today I arrived and I have 200 (automatic) errors in my logs from my applicaction.
I'm not sure if it was an attack, or something weird in my IIS or my application.
The error was alwasys the same, as someone tried to go to a inexistent page.
The error was: Void CheckVirtualFileExists(System.Web.VirtualPath)
For example, I have my Login.aspx, and I have 19 errros that someone tried to enter in this 19 pages that doesn't exist:
Login_backup.aspx
Login_old.aspx
Login_bak.aspx
backup_Login.aspx
bak_Login.aspx
old_Login.aspx
__Login.aspx
.....similar ones
Was this an attack or it was something bad configured?
Is there a way to avoid it?
I really want to know if it was something we could change so this will not happen again.
Lasse V.Karlsen you were right.
Hopefully(?) it was an audit someone in the IT department was doing, but nobody reported me until now.
Related
Please don't ask me not to use eval, this isn't going to be public anyways.
I've made a chatting website, and I have implemented a "!eval" command (admin only), whatever is after it is run. I can use "!eval '2'+'2'" (Strings added), but not "!eval 2+2." The error returned is .
I've console.logged the input to the eval, and it returned exactly what I wanted: "1+1." I've looked around for this, but it seems like no one else had this problem before. A solution (more like a debugging one) is that I tried "eval('1+1')" and returned the same error. Any thoughts? Thanks in advance.
(I forgot to add what I was expecting)
I was expecting this.
VLAZ pointed out in the comments that it must be another piece of code, which he is correct. I was encrypting the messages so it can be sent securely to the client, and it only takes a string. I added
if (typeof(results) != 'string'){
results = String(results)
}
and it seemed to work, Thanks!
when creating new theme there's error occurred.
0 - Communication Failure
Why this happen? could you please help me?
This usually happens due to a timeout that occurs when the Theme-controller tries to read the Theme's configuration for the first time. Unfortunately, this is quite a resource-heavy process; on weaker servers, timeouts may occur during this process quite often.
You can confirm this by opening the Theme-Manager, opening your browser's developer tools, refreshing the Theme overview and look at the response of the backend/Themes/list-Request.
You can give your server more time with the php-function set_time_limit. In engine/Shopware/Components/Theme/Installer.php, in the synchronize-method, prepend set_time_limit(0):
public function synchronize()
{
set_time_limit(0);
$this->synchronizeThemes();
}
Alternatively, prepend set_time_limit(0); to your shopware.php file, but don't forget to remove it again once the theme-overview loaded successfully.
Below is log from the windows event viewer. Anyone knows why it is disallowed?
AuthHost disallowed UrlAction: 0x2301 for URL: https://login.microsoftonline.com/xxxx/oauth2/authorize?client_id=xxx&response_type=id_token+token&redirect_uri=xxxx&state=12345&nonce=678910&resource=https://graph.windows.net/.
I found out the reason why I'm facing the disallow error that is, in the option of the "authenticateAsync" method, I should use "useCorporateNetwork" instead of "none".
I'm trying to test NetworkReachability in the AppDelegate.FinishedLaunching method of my app (invoking on the main thread so I dont hit the 20 sec timeout).
The problem I'm up against is that the test is always returning "false" (i.e. network is not available), even although this is not the case. I'm running in the iPhone Simulator, and if I let my app run on a bit further, I can access the network with no problem.
I've read elsewhere that there appears to be a known bug in Apple's Reachability code. I wondered if anyone has come across this issue, and perhaps found a workaround?
Thanks in advance,
Mark
I do this:
bool status = Reachability.InternetConnectionStatus() != NetworkStatus.NotReachable && Reachability.IsHostReachable("google.com");
You can replace google.com with whatever the domain your api is located at. I was getting false positives myself because I was originally putting in the whole link like "http://google.com" ...It would return false on those...Once I removed the http and just had the domain, it started working.
I should note I am using the Reachability class by Miguel de Icaza
I am trying to use FIX::Application along with SessionSettings.
The Fix server I am trying to connect to does not see any incoming connection. From my side I see a Logon Message being formulated in toAdmin() callback(which I print out and add certain fields to.
The Question is
1. Do I need to call some form of sendTarget in toAdmin?(I tried that but get a Session not found error)
2. Is there anyway I can increase logging(start logging whats going on under the hood).
Thanks
Firstly the sendTOTarget need not be called in the toAdmin.
As far as logging goes, what i hear is passing th in FIX::LogFactory should be enough.