From s.mccarthy at surrey.ac.uk  Tue Aug  9 14:35:02 2016
From: s.mccarthy at surrey.ac.uk (s.mccarthy at surrey.ac.uk)
Date: Tue, 9 Aug 2016 13:35:02 +0000
Subject: [ZendTo] Encryption
Message-ID: <VI1PR06MB17253FE3AA8FA44AAE426824BA1C0@VI1PR06MB1725.eurprd06.prod.outlook.com>

Hi guys,

I notice there was a discussing back in 2013 about maybe implementing Openssl to encrypt files with a random key server side, I wonder if there was ever any movement on this idea?

Cheers
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160809/962fb3ac/attachment.html 

From Stewart.Campbell at pulsion.co.uk  Fri Aug 19 15:06:01 2016
From: Stewart.Campbell at pulsion.co.uk (Stewart Campbell)
Date: Fri, 19 Aug 2016 14:06:01 +0000
Subject: [ZendTo] Unauthenticated XSS
Message-ID: <DB6PR0601MB27090504635EDC3C4D4DD70DDE160@DB6PR0601MB2709.eurprd06.prod.outlook.com>

HI all I don't think this is much of a threat but I'm no expert on these things... just trying to learn.

In pickup.php while unauthenticated

POST

auth="><script>alert('XSS');</script>

The auth variable in the displayPickupCheck function isn't sanitized like the others.




-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160819/29ecbc89/attachment.html 

From Stewart.Campbell at pulsion.co.uk  Fri Aug 19 16:41:03 2016
From: Stewart.Campbell at pulsion.co.uk (Stewart Campbell)
Date: Fri, 19 Aug 2016 15:41:03 +0000
Subject: [ZendTo] Username Locked Out Forever
Message-ID: <DB6PR0601MB2709DDBE55D07BB61A49ADD2DE160@DB6PR0601MB2709.eurprd06.prod.outlook.com>

In MySQL->DBLoginlogLength we have the following query

$query = sprintf("SELECT count(*) FROM loginlog
                    WHERE username = '%s' AND created > '%u'",
                   $this->database->real_escape_string(strtolower($user)),
                   $since);

The trouble is, $since is passed (in NSSDropbox->userFromAuthentication at least) from the preferences.php file which in my config is set to 86400. So we are basically saying where the username is in the loginlog table from 1970.

I think this needs to be changed to (time() - $since). I see the same function in SQLLite & SQLLite3.php files. Not sure if this is a similar problem.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160819/1dd9755d/attachment.html 

From Jules at Zend.To  Fri Aug 19 17:13:41 2016
From: Jules at Zend.To (Jules)
Date: Fri, 19 Aug 2016 17:13:41 +0100
Subject: [ZendTo] Username Locked Out Forever
In-Reply-To: <DB6PR0601MB2709DDBE55D07BB61A49ADD2DE160@DB6PR0601MB2709.eurprd06.prod.outlook.com>
References: <DB6PR0601MB2709DDBE55D07BB61A49ADD2DE160@DB6PR0601MB2709.eurprd06.prod.outlook.com>
Message-ID: <7086c2c5-e4a0-d2dc-e73c-28f75c8cd7ee@Zend.To>

Stewart,

Oops! I'll take a look into this one as soon as I can. I suspect you're 
right, but I want to walk it through the code manually to confirm.

Thanks!
Jules.


On 19/08/2016 16:41, Stewart Campbell wrote:
>
> In MySQL->DBLoginlogLength we have the following query
>
> $query = sprintf("SELECT count(*) FROM loginlog
>
>                     WHERE username = '%s' AND created > '%u'",
>
> $this->database->real_escape_string(strtolower($user)),
>
>                    $since);
>
> The trouble is, $since is passed (in 
> NSSDropbox->userFromAuthentication at least) from the preferences.php 
> file which in my config is set to 86400. So we are basically saying 
> where the username is in the loginlog table from 1970.
>
> I think this needs to be changed to (time() - $since). I see the same 
> function in SQLLite & SQLLite3.php files. Not sure if this is a 
> similar problem.
>
>
>
> _______________________________________________
> ZendTo mailing list
> ZendTo at zend.to
> http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto

Jules

-- 
Julian Field MEng MBCS CITP CEng

'Give a man a fish, and you feed him for a day.
  Teach a man to fish, and he'll sit in a boat and drink beer all day.'
    - Anon

www.Zend.To
Twitter: @JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160819/9c4d3aff/attachment.html 

