Securing Printers for Check Printings

Hello -
We want to designate a printer for printing checks only.  We do not want anyone else printing to this printer.  Ideally, we don't want anything going to this printer but the checks.
Is there a way to configure security for a printer within SAP?  We tried at the network level, but it generates errors.
Unfornately searching sap with termns like printer and security are bring in too many irrelevant results.
Any suggestions?
Thanks in advance.

in your system you need to identify all printer with a unique name.
In mentioned object S_SPO_DEV you can allow users (in roles) to accees a specific printer, but also be sure to limit all other users NOT to be able to print
So i would give all users in a general user role access to all printers exept the specific one. and have One role giving access to that specific printer. In all other roles set teh object to inactive and you are in control of that printer via role assignment

Similar Messages

  • Security object for check against Lab office in DIR

    Hi,
    We are running R/3 46C and use DMS to store our business documents via online vault. I have a requirement to set up access based on Lab office (department) that is used in the Document Information Record. Is there a standard security object that I can use in security roles to build this.
    Any info would be appreciated and rewarded.
    Regards
    Nirmal

    Your best option would be to use a user exit, for example badi "document_main01" "before_save" to populate the auth. group field, and then use normal roles/profiles to check on auth. group.
    Regards,
    Espen
    Please reward if useful.

  • Are there any good tool for checking security risks, Code review, memory leakages for SharePoint projects?

    Are there any good tool for checking security risks, Code review, memory leakages for SharePoint projects?
    I found one such tool "Fortify" in the below link. Are there any such kind of tools available which supports SharePoint?
    Reference: http://www.securityresearch.at/en/development/fortify/
    Amalaraja Fernando,
    SharePoint Architect
    Please Mark As Answer if my post solves your problem or Vote As Helpful if a post has been helpful for you. This post is provided "AS IS" with no warrenties and confers no rights.

    Hi Amalaraja Fernando,
    I'm not sure that there is one more tool that combines all these features. But you may take a look at these solutions:
    SharePoint diagnostic manager
    SharePoint enterprise manager
    What is SPCop SharePoint Code Analysis?
    Dmitry
    Lightning Tools Check
    out our SharePoint tools and web parts |
    Lightning Tools Blog | Мой Блог

  • Windows 2012 server security checklist for corporate company standard/recommended check-list

    Hello All,
    Good Day.
    I am looking for Windows 2012 server security checklist (standard hardening
    settings), would you kindly assist me by providing Wintel 2012 standard/recommended check-list ASAP?
    Thanks in advance.

    Hi,
    The Microsoft Security Compliance Manager 3.0 tool is designed to provide you with an end-to-end solution to help you plan, deploy, and monitor security baselines for computers running Windows Server 2012 in your environment.
    For more detailed information, please refer to the articles below:
    Windows Server 2012 Security Baseline
    http://technet.microsoft.com/en-us/library/jj898542.aspx
    Security Hardening Tips and Recommendations
    http://social.technet.microsoft.com/wiki/contents/articles/18931.security-hardening-tips-and-recommendations.aspx
    Regards,
    Mandy
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • HT5312 How do I check my security answers for my ID.  I'm sure I put them the answers in correctly but Apple says I am wrong.  There seems to be no facility to check what answers Apple have.

    How do I check my security answers for my ID?  I'm sure I have put them in correctly but Apple says they are wrong.  There seems to be no facility to check what answers Apple has and I do  not have a rescue e-mail address.

    Read the article you linked

  • Hi  I'm try to set up a new Epson printer SX 445 to my router/network but each time I run the set up wizard it fails to complete saying Security Key/Password Check fail.  *entered security key/password does not match the one set for for router.  I know th

    Hi
    On my macbook pro
    I'm try to set up a new Epson printer SX 445 to my router/network but each time I run the set up wizard it fails to complete saying Security Key/Password Check fail.
    *entered security key/password does not match the one set for for router.
    I know that the password is correct and have rechecked this by changing it a few times
    and I still get the same result.
    My network internet service provider is not interested and says to call Epson.
    Anybody have any clues how I can resolve this?
    Regards

    I personally suggest the new Drobo FS. Since it has an iTunes server built in and you can use any size sata hard drive in it it is better and a NAS that has to use the same size drives.

