sharepoint server – Designer 2010 workflow failed on start with error RunWorkflow: System.UnauthorizedAccessException

We migrated our SharePoint Site from SP 2010 to SP 2013. We have a designer workflow on a custom list and the workflow has couple of approval task forms. The issue we are facing is, workflow ‘Failed on start’ only for the first item added on day. Workflows works fine and assigns task forms as expected from the second item. I checked the ULS logs and I see these messages-

RunWorkflow: System.UnauthorizedAccessException: Access to the path
‘C:UsersaccountnameAppDataLocalTempc1e6ac0b-c897-4e0c-bb6d-a6bae5c4f572Xoml.c198ca3c_a20b_4eef_b7f0_de437f582651.16.3072.18.3072.dll’
is denied
The name of the dll changes with every day.

Workflow history show –

Workflow Cancelled === System Account ===Workflow XXX was canceled by System
Account.

Error === System Account === XXX failed to
start.

docker container start stop events

Is there a docker log of container start and stop events?
(I am not interested in docker logs command, as that will give me the containers stdout log.)

There is of course the “status” field of the docker ps or docker inspect commands. but they will only give me the latest status of the container. I am searching for a more extended record of start stop events of the containers.

sql server – How to collapse rows with individual, contiguous dates into single rows with date range start and end

Given a data set like this:

Id Date Value
1 01/01/2021 100
1 01/02/2021 100
1 01/03/2021 100

…Rows excluded for brevity…

Id Date Value
1 12/29/2021 100
1 12/30/2021 100
1 12/31/2021 100
2 01/01/2021 100
2 01/02/2021 100
2 01/03/2021 100
2 06/01/2021 100
2 06/02/2021 100
2 06/03/2021 100

Is it possible to write a query to return a result set where each row is a contiguous date range, grouped by the id column? Like this:

Id Start Date End Date Sum of Value
1 01/01/2021 12/31/2021 36500
2 01/01/2021 01/03/2021 300
2 06/01/2021 06/03/2021 300

I’m imagining it will be some combination of window functions and group bys, but I’m not even sure it’s possible and didn’t want to fumble towards a solution that didn’t exist.

I’m using SQL Server 2017 and 2019, if that matters.

EDIT – I should have included that the date ranges can be long – months or years. For example, one of the collapsed rows could be a year long, coming from 365 individual rows. I just didn’t want to paste an example data set that was a thousand lines long.

drivers – start /wait doesn’t wait. How to workaround without using pause in script (Script is meant to be unattended)

I have a script that is run after windows is installed and performs a vast number of tasks, including installation of drivers and various programs. The intent is that the script is run unattended.

I am adding code to install printer drivers, in this case the Canon TS8300 series.

I think the problem is that that the installer runs in several parts. The first step is to extract the drivers and various utilities that come with the installer. I notice that once the extraction has completed the script continues.

If I understand the /wait parameter on the start command (and please correct me if I’m wrong), this is expected behavior. That certainly seems to be the consensus from the searches I’ve done.

The command is;

start /wait "TS8300 Installation" /d "%SRC%PostInstallCanon" "win-ts8300-1_02-ea34_2.exe"

I’ve also tried with start /b /wait (apparently /wait /b is also known to not work).

As the next step in the code is to stop and delete a service that is installed, that fails because it’s executing before the service has been installed as the script does not wait. So I’ve temporarily added a pause but that means I have to be there to press the any key.

I thought about simply using ping x.x.x.x -n yy >nul and it might work if I get the value of yy right (which will probably vary depending on the PC). It’s better than using pause, but I was hoping there might be something a bit more elegant and fool proof.

Thoughts?

varnish – Hitch installation completed with insserv errors. Unable to start hitch

I am trying to install hitch to terminate the certificates for the Varnish reverse proxy on my Ubuntu 16.04 VPS. The installation completes with the following messages and Hitch service doesnt startup.

sridhar@SastraTechnologies:~$ sudo apt install hitch
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following package was automatically installed and is no longer required:
  libuv1
Use 'sudo apt autoremove' to remove it.
The following NEW packages will be installed:
  hitch
0 upgraded, 1 newly installed, 0 to remove and 100 not upgraded.
Need to get 0 B/51.1 kB of archives.
After this operation, 163 kB of additional disk space will be used.
Selecting previously unselected package hitch.
(Reading database ... 249839 files and directories currently installed.)
Preparing to unpack .../hitch_1.1.1-1_amd64.deb ...
Unpacking hitch (1.1.1-1) ...
Processing triggers for systemd (229-4ubuntu21.27) ...
Processing triggers for ureadahead (0.100.0-19.1) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up hitch (1.1.1-1) ...
insserv: Script nagios is broken: incomplete LSB comment.
insserv: missing `Default-Start:'  entry: please add even if empty.
insserv: missing `Default-Stop:'   entry: please add even if empty.
insserv: Default-Start undefined, assuming empty start runlevel(s) for script `nagios'
insserv: Default-Stop  undefined, assuming empty stop  runlevel(s) for script `nagios'

Tried removing the packahe updating the repository and installing it again but the results are the same. Is there anything that I can do to resolve the insserv messages?

penetration test – How to start pentesting/reverse engineering/cracking a software on Linux? (Docker based)

TL:DR; What are good learning resources for security testing a software which runs with Docker on Ubuntu.

I am in junior position at this company, and they figured it would be good if I just test their software from security perspective. I already learned a bit about hacking, but it was mainly webservers, CTFs, Tryhackme, HTB, so nothing connected to RE or cracking. I don’t know how to start, I mean, I found a lot of knowledge about RE on Windows, or CIS Docker Benchmark, but I didn’t find any articles, specifically about reverse engineering/cracking on Docker on Linux.

The product is running on Ubuntu 18.04 server, on Docker, installed from a .deb package (Don’t know if this helps 🙂 )
What I looking for is some guidance on how to learn about cracking a software which is installed with Docker on Linux. Or what is the most easier or usually more valuable attack vector to look at, I mean, maybe try to crack the licensing, or try to use buffer overflow, how the “average attacker” thinks… Please tell me if I am missing some basics, and it is never mind that I crack/pentest on windows or docker or linux, then I will just start some book or complete course.
I understand that it is a broader topic than just following a step by step tutorial, but I have plenty of time for it to learn, so videos, books, articles everything which teaches purposefully Docker/Linux software test would be awesome.

Also, what do you think, which of the following could help to aim in the right direction?

Found some books:
https://kalitut.com/Best-reverse-engineering-books/

This can be related, and it was already helpful:
Is it possible to escalate privileges and escaping from a Docker container?

Also I found Liveoverflow videos, some related to docker, should I start the whole series?
https://www.youtube.com/watch?v=cPGZMt4cJ0I&list=PLhixgUqwRTjxglIswKp9mpkfPNfHkzyeN&index=55&ab_channel=LiveOverflow

Thank you very much in advance.

Default Installation of microk8s Fails to Start in Offline Environment

What I did…

  1. On a separate machine that has Internet access, download the snap files for microk8s as per [https://microk8s.io/docs/install-alternatives#heading–offline].
  2. Copy the files downloaded to an Ubuntu 20.04.1 LTS VM with no Internet access.
  3. Install the snap files as per [https://microk8s.io/docs/install-alternatives#heading–offline].
  4. Attempt to start microk8s using the microk8s start command.
  5. Use the microk8s status command to confirm that microk8s is still not running.
  6. Use the microk8s inspect command to do a deeper examination and analysis of the issue.
  7. Confirmed that the output in screen did not highlight any issues.
  8. Started exploring the contents of the collected log files.
  9. Found the following in the cluster-info-dump file:
Failed to create pod sandbox: rpc error: code = Unknown desc = failed to get sandbox image "k8s.gcr.io/pause:3.1": failed to pull image "k8s.gcr.io/pause:3.1": failed to pull and unpack image "k8s.gcr.io/pause:3.1": failed to copy: httpReaderSeeker: failed open: failed to do request: Get "https://storage.googleapis.com/us.artifacts.k8s-artifacts-prod.appspot.com/containers/images/sha256:67ddbfb20a22d7c0ea0df568069e7ffc42378467402d04f28ecfa244e78c5eb8": read tcp 10.0.240.47:52574-u003e74.125.195.128:443: read: connection reset by peer

I just used the default settings and did not try to enable any additional add-ons. I also did not try to set up any cluster. I was just trying to set up just enough to have a ‘hello world’ kind of container run in Kubernetes.

I was expecting that the default settings would allow me to at least start microk8s. My requirements are to find a way of running Kubernetes and containers offline, including the installation since our customers have very strict security requirements.

By the way, the version of microk8s I used is v1.20.0, Revision 1864.

My Questions:

  • What can I do to bypass that error? The VM will not be allowed to access the Internet to grab this image.
  • What uses this images? Is there an add-on I should disable?

Entering the UK as a visitor (then leaving) before the start date of a Tier 4 visa

I’ve seen some similar posts regarding entering the UK as a visitor then re-entering, but I haven’t seen any ones from recent and thought I’d ask since I’m in a situation like it now. I am a US citizen and have been approved for my Tier 4 Student Visa, it’s currently in my passport. The start date is August 17th, however I am planning on coming to the UK on August 5th as a TOURIST to drop my luggage into my new home, say hi to some family who are touring, and see my partner before he leaves for work. I have tickets to visit to Berlin a week after my arrival on the 5th, returning on the 17th to start my student visa. I plan to show these tickets to the Immigration officer and use this explanation.

Is it still the case that this is technically OK but just a bit of chance on the part of the IO? What are the chances that I would denied entry? Should I cancel all these plans? Thanks.