14-Jun-2006

Webserver woes
On the job, we have created an addition on our web-application: to upload and show, on request, all kinds of data that is normally not accessable by a terminal session: PDF-files, Word or EXcel documents, still images, vieo and audio files - whatever. The upload program - the first .EXE we run in a CGI environment - uses Mark Daniel's cgilib library to get most data, including the file to upload. It works great, in a SWS environment.
Because SWS's MOD_AUTH_OPENVMS module cannot handle mixed-case passwords (a known issue in SWS 1.3, but, as I found out, still existing in 2.1) so some customer's use OSU, so we need to check OSU's abilities as well.
After a lot of attempts, it was determined we would need to make a lot of changes in ALL software used, to make the upload program work. Furthermore we have ouir doubts that files over 4K can be displayed the way we do on SWS.
So finally, it was decided, for this part, OSU will not be supported. Those users that use OSU, WASD would be an alternative - but it is to be tested first.
More phishing attempts
that appear to be sent from E-bay and Pay-pal, but actually referring to other sites. Data will be posted on www.grootersnet.nl/security (it still needs to be set up at the time this entry is written, so if the link appears broken, you know why that is).
Web abuse attempts
have been found as well - data will be posted on the same location.