Hi Nick,
I have the same issue, it happens sometimes when I call a remoteObject (flex +
cfc) and it's very anoying...
Have you figured it out ?
I would be glad to know if there's a fix.
Have a good day,
Aubry
We have to date encountered no fix for this, nor has anyone found a cause.
Kinda
We just moved our ColdFusion 8 Ent to a new server and now our scheduled tasks
are running twice. One right after the other. We physically disconnected the
old server from the network and the jobs are still running twice. Any ideas how
this happened or how to fix it?
Thanks, Jeff
We had this problem a long time ago and I don't remember the exact details,
but it happened after an upgrade if I remember correctly. The problem, I
believe, was that we had 2 versions of CF running that were each running the
tasks. I disabled the older CF service and all was well again.
So I
Hello. Any SQL Guru up for a challenge? I've inherited a wacky database that
I need to pull info from. I'm trying to pull a range of prices for a
specific product. I'd like to simply the two queries below (which work),
possibly using sub-queries or some other SQL trick. Any ideas?
cfset pid =
What about a basic join?
SELECT MIN(optPrice) AS minPrice, MAX(optPrice) AS MaxPrice
FROMproductOptions po
INNER JOIN options o ON o.optID = po.optID
WHERE productID = cfqueryparam value=#pid# cfsqltype=cf_sql_integer
How about this:
Select min(optprice) as minprice, max(optprice) as maxprice
fromoptions
where optID in (select optID
fromproductOptions
where productID = cfqueryparam value=#pid# cfsqltype=cf_sql_integer)
On Wed, Jan 13, 2010 at 11:02 AM, Che Vilnonis ch...@asitv.com wrote:
Bangs head on desk... Needs more coffee...
Don't know why I tried to overcomplicate things, but that seems to work.
Thanks!
CV
-Original Message-
From: Leigh [mailto:cfsearch...@yahoo.com]
Sent: Wednesday, January 13, 2010 11:08 AM
To: cf-talk
Subject: Re: (ot) SQL Guru Needed
What
I have been getting a lot lately... and had an interesting
one. One computer was hammering my server. They were trying a
dictionary attack on one of my forms, in addition to trying sql
injection on every dynamic page. Strangely, the IP address of the
attacker, 204.238.82.17, was from
I have run into a unique situation, the first time in my 10 years of using CF.
I have a pseudo-fusebox app, and I have an act page we'll call it:
act_process.cfm
it calls 2 qry files that in turn call one stored proc each.
When the act page runs, I have checked the database and all the procs
The best way to troubleshoot this issue if it is reproducible is to
start a SQL Server Profiler trace to observe exactly what the database
is doing.
Maybe the CF code is running twice, the first is working and the
second is failing.
-Mike Chabot
On Wed, Jan 13, 2010 at 2:40 PM, Ali Awan
If you disable the scheduled task on the new server does it run once
or never? The most common problem I have seen with these observed
symptoms is that the scheduled task is running somewhere else, such as
on an old server, a staging server, a dev server, or a second pair in
a cluster.
Good
Mike,
Thanks for responding.
Another thing I forgot to mention is that when I run the procedure in SQL
Server directly it runs without error.
Also, and this is sporadic.
When I run the stored proc in coldfusion by itself, by doing an Exec statment
in a CFQuery. Sometimes it runs without
On Wed, Jan 13, 2010 at 10:39 AM, Jeffrey Pratte jpra...@ullico.com wrote:
We just moved our ColdFusion 8 Ent to a new server and now our scheduled
tasks are running twice. One right after the other. We physically disconnected
the old server from the network and the jobs are still running
Well, here's a wrinkle:
This line (same as before) doesn't delete the file in the source:
cffile action=move
source=#arguments.stConfig.ftpFileLocations.pending##local.qFiles.name#
destination=#arguments.stConfig.ftpFileLocations.badFiles##local.qFiles.name#
/
This line (different destination,
I was never able to satisfactorily solve the problem on our server. It
didn't happen with every scheduled task on the server, only one, and even if
we changed the time that the task ran, it didn't matter. It would run once
and then immediately run again. We just ended up setting a cron job to
How do you guys monitor these attacks? The webserver logs?
-Original Message-
From: Al Musella, DPM [mailto:muse...@virtualtrials.com]
Sent: Wednesday, January 13, 2010 12:34 PM
To: cf-talk
Subject: Re: Recent SQL Injection attacks
I have been getting a lot lately... and had
I wrote an IIS log parser which can not only parse the IIS logs to a
DB but when the url params are over a certain size or has certain key
words, it'll flag it as a problem to look at later. Unfortunately, the
attack was on a clients site and we knew about it when the page
display was
using cfformprotect i am doing an exercise whereby loggin each offending IP
address in a table. next to each IP i am recording the number of times they
reoffend. i am then using a block script (found from this site i think?)...
!--- blacklist ip addresses ---
cfset fName =
The best way to troubleshoot this issue if it is reproducible is to
start a SQL Server Profiler trace to observe exactly what the database
is doing.
-Mike Chabot
Mike, I am trying this at work and do not have the admin privileges to run
the SQL Server Profiler.
Another interesting thing is
If you don't have access to SQL profiler, find someone who does to help
you or request permissions. You can't be expected to do your job
without a full tool-set. Also, the debugging feature of a product such
as SeeFusion when using the JDBC URL wrappers can be invaluable and
easier to use than
Fast question. Has anyone seen an injection attack that used a field
other than an integer?
