is not available on the app store so does anyone know how to fix this 

  The wish list only works on apps you have to pay for. To get it tap the icon of the app you want to save. After it opens at the upper right corner is a box with a arrow. Tap that then tap add to wish list list in the box that opens.

• Pictures to remote users but not to local users

  We use iChat a LOT to send pictures- I have employees working remotely, and we routinely pase screen shots, via clipboard, to iChat. This is a wonderful thing.
  But you know what? It will not work locally: anyone here in the office cannot receive or send pictures. The message that we get: 'AIM error. An AIM error has occurred. Unable to talk directly to your buddy'.
  I don't know what kind of info about our system to post here that would be important to help out, but I'll try. We have a small LAN of 6 computers. We access the internet through a NetGear Router, which, incidently, is fairly heavily configured so that I can access any of my computers remotely via Timbuktu, and for other reasons and servers.
  This almost seems like a port-related issue, except that sending pictures to an address outside the LAN is smooth and clean.
  Ideas?
  Michael Spencer
  G5 Dual 1.8, T-Book 667, A-Book, iMacs...   Mac OS X (10.4.5)  

  Hi Michael,
  As far as I am aware the Bonjour side should be able to send file.
  Bonjour uses different ports to the AIM side of iChat
  You will need to make sure the ports 5297, 5298 and 5353 are open in the MAc Firewall if it is on and in the modem.
  All need the UDP protocol and 5298needs TCP as in the places where it is specified.
  10:03 PM Monday; March 27, 2006

• Add object in repository but not showing in answers subject area

  Hi all,
  I add a table from physical layer to BM and then presentation layer and successfully restart the BI service but it still not showing in answers subject area i also logout and login the application... any idea why.
  Regards

  Have you reloaded the metadata in the presentation server? This can be done in Answers by using the 'reload metadata' link below the tables (you must have the privilege to do this, by default the Administrator user can do this).
  Restarting the presentation server service will also force a reload.
  Regards,
  Elio

• Reputation Still Poor for Domain but not IP 2 Months After Fix?

  The Aquaforest website (aquaforest.com) suffered an attack back in January which resulted in /en/index.asp being infected with an iFrame JavaScript Trojan.
  This was corrected a few days after infection but IronPort/SenderBase still show a poor reputation whilst other measures (McAfee, AVG, Norton etc) all now report a clean site.    The upshot is that unfortunately several of our customers using the Cisco IronPort Web Reputation Service cannot directly access our site for support etc so we are all are keen to resolve this issue as soon as possible.
  We are not sure how to move forward at this point as we can't see any obvious cause of the Poor status - but interestingly, a Reputation lookup on our IP (217.118.136.236) gives a Neutral result as opposed to the Poor result for the domain (aquaforest.com).
  We would be grateful for any ideas about what is going on here.
  Thanks
  Neil Pitman
  Aquaforest

  After further review, it has been determined that  http://www.aquaforest.com/  is affected by malware. We have taken the necessary steps to lower the WBRS score and should be reflected in the next 4-6 hours.
  Sylvester Fontenelle
  Customer Support Engineer
  Cisco Web Content Security Appliance
  Cisco Technical Assistance Center RTP
  United States: 1-800-553-2447
  International: http://www.cisco.com/en/US/products/ps11169/serv_group_home.html

• HELP - Add Songs to Shuffle, but NOT iTunes Library...?

  Hi everyone,
  I have had a 4th generation iPod for the past several years and decided to add a new 2G Shuffle to my inventory just a few days ago. I received my Shuffle directly from Apple today and was quick to open the box and work on setting up my new "toy". Unfortunately, I've seemingly run into a road block, and I'm hoping someone can help.
  With my 4G iPod, I was always able to drag and drop songs directly onto my iPod without even involving my computer's iTunes library, whatsoever. (IE - I could drag an MP3 file from a open Windows folder to my iPod icon in iTunes, and the song would be added to my iPod) Unfortunately, I can't get my Shuffle to allow me to do this. At the very least, I'd like to be able to add a song to my Shuffle from my library, but then remove it from my library, yet keep it on my iPod. However, once the song has been transferred over to the Shuffle from iTunes, if I delete the track from the library, it is also removed from the Shuffle.
  Can anyone help me with this...?
  Again, to clarify...
  I want to be able to add songs directly to my Shuffle without having to go through the iTunes library.
  Thanks in advance!

