I recently added #microsoft/applicationinsights-web (version 2.4.4) for one of my projects. I noticed that the latest version automatically dispatches the following trace :
AI (Internal): 72 message:"Mozilla/5.0 (en-US) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2272.118 Safari/537.36"
How do I disable it? I can't seem to see any config options like IsTracingDisabled to disable dispatching traces by default.
You can disable telemetry sent to help track SDK configuration issues by setting loggingLevelTelemetry: 0.
Related
Just started a wso2server in an Ubuntu machine and open the console for the first login and, unfortunately, admin as username and password is giving me an Error 403 - Forbidden. Any clue on this?
Regards,
Norberto Neto
If you are using JDK 1.8, some versions like JDK1.8.0_151 are affected by a known issue related to GZIP decoding [1]. As a workaround you could use JDK1.8.0_144 or JDK1.8.0_077 updates.
Else you can disable GZIP decoding for current JDK with following steps.
Open the catalina-server.xml file from the
/repository/conf/tomcat/ directory.
Set the compression parameter false for each connector configurations.
Restart the server.
Please refer documentation for more informations [2]
[1] https://bugs.openjdk.java.net/browse/JDK-8189789
[2] https://docs.wso2.com/display/AM210/Installation+Prerequisites
I have had a site that fell prey to the spam user registrations that was found in the summer. I have stopped the registration but now I am getting these users requestion their profile pages and as a result there are errors being logged in the event viewer. These events are clogging the event viewer in 24 hrs to the point where it affects site performance and the event viewer can not load.
the following is one of the errors that gets logged.
ERROR:
UserName:ActiveTabID:61ActiveTabName:My ProfileRawURL:/Activity-Feed/My-Profile/userId/285AbsoluteURL:/Default.aspxAbsoluteURLReferrer:http://www.aSitePortal.com/UserAgent:Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.71 Safari/537.36DefaultDataProvider:DotNetNuke.Data.SqlDataProvider, DotNetNukeExceptionGUID:6eff0116-bc77-4394-849b-0f5b67ba040fInnerException:Not FoundFileName:FileLineNumber:0FileColumnNumber:0Method:DotNetNuke.Modules.Admin.Users.ViewProfile.OnInitStackTrace:Message:System.Web.HttpException (0x80004005): Not Found
at DotNetNuke.Modules.Admin.Users.ViewProfile.OnInit(EventArgs e)
at System.Web.UI.Control.InitRecursive(Control namingContainer)
at System.Web.UI.Control.AddedControl(Control control, Int32 index)
at System.Web.UI.ControlCollection.Add(Control child)
at DotNetNuke.UI.Modules.ModuleHost.InjectModuleContent(Control content)
at DotNetNuke.UI.Modules.ModuleHost.CreateChildControls()
at System.Web.UI.Control.EnsureChildControls()
at DotNetNuke.UI.Containers.Container.get_ModuleControl()
at DotNetNuke.UI.Containers.Container.ProcessModule()
at DotNetNuke.UI.Skins.Pane.InjectModule(ModuleInfo module)Source:Server Name: RD00155D50E2D9
This happens right after a search index scheduled event throws an error. So it might be related.
NOTE: this site suffered from the robot spam user registrations. But since then this site has been moved to a new server and instance of DNN and the user registration is set to none right now.
QUESTION:
How can I reject these requests specifically for one portal (as only one portal is affected) and stop them being logged?
Thanks in advance.
Jordan
EDIT 1:
so this outlines the spam user issue: http://www.dnnsoftware.com/community-blog/cid/154984/spammer-registrations#Comment634
EDIT 2
I have set the permission of the activity and profile page to admin only, this has not removed the erros
EDIT 3:
I also tried to disable and rename the My Profile page and that did not remove the errors either.
I have a workaround which is based on the solution found in this DNN wiki page
In the end I needed to set up a request filter. This problem only affected one of the portals in my installation so I could set up a request filter regex with that specific domain and the profile pages the spam users were trying to access.
The following is a picture of the request filters I set up, they are not portal specific , you would have to change the regex for yourself.
