[ZendTo] Re: ZendTo Digest, Vol 19, Issue 16

a r ander12766 at yahoo.com
Wed Feb 22 19:57:01 GMT 2012


Jules,
Thank you so much for your help I really do appreciate you time.
All your tips are really helping me to get this application going.
thanks. care.




----- Original Message -----
From: "zendto-request at zend.to" <zendto-request at zend.to>
To: zendto at zend.to
Cc: 
Sent: Wednesday, February 22, 2012 7:00 AM
Subject: ZendTo Digest, Vol 19, Issue 16

Send ZendTo mailing list submissions to
    zendto at zend.to

To subscribe or unsubscribe via the World Wide Web, visit
    http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto
or, via email, send a message with subject or body 'help' to
    zendto-request at zend.to

You can reach the person managing the list at
    zendto-owner at zend.to

When replying, please edit your Subject line so it is more specific
than "Re: Contents of ZendTo digest..."


Today's Topics:

   1. Re: (no subject) (Jules)
   2. Re: (no subject) (Jules)
   3. Re: Question on Captcha use (Jules)
   4. Re: ZendTo vmdk mounts root partition read-only (Jules)


----------------------------------------------------------------------

Message: 1
Date: Tue, 21 Feb 2012 13:29:32 +0000
From: Jules <Jules at Zend.To>
Subject: [ZendTo] Re: (no subject)
To: ZendTo Users <zendto at Zend.To>
Message-ID: <4F439C3C.8010704 at Zend.To>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed



On 17/02/2012 17:46, a r wrote:
> Hello List,
> -I was asked by my boss if there is an admin  account on the web interface to be able to see the list of users and their sent and received contents so we can see what kind of files they are.
Yes. In preferences.php you should set the setting 'authAdmins' to the 
list of administrators' usernames. Once logged in, administrators see 
some extra red buttons on the main menu, enabling them to see everything 
stored and to look at the usage statistics graphs, as well as being able 
to unlock users whose accounts have been locked due to repeated failed 
attempts to log in.
> -Also can you tell me if there is a way to restrict files type with the antivirus when downloading and uploading?
Not directly, no. But if you are up to writing your own scripts to do 
it, you can put your own command instead of the call to "clamdscan" in 
the 'clamdscan' setting in preferences.php. If this program/script 
returns 0, the drop-off is allowed. If it returns 1, the drop-off is 
rejected. If it returns 2, the drop-off is rejected with a "system 
failure" error message. When rejected, the user is given the error 
message defined by the setting "ErrorVirusFound" in zendto.conf.
> -where in the zendto are the files uploaded? where is the location?
/var/zendto/dropoffs.

Jules

-- 
Julian Field MEng CITP CEng
www.Zend.To

Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654

'It's okay to live without all the answers' - Charlie Eppes, 2011
'All programs have a desire to be useful' - Tron, 1982
'That is the land of lost content,
  I see it shining plain,
  The happy highways where I went,
  And cannot come again.' - A.E. Houseman



------------------------------

Message: 2
Date: Tue, 21 Feb 2012 13:30:38 +0000
From: Jules <Jules at Zend.To>
Subject: [ZendTo] Re: (no subject)
To: ZendTo Users <zendto at Zend.To>
Message-ID: <4F439C7E.1020909 at Zend.To>
Content-Type: text/plain; charset=UTF-8; format=flowed

Yes, the log is at /var/zendto/zendto.log. You can view the log through 
the web interface if you are logged in as an admin user (see 
'authAdmins' in preferences.php).

Jules.

On 17/02/2012 18:15, Joshua F. Withrow wrote:
> Yes, by default the "Root" account (and any other admins you specify) can see anything currently sitting in a users inbox or outbox.  However, it does not keep historic files.  It truly deletes them after their expiration.   I believe there is a log that you could use to review, too.  At least the file names, but not the content(s).
>
> Josh Withrow
> Manager of Information Technology
> M (410) 548-1627 x315 ?(302) 233-2366  ? (410) 548-1628
> 510 Naylor Mill Road, Salisbury, Maryland 21801
> www.MATECHSolutions.com
>
>
> -----Original Message-----
> From: zendto-bounces at zend.to [mailto:zendto-bounces at zend.to] On Behalf Of a r
> Sent: Friday, February 17, 2012 12:46 PM
> To: zendto at zend.to
> Subject: [ZendTo] (no subject)
>
> Hello List,
> -I was asked by my boss if there is an admin  account on the web interface to be able to see the list of users and their sent and received contents so we can see what kind of files they are.
> -Also can you tell me if there is a way to restrict files type with the antivirus when downloading and uploading?
> -where in the zendto are the files uploaded? where is the location?
>
> Thank you all!!
>
>
> _______________________________________________
> ZendTo mailing list
> ZendTo at zend.to
> http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto
>
> This message is the property of MATECH Solutions (MATECH) and the Information contained herein may be/is subject to the Code of Federal Regulations Chapter 22 International Traffic in Arms Regulations (ITAR).  This data may not be resold, diverted, transferred, transshipped, made available to a foreign national within the United States, or otherwise disposed of in any other country outside of its intended destination, either in original form or after being incorporated through an intermediate process into other data without the prior written approval of the US Department of State.  The  information  in  this e-mail  and  subsequent  attachments  may contain legally privileged, proprietary  and/or  confidential information  that  is intended only for the use of the addressee(s).
> No addressee should  forward, print, copy or otherwise reproduce  this message  in  any manner that  would allow  it  to  be  viewed by any individual  not  originally listed  as the recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, retention or use of the contents of this e-mail information is prohibited.  If you have received this communication in error, please immediately notify the sender by telephone or return e-mail and delete this e-mail. Thank You.
>
> _______________________________________________
> ZendTo mailing list
> ZendTo at zend.to
> http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto

Jules

-- 
Julian Field MEng CITP CEng
www.Zend.To

Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654

'It's okay to live without all the answers' - Charlie Eppes, 2011
'All programs have a desire to be useful' - Tron, 1982
'That is the land of lost content,
  I see it shining plain,
  The happy highways where I went,
  And cannot come again.' - A.E. Houseman




------------------------------

Message: 3
Date: Tue, 21 Feb 2012 13:34:20 +0000
From: Jules <Jules at Zend.To>
Subject: [ZendTo] Re: Question on Captcha use
To: ZendTo Users <zendto at Zend.To>
Message-ID: <4F439D5C.3050805 at Zend.To>
Content-Type: text/plain; charset="iso-8859-1"

Tim,

On 17/02/2012 18:15, Clements, Timothy wrote:
>
> Hi, Jules,
>
> I'm really impressed with this product and the ease of use.  I do have 
> one question, however, which may be related to the level of security 
> required.
>
> I have Captcha set up and I understand why you would use it for 
> someone outside the organization who wants to initiate the sending of 
> a file.  However, when it is a matter of someone within the 
> organization initializing a drop off or pick up, I would think the 
> email with the coded link would ensure against bot attacks, and it 
> would not be necessary to have someone complete the Captcha challenge 
> in those cases.  Can you address that briefly, or alternatively, would 
> you consider making use of Captcha in those cases optional?
>
In the "download" process, you can disable the captcha by setting
'humanDownloads' => false,
in preferences.php.

The reason for it being there is that if the email containing the link 
gets into the wild, anyone anywhere (and include malware robots in there 
too!) can download the file as many times as they like. My own ZendTo 
deployment here has already had at least 1 Distributed Denial-of-Service 
(DDoS) attack that was done by exploiting this loophole. Hence the 
"humanDownloads" setting to stop it. Feel free to disable it, but don't 
complain if you get DDoS-ed! :-)
>
> Thanks again for a well-designed product.
>
I'm glad you like it. Sorry I have taken so long to respond to your 
email, things have been very busy and tiring here and I haven't had the 
time to quite keep up with all my email.

Cheers,

Jules

-- 
Julian Field MEng CITP CEng
www.Zend.To

Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654

'It's okay to live without all the answers' - Charlie Eppes, 2011
'All programs have a desire to be useful' - Tron, 1982
'That is the land of lost content,
  I see it shining plain,
  The happy highways where I went,
  And cannot come again.' - A.E. Houseman

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20120221/ee59a7b0/attachment-0001.html 

------------------------------

Message: 4
Date: Tue, 21 Feb 2012 16:27:09 +0000
From: Jules <Jules at Zend.To>
Subject: [ZendTo] Re: ZendTo vmdk mounts root partition read-only
To: Bertie Enochs <benochs at dcc.govt.nz>, ZendTo Users <zendto at Zend.To>
Message-ID: <4F43C5DD.2090602 at Zend.To>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed

I have replaced the VM images on the website with simple OVA files 
created by vSphere.

I've just tried one on VMware Workstation 8 and it appears to run fine, 
so maybe VMware have fixed the problems I was having originally that 
stopped me using OVA.

Please try the OVA (download it and double-click on it) and let me know 
how you get on.

Cheers,

Jules

-- 
Julian Field MEng CITP CEng
www.Zend.To

Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654

'It's okay to live without all the answers' - Charlie Eppes, 2011
'All programs have a desire to be useful' - Tron, 1982
'That is the land of lost content,
  I see it shining plain,
  The happy highways where I went,
  And cannot come again.' - A.E. Houseman



------------------------------

_______________________________________________
ZendTo mailing list
ZendTo at zend.to
http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto

End of ZendTo Digest, Vol 19, Issue 16
**************************************




More information about the ZendTo mailing list