CF10 - Random Access Denied errors (java.io.FilePermission)

Report · Jan 22, 2013

I've been having an error that is randomly plaguing me. For some reason, I get the following error message:

The web site you are accessing has experienced an unexpected error.

Please contact the website administrator.

The following information is meant for the website developer for debugging purpose!

Error Occurred While Processing Request j

Security: The requested template has been denied

access to C:/ColdFusion10/cfusionl/wwwroot/CFIDE.

The following is the internal exception message: access denied (java.io.FilePermission c:/coldfusion10/cfusionl/wwwroot/CFIDE read)

Resources:

. Enable Robust Exception Information to provide greater detail about the source

of errors, In the Administrator, click Debugging & Logging > Debug Output

Settings, and select the Robust Exception Information option.

. check the coldFusion documentation to verify that you are using the correct

syntax.

. search the Knowledge Base to find a solution to your problem.

Screenshot:

Whenever I get this error, if I just refresh, it will return the page as expected. It only seems to happen if the site has been idle for some time. If I refresh it 100 times in a row afterwards, it loads every time without a problem.

Here is the code from the file:

SELECT table_name

FROM user_tables

</cfquery>

This is on Windows Server 2008 R2, ColdFusion 10 Update 7. The application is inside a Security Sandbox. I originally thought that I might need to add that path to the security sandbox of the application for it to work but it doesn't make any sense why a refresh of the page would then magically make it work.

The CFIDE directory in IIS is actually just a virtual directory pointing to portions of the /CFIDE directory such as /CFIDE/scripts and /CFIDE/classes.

Any ideas?

Report · Jan 31, 2013

Is that VD pointing to the same CFIDE that you show the error message referring to in the screenshot (that within the instance1 CFIDE)? If not, it may be that the one you’re pointing to (if elsewhere) may not be the CF10 version of the cfide files.

/charlie

/Charlie (troubleshooter, carehart. org)

Report · Feb 01, 2013

I finally did the logical thing and just added the path it was complaining about to the sandbox and it hasn't come back. It is as if it is trying to access a file in the /CFIDE directory just one time and then after that, it stops trying to access it. I haven't turned up logging to see what exactly it is trying to hit but whatever...

The /CFIDE vdir is pointing to a directory that only has an index.html file. I created two additional vdirs underneath /CFIDE.

/CFIDE/classes and /CFIDE/scripts, pointing to C:\ColdFusion10\cfusion1\wwwroot\CFIDE\classes and C:\ColdFusion10\cfusion1\wwwroot\CFIDE\scripts, respectively.

One thing that I have not considered is that the vdir for /CFIDE does not have NTFS permissions applied to those of the ColdFusion runtime user that I have assigned to the processes but if it was that, I would believe that the error would still come up even if I have added the read/execute permissions to the security sandbox.

I am not horribly worried about it at this point but I just thought it was very strange that it only seemed to be requesting that file randomly from the /CFIDE directory and not every time.

CF10 - Random Access Denied errors (java.io.FilePermission)

Photos