To disable the “loading animation” which has been introduced with IntraWeb 9.0, and which shows up when the user clicked a button and is waiting for the page to re-load you usually just need to set an option in your application’s ServerController. Read the rest of this entry »
Even though we don’t really recommend using IntraWeb’s desktop standalone mode in production, there seem to be quite some IntraWeb customers who do that successfully. Unfortunately there is an integrated Log routine which may cause an Integer overflow if your application had more than 2GB traffic. This article shows how to override that routine. Read the rest of this entry »
In BCB 2007 the IntraWeb application wizard fails to create one file. This article provides an ISAPI application template project which you can use to start off your C++ Builder IntraWeb applications. Read the rest of this entry »
If you are using SSL with your IntraWeb Standalone applications, then you might consider allowing SSL version 3 only, as there are exploits for version 2 and below. This article describes how to limit your server to SSL version 3. Read the rest of this entry »
Last week a possible DOS attack of IntraWeb applications was reported. The first hotfix we released immediately after the report was made public may cause unwanted side effects. Please use the updated hotfix as shown in this article. Read the rest of this entry »
Yesterday IntraWeb was mentioned on Bugtraq, the security mailing list which informs about possible issues of any type of computer software. The mentioned IntraWeb issue currently has been isolated and a fix is provided. Read the rest of this entry »
The possible DOS attack which was reported a few hours ago was verified and is fixed in IntraWeb 9.0 (soon to be released). For existing applications please apply the code as mentioned in this article. Read the rest of this entry »
I’ve been asked a couple of times recently if it is possible to remove that “Server: Indy/10.0.52″ string, which is sent with every response in StandAlone mode.
You can set this string to any value you want. Read the rest of this entry »
A customer of our’s recently got a security audit of his IntraWeb application. The only relevant thing they found was that IntraWeb’s HTTPS mode allows SSL 1.0/2.0 connections. For SSL 1.0/2.0 there are exploits, which may affect the security of the systems using that. Read the rest of this entry »
To disable the “loading animation” which has been introduced with IntraWeb 9.0, and which shows up when the user clicked a button and is waiting for the page to re-load you usually just need to set an option in your application’s ServerController. Read the rest of this entry »
Entries (RSS)