  Thanks, Chris, but unfortunately, that is not the
  answer I was hoping for.
  Does anyone else happen to know anything more about
  the issue or have any workarounds...?
  Might it be possible to add songs directly to my
  Shuffle if I enable it for disk use, make the
  "hidden" files and folders viewable, open the
  "iPod_Control\Music" directory, then drag-and-drop
  MP3 files?
  http://shuffle-db.sourceforge.net/

• DNS Server working for top level domain but not host

  Hello,
  I just set up the DNS server on my server and thought I had it working until I tried the sub-domains. I could get to example.com but mail.example.com and www.example.com did not resolve properly even though I had specified them as aliases for the machine record.
  Does anyone know where to look for the cause of this problem? Below I have included my zone file for the domain:
  ns1:/var/named$ more shenzhenguide.com.zone
  $TTL 3600
  shenzhenguide.com. IN SOA ns1.shenzhenguide.com. info.shenzhenparty.com. (
  2006061012 ; serial
  3h ; refresh
  1h ; retry
  1w ; expiry
  1h ) ; minimum
  shenzhenguide.com. IN NS ns1.shenzhenguide.com.
  shenzhenguide.com. IN NS ns2.shenzhenguide.com.
  shenzhenguide.com. IN A 61.145.163.184
  ns1 IN A 61.145.163.184
  shenzhenguide.com IN CNAME ns1
  www.shenzhenguide.com IN CNAME ns1
  mail.shenzhenguide.com IN CNAME ns1
  *.shenzhenguide.com IN CNAME ns1
  shenzhenguide.com. IN MX 1 ns1
  ns1 IN TXT "aliases don't work"
  ns2 IN A 210.17.235.228

  If you enter "www.shenzhenguide.com IN CNAME ns1" there has to be a dot after the .com like : "www.shenzhenguide.com. IN CNAME ns1" but you usually drop it to "www IN CNAME ns1" instead.
  (I don't think you can call the host in a domain for a subdomain).
  Try it like this:
  $TTL 3600
  shenzhenguide.com. IN SOA ns1.shenzhenguide.com. info.shenzhenparty.com. (
  2006061012 ; serial
  3h ; refresh
  1h ; retry
  1w ; expiry
  1h ) ; minimum
  shenzhenguide.com. IN NS ns1.shenzhenguide.com.
  shenzhenguide.com. IN NS ns2.shenzhenguide.com.
  shenzhenguide.com. IN A 61.145.163.184
  ns1 IN A 61.145.163.184
  www IN CNAME ns1
  mail IN CNAME ns1
  shenzhenguide.com. IN MX 1 ns1 (maybe use: shenzhenguide.com. IN MX 1 mail.shenzhenguide.com. instead)
  ns2 IN A 210.17.235.228
  What's this? :
  *.shenzhenguide.com IN CNAME ns1
  And the domain is now handled by zoneedit (with all A records for mail and www.):
  host -v www.shenzhenguide.com
  Trying "www.shenzhenguide.com"
  ;; QUESTION SECTION:
  ;www.shenzhenguide.com. IN A
  ;; ANSWER SECTION:
  www.shenzhenguide.com. 7200 IN A 61.145.163.184
  ;; AUTHORITY SECTION:
  shenzhenguide.com. 6688 IN NS ns17.zoneedit.com.
  shenzhenguide.com. 6688 IN NS ns3.zoneedit.com.
  host -v -t mx shenzhenguide.com
  Trying "shenzhenguide.com"
  ;; ANSWER SECTION:
  shenzhenguide.com. 7200 IN MX 0 mail.shenzhenguide.com.
  And there's no reverse:
  host -v 61.145.163.184
  Trying "184.163.145.61.in-addr.arpa"
  Host 184.163.145.61.in-addr.arpa not found: 3(NXDOMAIN)

• Permit traffic from Inside to Outside, but not Inside to medium security interface

  Can someone just clarify the following. Assume ASA with interfaces as :
  inside (100)   (private ip range 1)
  guest (50)       (private ip range 2)  
  outside (0)      (internet)
  Example requirement is host on inside has http access to host on outside, but it shouldn’t have http access to host on guest – or any future created interfaces (with security between 1-99).
  What’s the best practice way to achieve this?

