Re: Security hole in WebCat?

This WebDNA talk-list message is from

1999

It keeps the original formatting. numero = 24730
interpreted = N
texte = >This is with Web* 4.1b17 and WebCat Mac PI b11 (most recent release).>More details as I narrow things down (if possible).If this happens again, can you capture the source of the web page and send it to me? I'm assuming that's the closest thing possible to capturing the actual data sent back from the server. Is it something where the HTML is returned, followed by some extra junk at the end? Is it related to the Verbose Message logging bug in WebSTAR?Sounds like WebSTAR is deciding to hand out the contents of the wrong buffer, and since we haven't changed any of our code in years, I'm wondering if it's a WebSTAR beta thing. We did change the MIME headers so that things like expiration date and content-type are returned, but that's different from the main body of the HTML.It would be great if you could capture an OTSessionWatcher session when it happens, or maybe a WebSTAR verbose log.Grant Hulbert , Director of R & D **********************************Smith Micro, Internet Solutions Div | Formerly, Pacific Coast Software16855 West Bernardo Drive | -------------------------Suite 380 | eCommerce (WebCatalog)San Diego, CA 92127 | Software & Site Development858.675.1106 | http://www.smithmicro.com858.675.0372 (fax) **********************************#############################################################This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to To switch to the INDEX mode, E-mail to Send administrative queries to Associated Messages, from the most recent to the oldest:

Re: Security hole in WebCat? (Grant Hulbert 1999)
Re: Security hole in WebCat? (Michael Winston 1999)
Re: Security hole in WebCat? (Michael Winston 1999)
Security hole in WebCat? (Timothy W. Killian 1999)

>This is with Web* 4.1b17 and WebCat Mac PI b11 (most recent release).>More details as I narrow things down (if possible).If this happens again, can you capture the source of the web page and send it to me? I'm assuming that's the closest thing possible to capturing the actual data sent back from the server. Is it something where the HTML is returned, followed by some extra junk at the end? Is it related to the Verbose Message logging bug in WebSTAR?Sounds like WebSTAR is deciding to hand out the contents of the wrong buffer, and since we haven't changed any of our code in years, I'm wondering if it's a WebSTAR beta thing. We did change the MIME headers so that things like expiration date and content-type are returned, but that's different from the main body of the HTML.It would be great if you could capture an OTSessionWatcher session when it happens, or maybe a WebSTAR verbose log.Grant Hulbert , Director of R & D **********************************Smith Micro, Internet Solutions Div | Formerly, Pacific Coast Software16855 West Bernardo Drive | -------------------------Suite 380 | eCommerce (WebCatalog)San Diego, CA 92127 | Software & Site Development858.675.1106 | http://www.smithmicro.com858.675.0372 (fax) **********************************#############################################################This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to To switch to the INDEX mode, E-mail to Send administrative queries to Grant Hulbert

DOWNLOAD WEBDNA NOW!

Re: Security hole in WebCat?

1999

Top Articles:

Related Readings: