|
For quite a while now we've allowed employees on the road to check their email using Outlook Web Access on our Exchange Server. The Exchange server sits behind a firewall, so it was as simple as type in the URL for our webmail, enter the username and password for the firewall, enter the network username and password, and view the email.
Now however we've decided to make it available through SSL (which we use for our members site as well, but on other servers). So far my setup is as follows:
On IIS on the Exchange server the default web site is not setup to require SSL, but the Exchange subweb is. I've placed a custom page on the default web site, with a button which just redirects to https://ourserver/exchange (the boss wanted our logo, etc on a page with a button so the users feel at home). Before reaching this default page the firewall user name and password is required. Once entered the page displays fine. However, when the /Exchange subweb is set to require SSL and the redirect specifies https:// all I recieve is Page cannot be displayed. If I take off the SSL requirement and allow the redirect to specify http:// then everything works. (I'm testing from an ADSL machine in our office which is not related to our network in any way). We have firewall policies for http & https setup.
The instructions here[^] look pretty simple and have been followed, but it seems something must be missing. Does anyone have experience with this, or some words of wisdom to offer?
Thanks
Look at the world about you and trust to your own convictions. - Ansel Adams
Meg's World - Blog
Photography
|
|
|
|
|
You must change your firewall configuration to pass https traffic to your Exchange server, it uses different TCP port than ordinary http.
|
|
|
|
|
Thanks for your reply
I guess my wording was a bit ambiguous - I meant we have seperate policies for each of http and https. Eish my English is awful today!
Look at the world about you and trust to your own convictions. - Ansel Adams
Meg's World - Blog
Photography
|
|
|
|
|
This is very weired problem I m facing.
I have web server (IIS 5.0)and runing 4-5 ASP sites.
Since last few days I started getting an error "HTTP/1.1 New Application Failed".
This error comes randomly and stops showing asp pages for some sites
and some other sites works fine.
Also Html pages are coming fine during this case.
Than we will have to restart IIS and than it works fine.
I have searched on the net for this problem I have found some of the
suggestions
1) Inefficient Global.asa files
2) Open Inefficient Database connections etc.
For most of the places I check for this kind of code and removed it.
But still I m getting the same error.
I didn't find much in the event viewer.
Can u suggest any thing for the same?
Thanks in advance,
|
|
|
|
|
What are the most secure upload permissions?
I have a PHP script which uploads images (via HTML form page) to a folder and it's sub-folders.
Originally I had 666 Read/Write for each three, but I had to set it to 777 Read/Write/Execute for all three...
What the heck...? There are no scripts in those folders and nor there should be...just images...
Which CHMOD should I use...?
Thanks
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
ummmmm try 755
altho i generally set mine to 777 as well cos its a real pain in the a friggin around with the damn things
"there is no spoon" biz stuff about me
|
|
|
|
|
Doesn't that raise a security issue? What if someone uploads a PHP scripts instead of an image and runs it...?
Unless I check mime type and rename files or something, but for some reasons I think someone could get around that still...
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
u will need to be checking the uploaded file type
its fairly straightforward
"there is no spoon" biz stuff about me
|
|
|
|
|
EDIT:
Turns out this is the reason why you can't set file permissions.
There is a module for apache that sets the EUID of the process to the owner of the CGI script. mod_su_exec or something, sorry I can´t remember the exact name. You should be able to find it on google now that you know what you need to look for... Maybe it´s an Apache2 module only. There is also one specific for PHP: suPHP. But a friend of mine just de-installed it because it has some security issues... hth, M.
HTH someone avoid the frustration I went through
I'm aware of checking MIME types, i've even gone to the extent of checking magic bytes in a file like the BM in bitmaps. What i'm afraid of is someone uploading an disguised script as an image and renaming it back to PHP once on the server via SQL injection hack or something.
Besides isn't MIME information provided by the client? I remember reading once that IE initialized MIME information by actually checking file contents and file extensions, but browser's like Mozilla, Opera didn't. If this is the case it wouldn't be hard to write a script to POST form data along with PHP files with PHP extension, but send with a MIME type of image/gif...?
It seems illogical that you couldn't restrict a directory from actually executing any code and only serve as a repository folder, doesn't it...?
