Error in CF Admin mail test

Report · May 21, 2014

Hello all-

I've got a new install of CF 11 on Windows Server 2012 R2. For the first week or so everything was fine, but after a while my email stopped going out. I looked at the pages generating email, and there was a CF error.

So I went to the admin to verify the connection- Boom- error in the admin! Every time I attempt to verify my email settings, I get an error.

I do not believe there were any changes made to the server between the time email was working, and when it died. Potentially a Windows Update, but that is about it.

Any ideas on this one?

Thanks - Karl

Report · May 22, 2014

Hi Karl,

Perhaps the neo-mail.xml file in \cfusion\lib has been corrupted. Don't suppose you have a spare neo-mail.xml file or spare CF install you can get another file from? Take care to make a copy of first since I could be wrong. You may need to restart CF to re-read the replaced neo-mail.xml file if you elect to take that solution.

Any errors in CF logs application log that relate to this?

HTH, Carl.

Report · May 27, 2014

Ha! Oddly I have two other exact duplicates of this server. I'll grab a copy from elsewhere. Thanks for letting me know about this possibility.

Report · May 27, 2014

Karl,

There is apparently a problem with cryptography. Have you introduced new settings for SSL or certificates? It might help to include the following flag in the JVM settings in the ColdFusion Administrator:

-Dcoldfusion.disablejsafe=true

As they say, every cloud has a silver lining. The error leads to the discovery that the following URL can be accessed through the web: fpsadapt.ucdavis.edu/CFIDE/administrator/mail/index.cfm.

You should restrict access to the CFIDE directory. Otherwise, your site will be vulnerable to attack.

Report · May 27, 2014

BK-

Thanks for letting me know about this.

I've blocked the CF Admin by IP address (from within the CF Admin). Is that strong enough for security?

Report · May 27, 2014

Karl Krist wrote:

I've blocked the CF Admin by IP address (from within the CF Admin). Is that strong enough for security?

Restricting access by IP is good. You should, however, extend the restriction to the CFIDE folder, rather than just to the ColdFusion Administrator.

One common way to do this is through the web server. You would then restrict access, by IP, to:

/CFIDE/administrator/

/CFIDE/adminapi/

/CFIDE/componentutils/

Report · May 31, 2014

Karl, is your problem still happening?

If so, are you sure that your web site (is it IIS) is set so that the CFIDE it points to is the one inside CF11? We see from the screenshot you shared that inside the stack trace it points to the page as running in some /CFIDE folder (as if it’s the root of a file system—and it’s odd, because there’s no drive reference, which would be there normally on Windows.)

Normally, it should point to the coldfusion11\cfusion\wwwroot\CFIDE folder, which is where CF11 puts that folder by default. If your web site is pointing at some other folder for that, it could simply be that your Admin was using a different version of code for that mail settings page than CF11 is expecting you to use.

Let us know if that helps.

/charlie

/Charlie (troubleshooter, carehart. org)

Report · Jun 02, 2014

Charlie-

I pulled the neo-mail file from a different server...but unfortunately our servers are already syncing between each other, and the other two servers have the same potentially bad file.

We will re-install CF into the default folder on C:, then we'll try this again.

Thanks for your help and suggestions.

Karl