  Hi,
  The "security-level" alone is ok when you have a very simple setup.
  I would suggest creating ACLs for each interface and use them to control the traffic rather than using the "security-level" alone for that.
  If you want to control traffic from "inside" to any other interfaces (and its networks) I would suggest the following
  Create and "object-group" containing all of the other network
  Create an ACL for the "inside" interface
  First block all traffic to other networks using the "object-group" created
  After this allow all rest of the traffic
  In the case where you need to allow some traffic to the other networks, insert the rule at the top of the ACL before the rule that blocks all traffic to other networks
  For example a situation where you have interfaces and networks
  WAN
  LAN-1 = 10.10.10.0/24
  LAN-2 = 10.10.20.0/24
  DMZ = 192.168.10.0/24
  GUEST = 192.168.100.0/24
  You could block all traffic from "LAN-1" to any network other than those behind the "WAN" interface with the following configuration.
  object-group network BLOCKED-NETWORKS
  network-object 10.10.20.0 255.255.255.0
  network-object 192.168.10.0 255.255.255.0
  network-object 192.168.100.0 255.255.255.0
  access-list LAN-1-IN remark Block Traffic to Other Local Networks
  access-list LAN-1-IN deny ip any object-group BLOCKED-NETWORKS
  access-list LAN-1-IN remark Allow All Other Traffic
  access-list LAN-1-IN permit ip 10.10.10.0 255.255.255.0 any
  This should work if your only need is to control the traffic of the interface "LAN-1". If you want to control each interfaces connections to the others then you could do minor additions
  Have all your local networks configured under the "object-group"This way you can use the same "object-group" for each interface ACL
  object-group network BLOCKED-NETWORKS
  network-object 10.10.10.0 255.255.255.0
  network-object 10.10.20.0 255.255.255.0
  network-object 192.168.10.0 255.255.255.0
  network-object 192.168.100.0 255.255.255.0
  access-list LAN-1-IN remark Block Traffic to Other Local Networks
  access-list LAN-1-IN deny ip any object-group BLOCKED-NETWORKS
  access-list LAN-1-IN remark Allow All Other Traffic
  access-list LAN-1-IN permit ip 10.10.10.0 255.255.255.0 any
  access-list LAN-2-IN remark Block Traffic to Other Local Networks
  access-list LAN-2-IN deny ip any object-group BLOCKED-NETWORKS
  access-list LAN-2-IN remark Allow All Other Traffic
  access-list LAN-2-IN permit ip 10.10.20.0 255.255.255.0 any
  access-list DMZ-IN remark Block Traffic to Other Local Networks
  access-list DMZ-IN deny ip any object-group BLOCKED-NETWORKS
  access-list DMZ-IN remark Allow All Other Traffic
  access-list DMZ-IN permit ip 192.168.10.0 255.255.255.0 any
  access-list GUEST-IN remark Block Traffic to Other Local Networks
  access-list GUEST-IN deny ip any object-group BLOCKED-NETWORKS
  access-list GUEST-IN remark Allow All Other Traffic
  access-list GUEST-IN permit ip 192.168.100.0 255.255.255.0 any
  Then you could basically use the same type ACLs in each interface. (Though still separate ACLs for each interface) And as I said if you need to open something between local networks then insert the correct "permit" tule at the top of the ACL.
  Hope this helps
  - Jouni

• Trying to add a HTML snippet but not working

  i am trying to add an HTML code (from goole) to my iweb blog using the HTML snippet, but once I paste the code from google only an empty box appears instead of the button it is intended to create..
  any ideas????? I am trying to add the google friends connect button to my blog
  thanks!
  madeline

  me again!!!! it worked once published...thank you
  now the new issue is that if i click on the pict of one of the "followers" on the blog, the text and picture all the person's information is too big and runs out of the screen???
  here is the webpage address in case you feel like taking a look at it for me...
  www.tourismwithatwist.com
  Thanks,
  Madeline

• Why can't I get add-on to "FB photo zoom"....can you please help me to get this add-on.As I am able to get the same add-on in chrome but not in mozilla!!!!!!!!

  Can you give a link where I can get '''fb photo zoom'' add-on.....