  • PS script to change printers and check for default

     We have a large project of renaming printers due to some linux devises that do not agree with our naming convention. I am new to ps so looking for some direction.
    Our current printers are say 'print$1' and we are changing to 'print1' basically just removing the dollar sign.
    We have batch files for the helpdesk for new imaged machines so they will get the new names, no problem but for the people that have been here, how can I create a script that will do the following:
    1. allow me to put old printer > replace with new printer
    2. detect if old printer is default and make new printer default.
    3. only affect the printers that are currently installed on the pc
    note we have multiple locations and alot of print servers. 
    thank you for your help

    gaff-
    I believe he wants to rename the printers on the client workstation. Group Policy can do that very easily
    You can also add to your ProintManager script to have it generate the GP objects and add the users or computers to them.  Most of the time is is easier to just use ProntManager GUI unless you have hundreds of printers  If it is only a dozedn then
    a non-scripter would be better off running the GUI.
    We moved about 30 printers for 100 accounts in about one hour the first time we set up PrintManager.  This included an upgrade to 64 bit drivers which was the biggest issue. A rename is very much easier.  I can rename 30 probters with the GUI in
    about 2 minutes.
    It is resetting the client systems that is the issue.  If they are beoing set by GP or through a login script then this, too, is easy.  If they are just attached in different ways then I recommend that Group Policy is the only way to reset them
    without spending a month trying to design a script that will work for all systems.
    If this is for a WS2003 spooler then you can still use Group Policy Preferences it you install the AD updates or have WS2008 domain controllers.
    Placing all printers under PrintManager control is the absolute best method.
    If all printers are not Windows printers - (Unix spolers or JetDirect/Network) then you will have to create a script that can find every pronter and rename it on every system.  This will be very difficult to do and will likely take quite a while to
    accomplish in a large network.
    GP can install printers at the machine level and update drivers.  This will work well except if you are using non-Windows compliant printers.  I have never had this scenario work smoothly on  an older network.  This is one reason why
    I do everything I can to force Admins to use PrintManager for all printers WIndows and Unix.  We also try to be sure the location awareness is enabled and that all locations are tagged in AD.  This allows users to browse easily for local and remote
    printers.  We set initial default but user4s are always allowed to change the default if they want and know how.  Users are allowed to print to all "group" printers and departmental printers but not to personal printers.  In some cases
    all users in a group can print to each others personal printers.
    I am now working on getting wireless printers set up for use by visitors, guests and salespeople.  Every group should have a wireless printer and know the hidden SSID.  I notice that many universities and hospitals are now doing this for the convenience
    of visitors. I can priont from my phone almost everywhere I go lately.
    Use PrintManager.  It will save you a lot of trouble.  Once set up PowerShell can script everything very nicely.  Gaff's code will always be the easier way to do most things.
    If you look in the repository/Gallery you will see many PowerShell PrintManger scripts and tools. -
    I should also note that Gaff's suggestion to use WMI will only work in a login script and will not work well on system connected printers which will have to be done remotely.  Again, it all depends on how your environment is set up.
    ¯\_(ツ)_/¯

  • Settings and/or adjustments after installing micr toner for check printing with p1102w ??????

    Ive installed a brand new micr cratridge in my p1102w. After my first attempt at publication I was disappointed to find that check readers are unable to read my checks. Is there anything in settings or something anywhere that Im missing or unaware of that will dial my printer in to printing checks that can be read??

    Hello, if you would like us to help with your question, please contact one of our Secure Solutions Specialists at 800-633-2266. TROY is an HP Business Partner and the only one worldwide authorized to modify their printers for MICR printing. We also provide OEM MICR toner for many HP laserjets including the 1102 you mention. We'd be happy to help.