I hope this can help someone else
On one of our intranet pages, I'm using cffileupload to upload multiple photos:
<cffileupload extensionfilter=".jpg,.jpeg,.png,.gif"
url="/submissions/photo_gallery.cfm"
onerror="errorissue"
width="600"
addbuttonlabel="Browse..."
maxuploadsize="100">
The url for this tag points back to the same page where I process the images:
<!--- Define the upload path --->
<cfset upload_path = "C:\websites\images\photo_gallery\">
<!--- Upload all the files --->
<cffile action="upload"
destination="#upload_path#"
nameconflict="makeunique"
result="uploaded_file">
In IE and Chrome, this works. In Firefox, I get a 401 error. It appears to be related to how the browsers authenticate. IE and Chrome use Windows authentication while Firefox prompts when entering the site for username/password. Nothing shows up in the Coldfusion logs, but the IIS logs show this (with the IP x'd out):
2013-05-09 19:16:07 xxx.xxx.xxx.xxx POST
/submissions/photo_gallery.cfm CFID=5546&CFTOKEN=75080018 80 - 172.28.30.99 Shockwave+Flash 401 2 5 0
The previous line in the log is from loading the page. As you can see, my username is showing up in this line (edited for security):
2013-05-09 19:16:07 xxx.xxx.xxx.xxx GET /includes/js/shared.js - 80
DOMAIN\username xxx.xxx.xxx.xxx
Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:20.0)+Gecko/20100101+Firefox/20.0
304 0 0 218
So, cffileupload seems to be losing my username. However, the session.urltoken in the cffileupload url is the same as it is in on the page with the multiple file uploader (the calling page). So, you'd think the authentication would stick.
Also, I can get it to work in Firefox when I go into IIS7 and enable Anonymous Authentication on the Jakarta virtual directory (and disable Windows Authentication on the same). But, this is not a usable solution.
Can anyone suggest another solution?
Have you tried enabling "Anonymous Authentication" just for the /submissions folder?
See here
You can tell Firefox to work with Windows Authentication as well. It is not turned on by default (reference).
Open Firefox
In the address bar type: "about:config"
Firefox3.x and later requires you to agree that you will proceed with caution.
After the config page loads, in the filter box type: "network.automatic"
Modify network.automatic-ntlm-auth.trusted-uris by double clicking the row and enter http://www.replacewithyoursite.com or http://your-intranet-server-nameMultiple sites can be added by comma delimiting them such as http://www.replacewithyoursite.com, http://www.replacewithyourintranetsite.com
To specify all subdomains use .replacewithyoursite.com instead of www.replacewithyoursite.com, help.replacewithyoursite.com, pictures.replacewithyoursite.com
If your intranet does not use a fully qualified domain name you can set the following in Firefox to avoid the prompting (reference)
Go to "about:config"
Filter the keys down to "network.automatic"
Edit network.automatic-ntlm-auth.allow-non-fqdn value to true
asp.net app (c#) worked fine in debug mode; published, getting 401.1 error (unauthorized).
When I put in the url, a dialog asks for username & password. Put it in 3x, error.
It's an internal app, using Windows authentication only.
IIS 7.5, using ApplicationPoolIdentity.
SQLServer Database
Specific Error Message from 401.1 page:
Module WindowsAuthenticationModule
Notification AuthenticateRequest
Handler ExtensionlessUrlHandler-Integrated-4.0
Error Code 0x8009030e
Requested URL http://smalltools.dbsvc.com:80/ Ap
Physical Path C:\inetpub\SmallTools
Logon Method Not yet determined
Logon User Not yet determined
The app has a users table to determine the "role" of that user. I put a method in the master page that queries the table based on authenticated user, and returns the role. This, in turns, determines which buttons are visible on the navigation bar.