  Go to the german Computerbild page, there are the addon Facebook Photozoom
  [http://www.computerbild.de/download/Facebook-PhotoZoom-5822166.html Download link for Facebook Photozoom] http://www.computerbild.de/download/Facebook-PhotoZoom-5822166.html

• Managing Computers with 10.5 Server, but NOT managing Local accounts?

  I'll try my best to be clear here - I'm new to 10.5 Server and a functioning Open Directory environment! (formerly used 10.3 Server and never had the OD working).
  Environment:
  School (K-8), with old iMac G3's (10.3.9), eMacs (10.4.11) and a smattering of Mini's and iMacs (10.5.x).
  Server:
  10.5 Server, OpenDirectory and DNS appear to be working perfectly.
  User Accounts:
  Staff members have accounts for logging into sharepoints.
  No one (yet!) has server based home directories except a couple for testing.
  On each computer there is a "staff" account and a "student" account.
  These are LOCAL accounts, and do NOT have same-named accounts on the Server.
  I have bound client computers to the Server by OpenDirector
  dsconfigldap -v -f -a servername.domain.org -n configname -u diradmin -p adminpass
  Now comes the trouble;
  I have added the computers to the Workgroup Manager computers list.
  I have applied computer preference settings for the Energy Saver preferences ONLY. THey appear to have worked (managed computers slept/shut-down/started up according to the managed preference).
  NOW comes the real problem;
  The "staff" account on the managed computers is denying access to most applications on the computer!
  Note: this "Staff" account is local ONLY, and is NOT a server-hosted account.
  I have NOT tried to manage the computer preferences for applications on these computers.
  I can resolve the problem by unbinding the computer from the OD Server - but I'd prefer not to do that. I just got them all bound! And, it screws up my migration plan TOWARDS server-hosted home directories.
  I have tried managing application prefs for a COMPUTER, only to have both the STaff and Student account lose ALL of their local-only application managment settings (all of a sudden, Students can open terminal, grading programs, etc).
  I am obviously missing something!
  At this point, I'd like to back up... to NOT having my Server interfereing with the local accounts until I'm further along mapping out my migration from local-only accounts with file sharing access to Server hosted accounts and server managed preferences.
  (I will also admit I'm a bit confused about when to manage USER preferences, vs when to use managed COMPUTER preferences.).
  Tips appreciated!

  Your last question - using managed user vs. computer preferences got my attention. Mostly, I use Group managed preferences. I do use computer preferences for a laptop cart, other than that I use group preferences. Perhaps your situation calls for managing users, but using group preferences allows me to change the settings for a bunch of people all at once rather than changing settings for each user.
  In any event, check all the managed preferences for your computer level settings. And since you're using a 10.5 server, you have to check the settings for clients that are running 10.4 and earlier as well as the settings for 10.5 and later clients, as they are different.
  At the user level, if you have an OD account and a local account with the same name, the local account will determine what the user can do - I honestly don't know if managed computer prefs will override local settings, but you should look into it. This could be your problem.
  At the very least, you should avoid "testing" with systems that folks are using if you want to avoid the frustration that you are now encountering (speaking from experience i.e. similar mistakes, not preaching).

• Since Firefox 4, I can get a background image to work using base64 encoded, but not a local file, this worked in Firefox 3, how do I resolve this.

  Using either of the 4 examples shown below, to have a background image display inside about:blank worked in Firefox 3.x (using Stylish add-on), however since Firefox 4, only using the base64 encoded version of images works. Is there any way to fix this so I don't have to encode every image I wish to use? Encoding the image makes the stylish file absolutely huge, & a real pain to keep encoding whenever I want to change the image.
  body:empty { background: url("resource:/res/images/OnFire.jpg")
  body { background-image: url("resource:/res/images/OnFire.jpg")
  body:empty { background:url("data:
  body { background-image: url("data:
  I've also previously disabled most of the add-ons, except for Status-4-Evar, Stylish, & Firebug, in an attempt to see if something else was interfering, but no change.
  I can supply a copy of the previously working (FF 3.x) code to some of the about:blank styles if needed for testing purposes.

  Type '''about:addons'''<enter> in the address bar to open the '''Add-ons Manager.'''
  Hot key; '''<Control>''(Mac:<Command>)'' <Shift> A)'''
  On the left side of the page, select '''Plugins.'''
  Is it listed here? Select '''Disable.'''