  • IP address conflict help and setting up security code for access

    Hi folks, I am about as non-technical as one can get. So I apologize in advance and thank you guys for your patience as everything you tell me will have to be spelled out for me.
    Ques 1:  I have one desk top computer with internet access through my cable TV provider. On it I have the Linksys WRT54G wireless router.  We use two laptops.
    Lately I've been getting an error message on my desktop saying there is an IP Address that is in conflict. My son often gets booted off line (on laptop) and so I'm guessing maybe it is his laptop that is in conflict. Please help me resolve this issue.
    Quest 2:  I would like to set up a security code for our wireless access so that other people will not be able to intrude upon our signal. Can someone walk me through this as well?
    Thank you so much!
    -Jen in NJ

    The most common reason to get two identical IP addresses, is if you are using fixed LAN IP addresses incorrectly on your system.
    Do you already use any fixed LAN IP addresses? If so, please state what fixed LAN IP addresses you are using, and also state your DHCP server range.
    Rules for using fixed LAN IP addresses on Linksys routers:
    With Linksys routers, a fixed (static) LAN IP addresses must be assigned in the device that is using the address. So you need to enter the fixed address in the computer or printer, not in the router.
    When using a Linksys router, any fixed LAN IP address must be outside the DHCP server range (typically 192.168.1.100 thru 192.168.1.149), and it cannot end in 0, 1, or 255.
    Therefore any fixed LAN IP address would normally need to be in the range of
    192.168.1.2 thru 192.168.1.99 or
    192.168.1.150 thru 192.168.1.254
    assuming you are still using the default DHCP server range.
    Also, in the computer, when you set up a static LAN IP address, you would need to set the "Subnet mask" to 255.255.255.0 and the "Default Gateway" to 192.168.1.1 and "DNS server" to 192.168.1.1
    It is also important that no two devices on your network be set to the same static LAN IP address.
    Check all of your static LAN IP addresses. If you have violated any of the above rules for static LAN IP addresses, it could be the cause for your problem, and you should fix it before attempting any other router repairs or changes.
    *********  Wireless Security  **********
    Brfore proceeding with wireless security, you must get your IP address conflict problem solved.  Please do the above first.
    To set up wireless security, you must use a computer that is wired to the router.
    Where to find the router settings: The router's login password is usually on one of the "Administration" pages. The other settings are all found in the "Wireless" or the "Security" section of the router's setup pages, located at 192.168.1.1
    First, give your router a unique SSID. Don't use "linksys".
    Make sure "SSID Broadcast" is set to "enabled".
    Next, leave the router at its default wireless settings (except for the unique SSID), and then use your pc to connect wirelessly to the router. Test your wireless Internet connection and make sure it is working correctly. You must have a properly working wireless connection before setting up wireless security.
    To implement wireless security, you need to do one step at a time, then verify that you can still connect your wireless computer to the router.
    Next, encrypt your wireless system using the highest level of encryption that all of your wireless devices will support. Common encryption methods are:
    WEP - poor (see note below)
    WPA (sometimes called PSK, or WPA with TKIP) - good
    WPA2 (sometimes called PSK2, or WPA with AES) - best
    WPA and WPA2 sometimes come in versions of "personal" and "enterprise". Most home users should use "personal". Also, if you have a choice between AES and TKIP, and your wireless equipment is capable of both, choose AES. With any encryption method, you will need to supply a key (sometimes called a "password" ).
    The wireless devices (computers, printers, etc.) that you have will need to be set up with the SSID, encryption method, and key that matches what you entered in the router.
    Retest your system and verify that your wireless Internet connection is still working correctly.
    And don't forget to give your router a new login password.
    Picking Passwords (keys): You should never use a dictionary word as a password. If you use a dictionary word as a password, even WPA2 can be cracked in a few minutes. When you pick your login password and encryption key (or password or passphrase) you should use a random combination of capital letters, small letters, and numbers, but no spaces. A login password, should be 12 characters or more. WPA and WPA2 passwords should be at least 24 characters. Note: Your key, password, or passphrase must not have any spaces in it.
    Most home users should have their routers set so that "remote management" of the router is disabled. If you must have this option enabled, then your login password must be increased to a minumum of 24 random characters.
    One additional issue is that Windows XP requires a patch to run WPA2. The patch is located in SP3, so you will need SP3 to run WPA2 in Win XP. Vista already supports WPA2.
    Note:
    WEP is no longer recommended. The FBI has demonstrated that WEP can be cracked in just a few minutes using software tools that are readily available over the Internet. Even a long random character password will not protect you with WEP. You should be using WPA or preferably WPA2 encryption.

  • When I go to a website requiring login, and am logged in automatically, I still get prompted by Software Security Defice for master password. New w/Firefox 24.

    If I go to a website that requires a login & password, and I have it set up to automatically log me in, I get automatically logged in (it remembers by userid & password for that site), but the prompt from the Software Security Device for my master password appears as well. I can cancel the prompt and it goes away, but it shouldn't show up because I'm already logged in. This problem started happening after I downloaded Firefox 24 yesterday.

    Start Firefox in <u>[[Safe Mode|Safe Mode]]</u> to check if one of the extensions (Firefox/Firefox/Tools > Add-ons > Extensions) or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox/Firefox/Tools > Add-ons > Appearance).
    *Do NOT click the Reset button on the Safe Mode start window.
    *https://support.mozilla.org/kb/Safe+Mode
    *https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes
    Note that Firefox Sync also requires you to enter the Master Password.

  • Unable to securely request for a page

    Question:
    a) I'm unable to securely request for my webpage : https://127.0.0.1:8443/Blah , instead I get the following Error:
    Firefox can't establish a connection to the server at localhost:8443.
    The site could be temporarily unavailable or too busy. Try again in a few
    moments.
    If you are unable to load any pages, check your computer's network
    connection.
    If your computer or network is protected by a firewall or proxy, make sure
    that Firefox is permitted to access the Web.
    On Internet Explorer I simply get:
    Internet Explorer cannot display the webpage
    b) How do I know which SSL Implementation my tomcat is making use of: JSSE/APR
    Details:
    web.xml
    <?xml version="1.0"?>
    <!DOCTYPE web-app PUBLIC
    "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN"
    "http://java.sun.com/dtd/web-app_2_3.dtd">
    <web-app
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xmlns="http://java.sun.com/xml/ns/javaee"
    xmlns:web="http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"
    xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"
    id="Your_WebApp_ID"
    version="2.5">
    <description>The standard web descriptor for the email client</description>
    <servlet>
    <servlet-name>AuthenticateUser</servlet-name>
    <servlet-class>MailBoxController</servlet-class>
    </servlet>
    <servlet-mapping>
    <servlet-name>AuthenticateUser</servlet-name>
    <url-pattern>/ControlPanel</url-pattern>
    </servlet-mapping>
    <welcome-file-list>
    <welcome-file>login.jsp</welcome-file>
    </welcome-file-list>
    <error-page>
    <error-code>401</error-code>
    <location>/authenticationFailed.jsp</location>
    </error-page>
    <context-param>
    <param-name>serverName</param-name>
    <param-value>Gmail</param-value>
    </context-param>
    <context-param>
    <param-name>port</param-name>
    <param-value>993</param-value>
    </context-param>
    <context-param>
    <param-name>ip</param-name>
    <param-value>imap.gmail.com</param-value>
    </context-param>
    <session-config>
    <session-timeout>30</session-timeout>
    </session-config>
    <listener>
    <listener-class>Logger</listener-class>
    </listener>
    <security-constraint>
    <web-resource-collection>
    <url-pattern>/*</url-pattern>
    <http-method>POST</http-method>
    </web-resource-collection>
    <auth-constraint>
    <role-name>administrator</role-name>
    </auth-constraint>
    <user-data-constraint>
    <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
    </security-constraint>
    <login-config>
    <auth-method>BASIC</auth-method>
    </login-config>
    <security-role>
    <role-name>administrator</role-name>
    </security-role>
    </web-app>
    tomcat-users.xml :
    <tomcat-users>
    <role rolename="administrator"/>
    <user username="admin" password="system123#" roles="administrator"/>
    </tomcat-users>
    Following tag was added in web.xml in conf of tomcat :
    <-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -->
    <Connector
    protocol="org.apache.coyote.http11.Http11NioProtocol"
    port="8443" maxThreads="200"
    scheme="https" secure="true" SSLEnabled="true"
    keystoreFile="C:/Users/.keystore" keystorePass="changeit"
    clientAuth="false" sslProtocol="TLS"/>
    Can anybody please help me with my problem. Am I going wrong with configuring SSL?
    Thanks
    Krutika

    I did add these lines:
    <Connector
         protocol="org.apache.coyote.http11.Http11NioProtocol"
         port="8443" maxThreads="200"
         scheme="https" secure="true" SSLEnabled="true"
         keystoreFile="C:/Users/Krutika Ravi/.keystore" keystorePass="changeit"
         clientAuth="false" sslProtocol="TLS"/>
    to the web.xml contained in conf folder of tomcat.
    But didn't fiddle with server.xml -
    After un-commenting
    <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
    maxThreads="150" scheme="https" secure="true"
    clientAuth="false" sslProtocol="TLS" />
    in server.xml contained in conf folder I get the following exceptions
    Jul 25, 2012 11:11:41 PM org.apache.catalina.core.AprLifecycleListener init
    INFO: Loaded APR based Apache Tomcat Native library 1.1.24 using APR version 1.4
    .6.
    Jul 25, 2012 11:11:41 PM org.apache.catalina.core.AprLifecycleListener init
    INFO: APR capabilities: IPv6 [true], sendfile [true], accept filters [false], ra
    ndom [true].
    Jul 25, 2012 11:11:43 PM org.apache.catalina.core.AprLifecycleListener initializ
    eSSL
    INFO: OpenSSL successfully initialized (OpenSSL 1.0.1c 10 May 2012)
    Jul 25, 2012 11:11:43 PM org.apache.coyote.AbstractProtocol init
    INFO: Initializing ProtocolHandler ["http-apr-8080"]
    Jul 25, 2012 11:11:43 PM org.apache.coyote.AbstractProtocol init
    INFO: Initializing ProtocolHandler ["http-apr-8443"]
    Jul 25, 2012 11:11:43 PM org.apache.coyote.AbstractProtocol init
    SEVERE: Failed to initialize end point associated with ProtocolHandler ["http-ap
    r-8443"]
    java.lang.Exception: Connector attribute SSLCertificateFile must be defined when
    using SSL with APR
    at org.apache.tomcat.util.net.AprEndpoint.bind(AprEndpoint.java:484)
    at org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.jav
    a:610)
    at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:429)
    at org.apache.catalina.connector.Connector.initInternal(Connector.java:9
    81)
    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:102)
    at org.apache.catalina.core.StandardService.initInternal(StandardService
    .java:559)
    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:102)
    at org.apache.catalina.core.StandardServer.initInternal(StandardServer.j
    ava:814)
    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:102)
    at org.apache.catalina.startup.Catalina.load(Catalina.java:624)
    at org.apache.catalina.startup.Catalina.load(Catalina.java:649)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.
    java:57)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
    sorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:281)
    at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:450)
    Jul 25, 2012 11:11:43 PM org.apache.catalina.core.StandardService initInternal
    SEVERE: Failed to initialize connector [Connector[HTTP/1.1-8443]]
    org.apache.catalina.LifecycleException: Failed to initialize component [Connecto
    r[HTTP/1.1-8443]]
    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:106)
    at org.apache.catalina.core.StandardService.initInternal(StandardService
    .java:559)
    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:102)
    at org.apache.catalina.core.StandardServer.initInternal(StandardServer.j
    ava:814)
    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:102)
    at org.apache.catalina.startup.Catalina.load(Catalina.java:624)
    at org.apache.catalina.startup.Catalina.load(Catalina.java:649)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.
    java:57)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
    sorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:281)
    at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:450)
    Caused by: org.apache.catalina.LifecycleException: Protocol handler initializati
    on failed
    at org.apache.catalina.connector.Connector.initInternal(Connector.java:9
    83)
    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:102)
    ... 12 more
    Caused by: java.lang.Exception: Connector attribute SSLCertificateFile must be d
    efined when using SSL with APR
    at org.apache.tomcat.util.net.AprEndpoint.bind(AprEndpoint.java:484)
    at org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.jav
    a:610)
    at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:429)
    at org.apache.catalina.connector.Connector.initInternal(Connector.java:9
    81)
    ... 13 more
    Jul 25, 2012 11:11:43 PM org.apache.coyote.AbstractProtocol init
    INFO: Initializing ProtocolHandler ["ajp-apr-8009"]
    Jul 25, 2012 11:11:43 PM org.apache.catalina.startup.Catalina load
    INFO: Initialization processed in 2945 ms
    Jul 25, 2012 11:11:43 PM org.apache.catalina.core.StandardService startInternal
    INFO: Starting service Catalina
    Jul 25, 2012 11:11:43 PM org.apache.catalina.core.StandardEngine startInternal
    INFO: Starting Servlet Engine: Apache Tomcat/7.0.29
    Jul 25, 2012 11:11:43 PM org.apache.catalina.startup.HostConfig deployWAR
    INFO: Deploying web application archive C:\Junkyard\apache-tomcat-7.0.29\webapps
    \Blah.war
    Jul 25, 2012 11:11:44 PM org.apache.catalina.loader.WebappClassLoader validateJa
    rFile
    INFO: validateJarFile(C:\Junkyard\apache-tomcat-7.0.29\webapps\Blah\WEB-INF\lib\
    javax.servlet-5.1.12.jar) - jar not loaded. See Servlet Spec 2.3, section 9.7.2.
    Offending class: javax/servlet/Servlet.class
    Logger Contructor
    Servlet Context has been initialized
    Jul 25, 2012 11:11:45 PM org.apache.catalina.startup.HostConfig deployDirectory
    INFO: Deploying web application directory C:\Junkyard\apache-tomcat-7.0.29\webap
    ps\docs
    Jul 25, 2012 11:11:45 PM org.apache.catalina.startup.HostConfig deployDirectory
    INFO: Deploying web application directory C:\Junkyard\apache-tomcat-7.0.29\webap
    ps\examples
    Jul 25, 2012 11:11:46 PM org.apache.catalina.startup.HostConfig deployDirectory
    INFO: Deploying web application directory C:\Junkyard\apache-tomcat-7.0.29\webap
    ps\host-manager
    Jul 25, 2012 11:11:46 PM org.apache.catalina.startup.HostConfig deployDirectory
    INFO: Deploying web application directory C:\Junkyard\apache-tomcat-7.0.29\webap
    ps\manager
    Jul 25, 2012 11:11:46 PM org.apache.catalina.startup.HostConfig deployDirectory
    INFO: Deploying web application directory C:\Junkyard\apache-tomcat-7.0.29\webap
    ps\ROOT
    Jul 25, 2012 11:11:46 PM org.apache.coyote.AbstractProtocol start
    INFO: Starting ProtocolHandler ["http-apr-8080"]
    Jul 25, 2012 11:11:46 PM org.apache.coyote.AbstractProtocol start
    INFO: Starting ProtocolHandler ["ajp-apr-8009"]
    Jul 25, 2012 11:11:46 PM org.apache.catalina.startup.Catalina start
    INFO: Server startup in 2728 ms
    Edited by: 948555 on Jul 25, 2012 10:42 AM