From Stewart.Campbell at pulsion.co.uk  Mon Aug 22 09:16:59 2016
From: Stewart.Campbell at pulsion.co.uk (Stewart Campbell)
Date: Mon, 22 Aug 2016 08:16:59 +0000
Subject: [ZendTo] Username Locked Out Forever
In-Reply-To: <7086c2c5-e4a0-d2dc-e73c-28f75c8cd7ee@Zend.To>
References: <DB6PR0601MB2709DDBE55D07BB61A49ADD2DE160@DB6PR0601MB2709.eurprd06.prod.outlook.com>
	<7086c2c5-e4a0-d2dc-e73c-28f75c8cd7ee@Zend.To>
Message-ID: <DB6PR0601MB2709EE328338E10AEF219D82DEE80@DB6PR0601MB2709.eurprd06.prod.outlook.com>

Thanks Jules

FYI - the lack of an SPF record for the zend.to domain is causing messages posted to this mailing list to fail if the sending domain has implemented DMARC. If you add an SPF record to zend.to showing where mail can be sent from there should be no more problems.

Also, did you see my other message about an XSS vulnerability?

Thanks,
Stewart.


From: zendto-bounces at zend.to [mailto:zendto-bounces at zend.to] On Behalf Of Jules
Sent: 19 August 2016 17:14
To: ZendTo Users <zendto at zend.to>
Subject: Re: [ZendTo] Username Locked Out Forever

Stewart,

Oops! I'll take a look into this one as soon as I can. I suspect you're right, but I want to walk it through the code manually to confirm.

Thanks!
Jules.

On 19/08/2016 16:41, Stewart Campbell wrote:
In MySQL->DBLoginlogLength we have the following query

$query = sprintf("SELECT count(*) FROM loginlog
                    WHERE username = '%s' AND created > '%u'",
                   $this->database->real_escape_string(strtolower($user)),
                   $since);

The trouble is, $since is passed (in NSSDropbox->userFromAuthentication at least) from the preferences.php file which in my config is set to 86400. So we are basically saying where the username is in the loginlog table from 1970.

I think this needs to be changed to (time() - $since). I see the same function in SQLLite & SQLLite3.php files. Not sure if this is a similar problem.





_______________________________________________

ZendTo mailing list

ZendTo at zend.to<mailto:ZendTo at zend.to>

http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto



Jules



--

Julian Field MEng MBCS CITP CEng



'Give a man a fish, and you feed him for a day.

 Teach a man to fish, and he'll sit in a boat and drink beer all day.'

   - Anon



www.Zend.To<http://www.Zend.To>

Twitter: @JulesFM

PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160822/94d460a9/attachment.html 

From MooreM10 at cardiff.ac.uk  Tue Aug 23 12:21:09 2016
From: MooreM10 at cardiff.ac.uk (Matthew Moore)
Date: Tue, 23 Aug 2016 11:21:09 +0000
Subject: [ZendTo] Blank background on Windows 7 and IE 11
Message-ID: <AM4PR0201MB2211B29B3BC0B22108120F9E8DEB0@AM4PR0201MB2211.eurprd02.prod.outlook.com>

Hi,

I have an odd error on Windows 7 and IE 11. It seems like the CSS isn't loaded. Anyone else seen this? Any idea of a fix?

I've got a screenshot of the error, which is attached.

Cheers,

Matthew Moore

Senior Server Engineer and Team Leader
University IT Service
Cardiff University
42 Park Place
Cardiff
CF10 3BB
Tel: +44 (0)29 2087 0867
Email: moorem10 at cardiff.ac.uk

Matthew M?oore


Gwasanaeth TG y Brifysgol
Prifysgol Caerdydd
42 Plas y Parc
Caerdydd
CF10 3BB
Ff?n : +44 (0)29 2087 0867
E-bost: moorem10 at cardiff.ac.uk ?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.jpg
Type: image/jpeg
Size: 26210 bytes
Desc: image002.jpg
Url : http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160823/71b8db20/attachment-0001.jpg 

From mailinglists at pcfreak.de  Tue Aug 23 12:28:36 2016
From: mailinglists at pcfreak.de (Mailing Lists)
Date: Tue, 23 Aug 2016 13:28:36 +0200
Subject: [ZendTo] Blank background on Windows 7 and IE 11
In-Reply-To: <AM4PR0201MB2211B29B3BC0B22108120F9E8DEB0@AM4PR0201MB2211.eurprd02.prod.outlook.com>
References: <AM4PR0201MB2211B29B3BC0B22108120F9E8DEB0@AM4PR0201MB2211.eurprd02.prod.outlook.com>
Message-ID: <87390D7B-71D0-4340-9C04-7CFBD299FAF1@pcfreak.de>