I've written a fast RegEx for use in Homesite (or any other regex
using editor) that will find any query that has numeric 'looking'
variables that are not in a cfqueryparam. While I have to change every
Michael,
Yes... Certain types of installations of MySQL are subject to character
injection attacks.
http://www.coldfusionmuse.com/index.cfm/2008/2/22/sql-injection-on-a-charact
er-field
Mark A. Kruger, CFG, MCSE
(402) 408-3733 ext 105
www.cfwebtools.com
www.coldfusionmuse.com
www.necfug.com
Yeah, this is kinda off topic, but..
Someone, I think it was Sean Corfield had mentioned a really inexpensive
ColdFusion hosting provider. GoDaddy is driving me nuts.
I think it started with an A but the name escapes me..
--
Scott Stewart
IT Consultant/ColdFusion Developer
4405
If really inexpensive is what you're after, check out
http://www.hostingatoz.com
On Wed, Jan 13, 2010 at 3:55 PM, Scott Stewart sstwebwo...@bellsouth.netwrote:
Yeah, this is kinda off topic, but..
Someone, I think it was Sean Corfield had mentioned a really inexpensive
ColdFusion hosting
I can attest to this. Except for one ticket that took 5 months or so
to fix, they have always been prompt and helpful setting up service.
On Wed, Jan 13, 2010 at 3:57 PM, Charlie Griefer
charlie.grie...@gmail.com wrote:
If really inexpensive is what you're after, check out
There's a project for that.
I can't remember what it is off-hand, but I'm 100% sure there's a
cfqueryparam-er.cfc out there, which does this.
Maybe this one? : http://qpscanner.riaforge.org/
I think there's at least one or two more too. I should really make a
note of them somewhere...
It
+1 for really inexpensive and they've been swell. Not a single
complaint here!
If it's just for playing around, someone has free hosting on cf9-- I
think I just saw it come across here recently, can't remember the
location tho.
hostingatoz has been fine, just fine.
Thanks Charlie! I'm pretty
Maybe this one? : http://qpscanner.riaforge.org/
The other main one is
http://www.webapper.com/blog/index.php/2008/7/22/ColdFusion-SQL-Injection
I think a mash up or two might have cropped up in the past year too.
~Brad
The qpscanner is ok in general but I want something that will only get
me numeric variables that are not in a cfqueryparam. The RegEx does
that while putting the results in a single click position for me to
edit immediately. My old cfqueryparam scanner allows for
auto-insertion of cfqueryparam
Mark,
Thanks. The client is on MS SQL so doing the numbers first looks like
a good idea for him. Always good to prioritize work.
--
Michael
On Wed, Jan 13, 2010 at 6:39 PM, Mark Kruger mkru...@cfwebtools.com wrote:
Michael,
Yes... Certain types of installations of MySQL are subject to
Brad,
Thanks for the helpful suggestions.
In terms of numbers of inserts, well it's an insert statement within a cursor
loop.
There's 305 records being added so it loops 305 times and does an insert.
As I mentioned in my last post.
When I take my execution page out of the pseudo-fusebox app
I've used atoz before, and it was just an aweful experience all around. I'd
vote no to atoz.
Mark
On Thu, Jan 14, 2010 at 11:19 AM, denstar valliants...@gmail.com wrote:
+1 for really inexpensive and they've been swell. Not a single
complaint here!
If it's just for playing around,
On Wed, Jan 13, 2010 at 5:58 PM, Ali Awan wrote:
And if that is true, then how come ColdFusion handles it differently when I
pull that CF page out of that app, and run it by itself?
If that's the case, you know that it's not ColdFusion itself causing the error.
I don't think queries are var
Firstly, install MS Fiddler and examine the HTTP requests being sent
from your browser when you click whatever button or link loads the
processing page.
All too many times I have seen a form with a submit button AND a
JavaScript onclick that are working together to submit the form more
than once.
So, I'm relatively new to OO in ColdFusion, and I'm banging my head against one
issue in particular. Let's say I've got a DAO or Gateway object in my
APPLICATION scope that needs to return a collection of beans, I'm having
trouble understanding the need to VAR scope all internally used
Hi Jonathon,
There's only one thisContact variable, which is being reused each time
through the loop. So all you need to do is put:
cfset var thisContact =
right at the start. There's an indeterminate number of values that are
passing through that one variable on their way into the array,
If you're on CF9 things may a little different in that you may not need to
explicitly var
scope,
If you are on CF9, use the local scope as it is inherently varred:
cfset local.returnArray = []
...
cfset local.thisContact = createObject('component',
'Contact').init(...insert init info
Right, I tried this but it behaved weirdly - as thought the ArrayAppend were
passing just a pointer to the one object each time so that after appending all
my objects, the array was full replicas of whichever object was loaded last
instead of a bunch of different objects. To clarify, here's
Yeah, we're on CF8 for better or worse. So I redid the previous function to
look like this:
CFFUNCTION name=getPrograms_a access=public returntype=Array
CFSET VAR local = {}
CFINVOKE method=getPrograms_q returnvariable=q_programs
CFSET
CF copies objects by reference. Each time you changed the object in
the loop, you updated each previous reference. You could use
duplicate() to put a copy into the array.
mxAjax / CFAjax docs and other useful articles:
http://www.bifrost.com.au/blog/
2010/1/14 Jonathan Price
40 matches
Mail list logo