  • How to Set up HTTPOnly and SECURE FLAG for session cookies

    Hi All,
    To fix some vulnerability issues (found in the ethical hacking , penetration testing) I need to set up the session cookies (CFID , CFTOKEN , JSESSIONID) with "HTTPOnly" (so not to access by other non HTTP APIs like Javascript). Also I need to set up a "secure flag" for those session cookies.
    I have found the below solutions.
    For setting up the HTTPOnly for the session cookies.
    1] In application.cfc we can do this by using the below code. Or we can do this in CF admin side under Server Settings » Memory Variables
         this.sessioncookie.httponly = true;
    For setting up the secure flag for the session cookies.
    2] In application.cfc we can do this by using the below code. Or we can do this in CF admin side under Server Settings » Memory Variables
         this.sessioncookie.secure = "true"
    Here my question is how we can do the same thing in Application.cfm?. (I am using ColdFusion version 10). I know we can do this using the below code , incase of HTTPOnly (for example).
    <cfapplication setclientcookies="false" sessionmanagement="true" name="test">
    <cfif NOT IsDefined("cookie.cfid") OR NOT IsDefined("cookie.cftoken") OR cookie.cftoken IS NOT session.CFToken>
      <cfheader name="Set-Cookie" value="CFID=#session.CFID#;path=/;HTTPOnly">
      <cfheader name="Set-Cookie" value="CFTOKEN=#session.CFTOKEN#;path=/;HTTPOnly">
    </cfif>
    But in the above code "setclientcookies" has been set to "false". In my application (it is an existing application) this has already been set to "true". If I change this to "false" as mentioned in the above code then ColdFusion will not automatically send CFID and CFTOKEN cookies to client browser and we need to manually code CFID and CFTOKEN on the URL for every page that uses Session. Right???. And this will be headache.Right???. Or any other way to do this.
    Your timely help is well appreciated.
    Thanks in advance.