Windows use compatibily mode for intranet sites automatically, could that be the problem?

via Smartphone

> Am 23.08.2016 um 13:21 schrieb Matthew Moore <MooreM10 at cardiff.ac.uk>:
> 
> Hi,
> 
> I have an odd error on Windows 7 and IE 11. It seems like the CSS isn't loaded. Anyone else seen this? Any idea of a fix?
> 
> I've got a screenshot of the error, which is attached.
> 
> Cheers,
> 
> Matthew Moore
> 
> Senior Server Engineer and Team Leader
> University IT Service
> Cardiff University
> 42 Park Place
> Cardiff
> CF10 3BB
> Tel: +44 (0)29 2087 0867
> Email: moorem10 at cardiff.ac.uk
> 
> Matthew M?oore
> 
> 
> Gwasanaeth TG y Brifysgol
> Prifysgol Caerdydd
> 42 Plas y Parc
> Caerdydd
> CF10 3BB
> Ff?n : +44 (0)29 2087 0867
> E-bost: moorem10 at cardiff.ac.uk ?
> 
> <image002.jpg>
> _______________________________________________
> ZendTo mailing list
> ZendTo at zend.to
> http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto


From MooreM10 at cardiff.ac.uk  Tue Aug 23 13:02:49 2016
From: MooreM10 at cardiff.ac.uk (Matthew Moore)
Date: Tue, 23 Aug 2016 12:02:49 +0000
Subject: [ZendTo] Blank background on Windows 7 and IE 11
In-Reply-To: <87390D7B-71D0-4340-9C04-7CFBD299FAF1@pcfreak.de>
References: <AM4PR0201MB2211B29B3BC0B22108120F9E8DEB0@AM4PR0201MB2211.eurprd02.prod.outlook.com>,
	<87390D7B-71D0-4340-9C04-7CFBD299FAF1@pcfreak.de>
Message-ID: <AM4PR0201MB2211817DB520E092BB5621598DEB0@AM4PR0201MB2211.eurprd02.prod.outlook.com>

That's a good point.  I'm not a Windows guy, so I'll check with the test team and see what compatibility settings their using.

Cheers,

Matthew Moore

Senior Server Engineer and Team Leader
University IT Service
Cardiff University
42 Park Place
Cardiff
CF10 3BB
Tel: +44 (0)29 2087 0867
Email: moorem10 at cardiff.ac.uk

Matthew M?oore


Gwasanaeth TG y Brifysgol
Prifysgol Caerdydd
42 Plas y Parc
Caerdydd
CF10 3BB
Ff?n : +44 (0)29 2087 0867
E-bost: moorem10 at cardiff.ac.uk ?


________________________________________
From: zendto-bounces at zend.to <zendto-bounces at zend.to> on behalf of Mailing Lists <mailinglists at pcfreak.de>
Sent: 23 August 2016 12:28:36
To: ZendTo Users
Subject: Re: [ZendTo] Blank background on Windows 7 and IE 11

Windows use compatibily mode for intranet sites automatically, could that be the problem?

via Smartphone

> Am 23.08.2016 um 13:21 schrieb Matthew Moore <MooreM10 at cardiff.ac.uk>:
>
> Hi,
>
> I have an odd error on Windows 7 and IE 11. It seems like the CSS isn't loaded. Anyone else seen this? Any idea of a fix?
>
> I've got a screenshot of the error, which is attached.
>
> Cheers,
>
> Matthew Moore
>
> Senior Server Engineer and Team Leader
> University IT Service
> Cardiff University
> 42 Park Place
> Cardiff
> CF10 3BB
> Tel: +44 (0)29 2087 0867
> Email: moorem10 at cardiff.ac.uk
>
> Matthew M?oore
>
>
> Gwasanaeth TG y Brifysgol
> Prifysgol Caerdydd
> 42 Plas y Parc
> Caerdydd
> CF10 3BB
> Ff?n : +44 (0)29 2087 0867
> E-bost: moorem10 at cardiff.ac.uk ?
>
> <image002.jpg>
> _______________________________________________
> ZendTo mailing list
> ZendTo at zend.to
> http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto

_______________________________________________
ZendTo mailing list
ZendTo at zend.to
http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto