RE: CFHTTP SSL Cert
It continues to work fine in the browser. Its pretty weird how it will work
for a day and then start generating this error:
AxisFault
faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
faultSubcode:
faultString: javax.net.ssl.SSLException: java.lang.RuntimeException: Could
not generate secret
faultActor:
faultNode:
faultDetail:
{http://xml.apache.org/axis/}stackTrace:javax.net.ssl.SSLException:
java.lang.RuntimeException: Could not generate secret
at
com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:190)
at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1731)
at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1692)
at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.handleException(SSLSocketImpl.jav
a:1675)
at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java
:1204)
at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java
:1181)
at
org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.ja
va:186)
at
org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender ''/pre
Note, this is the error from a webservice call, using CFHTTP generates the
I/O Exception: peer not authenticated.
Restarting the CFService resolves the problem temporarily. I deleted and
re-added the CERT to the cacerts store yesterday with no change...
Just weird right?
Brook
-Original Message-
From: John M Bliss [mailto:bliss.j...@gmail.com]
Sent: April-16-14 11:02 AM
To: cf-talk
Subject: Re: CFHTTP SSL Cert
When cfhttp is broken, can you drop the URL into your browser and have it
work? Or is it broken there too?
On Wed, Apr 16, 2014 at 12:27 PM, Brook Davies cft...@logiforms.com wrote:
Hey Peeps,
After heartbleed, I had to re-add the EchoSign Cert to our keystore
(via the
keytool) on all our servers. It worked as expected, and the connection
started working again. However, on one our webservers, it works, and
then later that day stops being able to connect and I get I/O
Exception: peer not authenticated when I try to CFHTTP to the HTTPS
address. If I restart the server, it works again, and then stops working
again later in the day.
What the heck could cause that? My other webservers work without an issue.
But this one seems to keep failing. The cert IS in the keystore...
Any ideas?
Brook
~|
Order the Adobe Coldfusion Anthology now!
http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358343
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Dynamic queries within a loop
Hello, I have an issue that I am hoping you all can help me with. I have a loop, in which I need to call a coldfusion query that is dynamic. I then need to call another query, based on the first query and output the results dynamically. I am stuck on this. Here is my loop and queries: cfloop index=i from=1 to=#courseCount.recordCount# cfstoredproc procedure=XX datasource=#request.dsn# returncode=yes cfprocparam cfsqltype=CF_SQL_INTEGER variable=userID value=#session.userID# cfprocparam cfsqltype=CF_SQL_INTEGER variable=course value=#i# cfprocresult name=course#i# /cfstoredproc cfstoredproc procedure=XX datasource=#request.dsn# returncode=yes cfprocparam cfsqltype=CF_SQL_INTEGER variable=userID value=#session.userID# cfprocparam cfsqltype=CF_SQL_INTEGER variable=courseID value=#i# cfprocparam type=In cfsqltype=CF_SQL_DATE variable=fromDate value=#getCourse#i#.CREDITDESIGNATIONFROM# cfprocparam type=In cfsqltype=CF_SQL_DATE variable=toDate value=#getCourse#i#.CREDITDESIGNATIONTO# cfprocresult name=course#i#Apply#ceuPref.strCme# /cfstoredproc /cfloop My issue is adding the i variable in the 2nd query dynamically. How do I so this? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358344 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Dynamic queries within a loop
Perhaps you do a cfset above the second proc cfset request.procname = course i Apply ceuPref.strCme Then reference that in the tag cfprocresult name=#request.procname# the thing that's popping out to me is your in params cfprocparam type=In cfsqltype=CF_SQL_DATE variable=fromDate value=#getCourse#i#.CREDITDESIGNATIONFROM# cfprocparam type=In cfsqltype=CF_SQL_DATE variable=toDate value=#getCourse#i#.CREDITDESIGNATIONTO# something looks very wrong here. Like you almost want to dynamically evaluate a queryname #eval(getCourse i .CREDITDESIGNATIONTO)# (BTW, the proc result of the previous proc is course#i#, which might also be at issue with defining your second related proc) The bigger thing I'm wondering is why you really require two separate procs. In most of the cases of this that I have seen, two procs could be written as one through proper usage of joins, and save you some overhead (and headaches). Steve 'Cutter' Blades Adobe Community Professional Adobe Certified Expert Advanced Macromedia ColdFusion MX 7 Developer http://cutterscrossing.com Co-Author Learning Ext JS 3.2 Packt Publishing 2010 https://www.packtpub.com/learning-ext-js-3-2-for-building-dynamic-desktop-style-user-interfaces/book The best way to predict the future is to help create it On 4/17/2014 11:36 AM, Torrent Girl wrote: cfprocresult name=course#i#Apply#ceuPref.strCme# ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358345 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Spam management for forms handling
Hi Some of the forms we use CF to email out are getting hit with spam garbage. I'm seeing patterns in them I can use to catch it now, but wondered if there is a more general approach available I'm not aware of? Thanks much! Ben ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358346 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
