policy

Imagemagick - change policy.xml on Heroku

别来无恙 提交于 2019-12-07 22:38:00
问题 I'm trying to access images via https on Heroku with Imagemagick. How can I change the policies (in policy.xml) on Heroku? Heroku made an "ImageMagick security update" in May, 2016: https://devcenter.heroku.com/changelog-items/891 I can see the policy list, after typing heroku run bash and convert -list policy : Path: [built-in] Policy: Undefined rights: None Path: /etc/ImageMagick/policy.xml [...] Policy: Coder rights: None pattern: HTTPS [...] How can I change the policy? update 1: this is

How to read LDAP password policy in Java

久未见 提交于 2019-12-07 11:25:51
问题 Can i read user password policy from LDAP, like when it expires or more details like password strength (minimal length etc.) ? I need these information so I can use the same policy for users kept in my database. My java application require that users from the database have to be synchronized with domain. 回答1: If you want to get the password policy through LDAP queries try this without PSO policy in your current domain String searchDomain= "DC=company,DC=ORG"; String ldapQuery = "(&

Amazon AWS S3 IAM Policy based on namespace or tag

南笙酒味 提交于 2019-12-07 06:12:20
问题 I have a number of buckets that start with the same namespace as in assets-<something> , so I was wondering what would be the best option to give rights to IAM group with minimal need to maintain it. Is it possible to use any sort of regex in ARN? Or maybe I could use tags? EC2 has condition for ResourceTag , but it appears that it does not exist for S3. Or should I with each bucket add new ARN to the policy? Again I am searching for the minimal solution so attaching new policy to each bucket

Separate policy from mechanism: What does it mean?

二次信任 提交于 2019-12-06 17:29:11
问题 I've often heard the mantra of "separating policy from mechanism", especially in the context of the Unix philosopy. What does this mean and what are some concrete examples of it? When/why is/isn't it a good thing? 回答1: It is basically the separation of requirements or business function from technical implementation. The mechanism is the technical implementation. The implementation allows and supports the ability for the business to implement its business policy. Example: A security mechanism

Trouble getting Flash socket policy file to work

蓝咒 提交于 2019-12-06 13:40:37
问题 Basically I'm using Flash to connect to a Java server. Despite my Java application replying to the <policy-file-request/> , in the Flash debug log it lists (not sure about the order as there are lots): * Security Sandbox Violation * Connection to 192.168.1.86:4049 halted - not permitted from http://127.0.0.1:8888/Current/wander.swf Warning: Timeout on xmlsocket://192.168.1.86:4049 (at 3 seconds) while waiting for socket policy file. This should not cause any problems, but see http://www.adobe

Imagemagick - change policy.xml on Heroku

微笑、不失礼 提交于 2019-12-06 13:26:40
I'm trying to access images via https on Heroku with Imagemagick. How can I change the policies (in policy.xml) on Heroku? Heroku made an "ImageMagick security update" in May, 2016: https://devcenter.heroku.com/changelog-items/891 I can see the policy list, after typing heroku run bash and convert -list policy : Path: [built-in] Policy: Undefined rights: None Path: /etc/ImageMagick/policy.xml [...] Policy: Coder rights: None pattern: HTTPS [...] How can I change the policy? update 1: this is the error in the log file: Command failed: convert.im6: not authorized `//scontent-fra3-1.xx.fbcdn.net

windows phone ApplicationPolicy for in app payment

孤人 提交于 2019-12-06 07:38:58
I was wonder if it's possible to use PayPal mobile checkout directly in my wp7 app, as in-app payment gateway. My concern it’s Microsoft marketplace application policy 2.1: “Your application must be fully functional when acquired from Windows Phone Marketplace (except for additional data as permitted below). Unless you have a pre-existing billing relationship with the user, your application may not require the user to provide payment information,within the application experience, to activate, unlock, or extend usage of the application. “ Does this means I’m not allowed to use PayPal to make in

How can I convince IT that F/OSS software isn't evil? [closed]

倖福魔咒の 提交于 2019-12-05 23:33:35
问题 Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it's on-topic for Stack Overflow. Closed 7 years ago . When trying to link some well established tools to my company's active directory, I hit a roadblock. I was told that: "Sorry, I cannot trust our domain admin password to [F/OSS] software...". This question deals specifically with how to convince IT that F/OSS software isn't (automatically) less trustworthy than

How to read LDAP password policy in Java

寵の児 提交于 2019-12-05 11:53:49
Can i read user password policy from LDAP, like when it expires or more details like password strength (minimal length etc.) ? I need these information so I can use the same policy for users kept in my database. My java application require that users from the database have to be synchronized with domain. If you want to get the password policy through LDAP queries try this without PSO policy in your current domain String searchDomain= "DC=company,DC=ORG"; String ldapQuery = "(&(objectClass=domainDNS))"; String ldapAttribute = "maxPwdAge"; If you use a PSO policy try this code String

Amazon AWS S3 IAM Policy based on namespace or tag

旧巷老猫 提交于 2019-12-05 10:16:13
I have a number of buckets that start with the same namespace as in assets-<something> , so I was wondering what would be the best option to give rights to IAM group with minimal need to maintain it. Is it possible to use any sort of regex in ARN? Or maybe I could use tags? EC2 has condition for ResourceTag , but it appears that it does not exist for S3. Or should I with each bucket add new ARN to the policy? Again I am searching for the minimal solution so attaching new policy to each bucket itself seems to be a bit much. An IAM policy can grant access to Amazon S3 buckets based on a wildcard
订阅 policy