Looked in the security log, and found the following 3 entries:
2012-07-20 14:55:11 10.0.1.38 GET / - 80 - 10.0.13.106 Mozilla/5.0+(Windows+NT+6.1;+rv:14.0)+Gecko/20100101+Firefox/14.0.1 401 2 5 15
2012-07-20 14:55:20 10.0.1.38 GET / - 80 DE\cin.bro 10.0.13.106 Mozilla/5.0+(Windows+NT+6.1;+rv:14.0)+Gecko/20100101+Firefox/14.0.1 500 0 0 125
2012-07-20 14:55:20 10.0.1.38 GET /favicon.ico - 80 DE\cin.bro 10.0.13.106 Mozilla/5.0+(Windows+NT+6.1;+rv:14.0)+Gecko/20100101+Firefox/14.0.1 404 0 2 0
Any idea what might be causing the inability to log in? Any clues what I can fix to make it work? I've researched all day and haven't found what might be the problem.
Any information is gratefully received.
Thanks
Cindy
I've successfully solved the issue; I had to allow impersonation, and make an adjustment to the AD group.
The article in the following link helped a great deal:
http://msdn.microsoft.com/en-us/library/bsz5788z.aspx
If this is an external site, then Windows authentication isn't really the way to go. But you can still do it, here's some links I found that should help.
Q&A about similar issue
Microsoft guide on how to implement
Typically Windows Authentication is used with internal systems because the users are logged on directly to the system and all their credentials are right there. However for external apps this isn't always the case, since your home Windows account and work windows account aren't the same, in addition you may not even be using windows from the external location.
Another gotcha I came across is the local loopback address security check when you setup a DEV instance and modify hosts file to use Fully Qualified Domain Name (FQDN) or simply when you browse IIS site with custom headers and the name does not match the server hostname. While this is necessary for production servers it is a problem when setting up Developer environments.
"This issue occurs when the Web site uses Integrated Authentication and has a name that is mapped to the local loopback address"
There are two main methods to resolve the issue:
Specify host names (Preferred method if NTLM authentication is desired) by creating/updating the Multi-String value:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0
Disable the loopback check (less-recommended method - do not use on production servers) by setting the following registry DWORD value to 1
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\DisableLoopbackCheck
Please refer to this HTTP 401.1 - Unauthorized: Logon Failed - Microsoft Support article for detailed overview and registry settings.
one user agent string is:
mozilla/4.0 (compatible; msie 6.0; windows nt 5.1; btrs121199; sv1; infopath.1; fw 2.0.6767)
Does anyone know what fw 2.0.6767 means?
Does it mean firmware?
Can I change the version easily?
As far as my knowledge goes, user agent strings don't provide firmware versions unless they are manipulated by users.
The fw 2.0.6767 fragment present on that UA string may refer to a framework version; Adware or custom fragment added by an application or by the user itself.
Decomposing the UA string:
mozilla/4.0 (compatible; msie 6.0; windows nt 5.1; btrs121199; sv1; infopath.1; fw 2.0.6767)
mozilla/4.0
Application name and version. For historical reasons, Internet Explorer identifies itself as a Mozilla browser.
compatible;
Compatibility flag token. It indicates that Internet Explorer is compatible with a set of common features.
msie 6.0;
The Version token identifies the browser and contains the version number, as reported by the current browser mode. The value indicates Windows Internet Explorer 6.
windows nt 5.1;
Microsoft Windows NT version 5.1 (commonly known as Windows XP Professional).
btrs121199;
Unknown fragment *
sv1;
Windows XP Service Pack 2 installed (Security Version 1)
infopath.1;
MS Infopath version 1 (an MS Office extra application) and means that it may be collecting data for use in a forms based application.
fw 2.0.6767
Unknown fragment *
* May relate to an Adware or a custom identification added by a application being used.
This is the result that I've been able to compile after 5 hours researching, reading and cross-referencing information.
Online UA analysis tools:
You can refer the following websites that provide tons of UA strings, including the fragments identification for any given UA string:
User Agent String.Com
UA string analysis :: user-agent-string.info
User Agent Search - Browser Capabilities Project
Additional information provided by browser vendors:
MDN - Gecko user agent string reference
MSDN - Understanding User-Agent Strings
Opera - User Agent String