>
> I'd like to begin monitoring the server's request log and system logs to
be
> able to detect abuse of today's 0-day, if possible. Is it possible to
> search for GET requests or Struts log statements to determine if this
issue
> is being exploited?
As far as I see it the problem are speci
You will get WARN in devMode or DEBUG log entry from
ParametersInterceptor or you can use access_log from Apache - it all
depends on setup of your application.
2014-04-24 20:25 GMT+02:00 rgm :
> I'd like to begin monitoring the server's request log and system logs to be
> able to detect abuse of t
I'd like to begin monitoring the server's request log and system logs to be
able to detect abuse of today's 0-day, if possible. Is it possible to
search for GET requests or Struts log statements to determine if this issue
is being exploited?
Thanks Robert for your inputs.
Well I'm sure that Struts does initialize all null objects along the object
chain if they are null, because for 90% of the time, this works. I do not
explicitly initialize objects along the object chain in my code. For most of
the time, Struts detects that it is null
Say Jon schrieb:
public void prepare() throws Exception {
super.prepare();
BaseEntity model = null;
if (getId() != null) {
model = (BaseEntity) session.get(getEmbeddedModelKey() + getId());
if (model == null) model = service.retrieve(modelClass, getId());
}
if (model == null && !(this inst
help
> us helping you.
>
> Robert
>
> Say Jon schrieb:
>
> Hi all,
>> I have been using Struts 2 for a while now and I am pulling my hair over
>> the
>> following issue. At times, when my parameter name contains a period, the
>> Parameterinterceptor d
obert
Say Jon schrieb:
Hi all,
I have been using Struts 2 for a while now and I am pulling my hair over the
following issue. At times, when my parameter name contains a period, the
Parameterinterceptor doesn't seem to be applied properly. For example I have
a parameter "userAddress.co
Hi all,
I have been using Struts 2 for a while now and I am pulling my hair over the
following issue. At times, when my parameter name contains a period, the
Parameterinterceptor doesn't seem to be applied properly. For example I have
a parameter "userAddress.country.id" which poi
number field (in this
>> example xaction.listPrice), everything works perfectly in Part 2 of
>> the page (a fieldError is given and the form refilled). However, Part
>> 1 is null since the parameterInterceptor doesn't call my action class.
>> How do I "refill"
number field (in this
example xaction.listPrice), everything works perfectly in Part 2 of
the page (a fieldError is given and the form refilled). However, Part
1 is null since the parameterInterceptor doesn't call my action class.
How do I "refill" the Contact object information wh
xaction.listPrice), everything works perfectly in Part 2 of
the page (a fieldError is given and the form refilled). However, Part
1 is null since the parameterInterceptor doesn't call my action class.
How do I "refill" the Contact object information when this happens?
Or is my implementatio
t; Scott
> [EMAIL PROTECTED]
>
>
--
View this message in context:
http://www.nabble.com/ParameterInterceptor-tf4487083.html#a12801035
Sent from the Struts - User mailing list archive at Nabble.com.
-
To unsubscri
[EMAIL PROTECTED] on 20/09/07 12:55, wrote:
I had a strange experience last night! My web page parms were being set
onto my action's model until a null property was encountered. It seems one
of the web page fields was set to readonly and was not passed as a request
parm. The null property resu
I had a strange experience last night! My web page parms were being set
onto my action's model until a null property was encountered. It seems one
of the web page fields was set to readonly and was not passed as a request
parm. The null property resulted in a new model object being constructed
a
Basically trying to identify the permutations under which parameters get
mapped. My Action contains a bean private Foo foo and contains
getters/setters. Foo has a property bar. My web page is passing the
parameter Foo.bar and the Action is finding getFoo using Foo rather than
foo! Is this desi
--- [EMAIL PROTECTED] wrote:
> For example, in the MailReader demo, the web page
names
> are not prefixed with the bean name in the Action
> class, yet it seems to be working!
What specifically are you referring to? I don't recall
there being anything unusual about how MailReader is
set up, excep
Try name=foo.bar rather than name=Foo.bar in your jsp. The how and why
is out of my scope. Hope this helps.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 07, 2007 3:35 PM
To: Struts Users Mailing List
Subject: ParameterInterceptor
I think I
I think I just encountered a "feature" in the way S2 handles parameters. My
Action contains a bean private Foo foo and contains getters/setters. Foo
has a property bar. My web page is passing the parameter Foo.bar and the
Action is finding getFoo using Foo rather than foo! Is this designed to
18 matches
Mail list logo