+1 for the honeypot. Depending on the type of submissions you are looking to get from your form, conversion rates also increase for valid submissions over captcha-protected inputs. Jon On Apr 17, 2014, at 1:00 PM, Robert Harrison rob...@austin-williams.com wrote: You can use: 1. A honey pot field (a field hidden by CSS, with an indicator to leave this field blank); if it's filled it's probably a bot, so don't process... or 2. CFCAPTCHA to generate a captcha and make the user type what's shown; send only if it's a match... or 3. CFFORMPROTECT - http://cfformprotect.riaforge.org/ These are pretty much listed in order of the least effort first. They all work to varying degrees, but I've found just the honey pot will knock out most of it. Robert Harrison Director of Interactive Services Austin Williams Advertising I Branding I Digital I Direct 125 Kennedy Drive, Suite 100 I Hauppauge, NY 11788 T 631.231.6600 X 119 F 631.434.7022 http://www.austin-williams.com Blog: http://www.austin-williams.com/blog Twitter: http://www.twitter.com/austin_ ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358348 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
RE: Spam management for forms handling
You can use: 1. A honey pot field (a field hidden by CSS, with an indicator to leave this field blank); if it's filled it's probably a bot, so don't process... or 2. CFCAPTCHA to generate a captcha and make the user type what's shown; send only if it's a match... or 3. CFFORMPROTECT - http://cfformprotect.riaforge.org/ These are pretty much listed in order of the least effort first. They all work to varying degrees, but I've found just the honey pot will knock out most of it. Robert Harrison Director of Interactive Services Austin Williams Advertising I Branding I Digital I Direct 125 Kennedy Drive, Suite 100 I Hauppauge, NY 11788 T 631.231.6600 X 119 F 631.434.7022 http://www.austin-williams.com Blog: http://www.austin-williams.com/blog Twitter: http://www.twitter.com/austin_ ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358347 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Thanks for the suggestions! Will give them a try. Much appreciated. Be On Apr 17, 2014, at 10:05 AM, Jon Clausen jon_clau...@silowebworks.com wrote: +1 for the honeypot. Depending on the type of submissions you are looking to get from your form, conversion rates also increase for valid submissions over captcha-protected inputs. Jon On Apr 17, 2014, at 1:00 PM, Robert Harrison rob...@austin-williams.com wrote: You can use: 1. A honey pot field (a field hidden by CSS, with an indicator to leave this field blank); if it's filled it's probably a bot, so don't process... or 2. CFCAPTCHA to generate a captcha and make the user type what's shown; send only if it's a match... or 3. CFFORMPROTECT - http://cfformprotect.riaforge.org/ These are pretty much listed in order of the least effort first. They all work to varying degrees, but I've found just the honey pot will knock out most of it. Robert Harrison Director of Interactive Services Austin Williams Advertising I Branding I Digital I Direct 125 Kennedy Drive, Suite 100 I Hauppauge, NY 11788 T 631.231.6600 X 119 F 631.434.7022 http://www.austin-williams.com Blog: http://www.austin-williams.com/blog Twitter: http://www.twitter.com/austin_ ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358349 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Hi Ben I had this problem many years ago and didn't know of HoneyPots though I like the idea a lot. So I created a very simple Captcha. It is is easy to read and not dynamic, it is the same image all the time. You can see it at:http://www.appreciativeway.com/email.cfm?email=info It has worked perfectly for over 6 years without ever being changed. I essentially hate captcha's. Just used Microsoft's yesterday and the thing was almost unreadable and required several takes before I got it to work. So when mine stops working I will probably try the Honey pot idea. Rob Robert J. Voyle, Psy.D. Director, Clergy Leadership Institute For Coaching and Training in Appreciative Inquiry Author: Restoring Hope: Appreciative Strategies to Resolve Grief and Resentment http://www.appreciativeway.com/ 503-647-2378 or 503-647-2382 On 17 Apr 2014 at 9:54, Ben wrote: Hi Some of the forms we use CF to email out are getting hit with spam garbage. I'm seeing patterns in them I can use to catch it now, but wondered if there is a more general approach available I'm not aware ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358350 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Yes, I struggle with some of them as well. Sigh. Ben On Apr 17, 2014, at 11:25 AM, Rob Voyle robvo...@voyle.com wrote: Hi Ben I had this problem many years ago and didn't know of HoneyPots though I like the idea a lot. So I created a very simple Captcha. It is is easy to read and not dynamic, it is the same image all the time. You can see it at:http://www.appreciativeway.com/email.cfm?email=info It has worked perfectly for over 6 years without ever being changed. I essentially hate captcha's. Just used Microsoft's yesterday and the thing was almost unreadable and required several takes before I got it to work. So when mine stops working I will probably try the Honey pot idea. Rob Robert J. Voyle, Psy.D. Director, Clergy Leadership Institute For Coaching and Training in Appreciative Inquiry Author: Restoring Hope: Appreciative Strategies to Resolve Grief and Resentment http://www.appreciativeway.com/ 503-647-2378 or 503-647-2382 On 17 Apr 2014 at 9:54, Ben wrote: Hi Some of the forms we use CF to email out are getting hit with spam garbage. I'm