    BKBK wrote:
    Abdul L Koyappayil wrote:
    BKBK wrote:
    You can switch httponly / secure on and off, as we have done, for CFID and CFToken. However, Tomcat automatically switches JsessionID to 'secure' when it detects that the protocol is secure, that is, HTTPS.
    I couldnt understand this. I mean how are you relating this with my question.
    When Tomcat detects that the communication protocol is secure (that is, HTTPS), it automatically switches on the 'secure' flag for the J2EE session cookie, JsessionID. Tomcat is configured to do that. Coldfusion has no say in it. So, for JsessionID, 'secure' is automatically set to 'false' when HTTP is detected and automatically set to 'true' when HTTPS is detected.
         If this is the case then why I am getting below info for jsessionid (As you mentioned it should set with SECURE flag . Right???). Note that we are using web server - Apache vFabric .And the application that we are using is in https and there is no hit is going from https to http.
    Name:
    JSESSIONID
    Content:
    782BF97F50AEC00B1EBBF1C2DBBBB92F.xyz
    Domain:
    xyz.abc.pqr.com
    Path:
    Send for:
    Any kind of connection
    Accessible to script:
    No (HttpOnly)
    Created:
    Wednesday, September 3, 2014 2:25:10 AM
    Expires:
    When the browsing session ends
    BKBK wrote:
    2]When I checked CF Admin->Server Settings->Memory Variables I found that J2EE SESSION has been set to YES. So does this mean that do we need to set HTTPOnly and SECURE flag for JSESSIONID only or for CF session cookies (CFID AND CFTOKEN ) as well ?.
    Set HTTPOnly / Secure for the session cookies that you wish to use. Each cookie has its pros and cons. For example, the JsessionID cookie is more secure and more Java-interoperable than CFID/CFToken but, from the explanation above, it forbids the sharing of sessions between HTTP and HTTPS.
         I understood that setting thos flags (httponly/secure) is as per my wish. But my question was , is it necessary to set those flags forcf session cookies (cfid and cftoken) as we have enabled J2EE session in CF admin?. Or in other way as the session management is J2EE based do we need to set those flags for CF session cookies?.
    BKBK wrote:
    3]If I need to set HTTPOnly and SECURE flag for JSESSIONID , how can I do that.
    It is sufficient to set the HTTPOnly only. As I explained above, Tomcat will automatically set 'secure' to 'true' when necessary, that is, when the protocol is HTTPS.
         I understood that it is sufficient to set httponly only.but how we will set it for jsessionid?. This is my question. Apache vFabric will alos set secure to true automatically. Any idea??

  • Driver Require or HP laserjet 1015 PCL Printers for Windows 8.1 64 Bit

    Dear Sir,
    I Working at PGVCL (Leading Electricity Distribution COmpany o Gujarat (India) ) having many HP printers Laserjet 1015 PCL. Now, recently our company upgrade our computer system with OS of Windows 8.1(64 bit),now trouble of printing start. No any above printers install in PC, due to non availibility of that Drivers. I checked HP websites for  that Drivers. but our requirements driver not available in it. Finaly many printers of HP become unusable for us.
    So, you are kindly requested to please provide Drives of Printers for HP LaserJet 1015 PCL for Windows 8.1 (64 Bit) or provide guideline ti install it in our PC. So, we can use HP Printers in our work place.
    Regards:
    Mr. Pranjal [Personal Information Removed]
    [Personal Information Removed]
    Contact No. [Personal Information Removed]

    My Windows 8.1 Professional 64-bit system has a built-in driver for the LaserJet 1015 model:
    You may have to click the Windows Update button in the Add Printer dialogue, then wait (perhaps for several minutes) whilst additional drivers are downloaded, before the list is repopulated.