Cheers
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
Hi
how do I go from a page that is divided in frames, to a page with no frames?
|
|
|
|
|
open that page in a new window using window.open() or <a href="newwindow.htm" target="_blank">New window without frames<a>
Cheers
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
tx, but I want don't want to open a new page, just want to load a page without frames in a page that was divided in frames...
|
|
|
|
|
It's been a while since I tinkered with frames (you should use tables it looks more pro) but anyways...
In the HTML file which contains the FRAMES tags I believe you will name the FRAME which you wish to load another htm page into
<FRAMES name="mywindow">
Then I think what you would do is inside your HTML page with links you do something like
<a href='newwindow.htm' target='mywindow'>
I believe thats how it's done
HTH
Cheers
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
In your link set the target to "_top" like this:
<a href="noframepage.htm" target="_top">
|
|
|
|
|
I am trying to embed some javascript into a php document w/ no success. Basically I want a confirmation messagebox to pop up when I am attempting to delete a record from a database and I need the PHP code to executed depending on the response (OK or Cancel). Can someone give me a small template as to how to put the two pieces of code together? Thanks in advance.
|
|
|
|
|
try something like:
<?
if($a==$b)
echo "<body onload=\"alert(\'You chose cancel\');\">";
else
echo "<body>"; // Normal no message
?>
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
what u want is this:
<a href='del_record.php?id=" . $row['id'] . "' onclick='if (confirm(\"DELETE RECORD - Are you sure?\") == false) return false'>[Del]</a>
"there is no spoon" biz stuff about me
|
|
|
|
|
|
hai,
I would like to get handle to window that opened by submit action.
explaination:
I have three html pages,one call to another.
The first page is a form.
By submitting this form the second page is opened.
The second page is a simple html page and by clicking one link the third page is open.
My goal is to navigate in this three pages by scripts in another extern page.
note:
I allready know that it's impossible to scripting between two pages that are not in the same domain.
I successed to fill the form and send it by scripting from the 4th page.
So after sending the form i would like to get handle to the second page that send to by the server.
Thank's,
Avi Vachnis
|
|
|
|
|
I don't understand you fully, but from what I can tell...
The only way you can get the handle to a window is if you open the window directly using window.open() .
I'm not aware of a way to retreive window objects that have been opened via a click on a hyperlink or anything...
Unless you can somehow enumerate instances of IE using JScript and I don't think you can...so I think yer up shite creek without a paddle.
Cheers
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
|
Hi,
i am the student of the Master of computer application from india,i am in the last semester and we have the four months project.I am devlop a mailserver i need the some idea to devlop smtp & pop3 protocol.
|
|
|
|
|
If you have to implement a smtp and pop3 mail server/client and have no idea where to start...I suggest....
1) Hiring me to do it for you...becuz you have alot of work ahead of you...
2) You can find some FTP client/server code in C++ section it'll give you a heads up and how and where to even start.
If as a project you have to develope a new protocol similar to smtp/pop3...I would suggest following through with one of the above...
Cheers
The word of the day is legs, let's go back to my house and spread the word
|
|
|
|
|
what server side language do u want to use?
all http servers can send mail easily enuff
php has some good pop3 functions too
dunno bout asp cos i dont use it
i wouldnt write ur own server as such unless u can avoid it
for details on the specs look up the relevant rfc docs
"there is no spoon" biz stuff about me
|
|
|
|
|
Hi all,
I have a programe below to access remote database on server by Access db.
But i doesn't work and have a error:
set conn = Server.CreateObject("ADODB.Connection")
set rs = Server.CreateObject("ADODB.Recordset")
strconn="Provider=MS Remote;" &_
"Remote Server=http://intranetbk;" &_
"Remote Provider=Microsoft.Jet.OLEDB.4.0;" &_
"Data Source=C:\Websites\Intranet_unique\Database\intranet.mdb;"
conn.open strconn
sql="select * from employees"
rs.Open sql,conn,
when i run there an error as follow:
Error Type:
Microsoft ADO/RDS (0x800A20FF)
Internet Server Error.
/testdb.asp, line 14
Do you know this error? or do you have any programe in asp by accessing Access Database from remote machine?
Thanks your help in advance.
|
|
|
|