seeing patterns in them I can use to catch it now, but wondered if there is a more general approach available I'm not aware ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358351 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Some of the forms we use CF to email out are getting hit with spam garbage. I'm seeing patterns in them I can use to catch it now, but wondered if there is a more general approach available I'm not aware of? Thanks much! I've had very good luck with a simple math (or other) question, plus a timer that that checks how long it takes to fill out the form. The combo of the two work pretty good. The timer sets a hidden field to the current time, and on submit, checks against the current time again. There's no freaking way to fill out this particular form in less than 10 seconds - so if less time than that has passed, it's a bot. This alone catches 95%. Question works good too. I've got one client that uses: Donald Duck is a Cow, Dog, Duck, or Cat?? Over the last 4 years, not a single bot has EVER answered the question correctly. Of course, all your data HAS to be validated/verified before getting inserted into your database. You're doing that too, correct? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358352 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Oh, that's funny! I'll have to start using Donald as a question. Great idea! Ben On Apr 17, 2014, at 12:11 PM, Les Mizzell lesm...@bellsouth.net wrote: Some of the forms we use CF to email out are getting hit with spam garbage. I'm seeing patterns in them I can use to catch it now, but wondered if there is a more general approach available I'm not aware of? Thanks much! I've had very good luck with a simple math (or other) question, plus a timer that that checks how long it takes to fill out the form. The combo of the two work pretty good. The timer sets a hidden field to the current time, and on submit, checks against the current time again. There's no freaking way to fill out this particular form in less than 10 seconds - so if less time than that has passed, it's a bot. This alone catches 95%. Question works good too. I've got one client that uses: Donald Duck is a Cow, Dog, Duck, or Cat?? Over the last 4 years, not a single bot has EVER answered the question correctly. Of course, all your data HAS to be validated/verified before getting inserted into your database. You're doing that too, correct? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358353 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
RE: Spam management for forms handling
Oh, that's funny! I'll have to start using Donald as a question. Great idea! But what if they answer cartoon or Disney character. That would create a very bad user experience if you tell them they're wrong ... LOL Robert Harrison Director of Interactive Services Austin Williams Advertising I Branding I Digital I Direct 125 Kennedy Drive, Suite 100 I Hauppauge, NY 11788 T 631.231.6600 X 119 F 631.434.7022 http://www.austin-williams.com Blog: http://www.austin-williams.com/blog Twitter: http://www.twitter.com/austin_ ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358354 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Hello Rob and everyone, Image captchas are undetectable by screen reading packages such as those used by the blind and loc out legitiment visitors. CFFormProtect is a far better alternative as it catches spammers in the background without requiring visitors to mess with captchas and locking out visitors that depend on assistive hardware and software for computer screen access. Peter Donahue - Original Message - From: Rob Voyle robvo...@voyle.com To: cf-talk cf-talk@houseoffusion.com Sent: Thursday, April 17, 2014 1:25 PM Subject: Re: Spam management for forms handling Hi Ben I had this problem many years ago and didn't know of HoneyPots though I like the idea a lot. So I created a very simple Captcha. It is is easy to read and not dynamic, it is the same image all the time. You can see it at:http://www.appreciativeway.com/email.cfm?email=info It has worked perfectly for over 6 years without ever being changed. I essentially hate captcha's. Just used Microsoft's yesterday and the thing was almost unreadable and required several takes before I got it to work. So when mine stops working I will probably try the Honey pot idea. Rob Robert J. Voyle, Psy.D. Director, Clergy Leadership Institute For Coaching and Training in Appreciative Inquiry Author: Restoring Hope: Appreciative Strategies to Resolve Grief and Resentment http://www.appreciativeway.com/ 503-647-2378 or 503-647-2382 On 17 Apr 2014 at 9:54, Ben wrote: Hi Some of the forms we use CF to email out are getting hit with spam garbage. I'm seeing patterns in them I can use to catch it now, but wondered if there is a more general approach available I'm not aware ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358355 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
+1 for the honeypot. + another one. You can also use an onclick on the submit button to fill a hidden field with some key text also hidden in your javascript. If the field is not set properly, dont process. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358356 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Image captchas are undetectable by screen reading packages Exact, and anyway, do spamers really care about character recognition? Do these characters really have to look su ugly? These captchas really look ridiculous. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358357 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