  • Secure Link for iTunes store failed... Got anything?

    Every time I try to open up iTunes store, it wouldn't open. I ran the diagnostics report and it said the ( for first time ) that "Secure link for iTunes store failed". The second time I ran it, just to make sure, said that "secure link for iTunes store is successful. I got confused. So I copied the successful report for you guys to see if there's a problem. **NOTE** I never had or downloaded Norton, or Proxyserver, I even checked to see if it was on the computer. I have Windows Firewall, and Verizon Security, and my computer is a Window's 7. Here's the successful report of the diagnostics so you techies out there could figure what the problem is:
    Microsoft Windows Vista Home Premium Edition Service Pack 2 (Build 6002) Gateway GM5472 iTunes 10.4.1.10 QuickTime 7.7 FairPlay 1.12.20 Apple Application Support 2.0.1 iPod Updater Library 10.0d2 CD Driver 2.2.0.1 CD Driver DLL 2.1.1.1 Apple Mobile Device 3.4.1.2 Apple Mobile Device Driver 1.57.0.0 Bonjour 3.0.0.2 (333.2) Gracenote SDK 1.9.1.485 Gracenote MusicID 1.9.1.102 Gracenote Submit 1.9.1.133 Gracenote DSP 1.9.1.43  iTunes Serial Number 002AB3A80C24F3E8  Current user is not an administrator. The current local date and time is 2011-09-23 15:44:30. iTunes is not running in safe mode. WebKit accelerated compositing is enabled. HDCP is not supported. Core Media is supported.  Video Display Information  NVIDIA, NVIDIA GeForce 6150SE nForce 430    **** External Plug-ins Information ****  No external plug-ins installed.  Genius ID: 65223df73745471fc22c8ff8db2564bf  iPodService 10.4.1.10 is currently running. iTunesHelper 10.4.1.10 is currently running. Apple Mobile Device service 3.3.0.0 is currently running.  **** Network Connectivity Tests ****  Network Adapter Information  Adapter Name:     {B6520BEA-A816-49F2-892A-F840F59F28D0} Description:     Marvell Yukon 88E8039 PCI-E Fast Ethernet Controller IP Address:     192.168.1.2 Subnet Mask:     255.255.255.0 Default Gateway:     192.168.1.1 DHCP Enabled:     Yes DHCP Server:     192.168.1.1 Lease Obtained:     Fri Sep 23 13:00:09 2011  Lease Expires:     Sat Sep 24 13:00:09 2011  DNS Servers:     192.168.1.1  Active Connection:     LAN Connection Connected:     Yes Online:          Yes Using Modem:     No Using LAN:     Yes Using Proxy:     No SSL 3.0 Support:     Enabled TLS 1.0 Support:     Disabled  Firewall Information  Windows Firewall is off.  Connection attempt to Apple web site was successful. Connection attempt to browsing iTunes Store was successful. Connection attempt to purchasing from iTunes Store was successful. Connection attempt to iPhone activation server was successful. Connection attempt to firmware update server was successful. Connection attempt to Gracenote server was successful. Last successful iTunes Store access was 2011-09-23 15:36:29.     Sooooo, help please? Thanks!

    I have the same problem and I'm beyond frustrated. I just want iTunes 10.5 to work properly so I can download iOS 5 to my iPad. I've uninstalled, rebooted, and reinstalled iTunes (and all other apple programs) a dozen times.  I've uninstalled Norton since I read that might be causing the block. I've checked my firewall and have done a "flush". I'm out of ideas!!!

  • Use dot matrix printers for printing text reports in Reports 10g

    In Forms 6i, customers had the option to use dot matrix printers for printing text reports.
    I believe, from 9i onwards, text based reports aren’t supported and instead HTML/PDF,DOC,RTF reports are supported which are not text based and use modern day printers.
    Is it still possible to use text printers ??
    Regards,
    Noman

    hi
    check out the following link.
    Re: Is printing to generic text printer and hand-coding the report possible?
    http://download.oracle.com/docs/html/B10314_01/pbr_uxprt.htm#1005700
    sarah

Maybe you are looking for