Security issues for scripters

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ VBscripts
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - Apostrophe problem when retrieving folder security details Hello, I am currently trying to write a script to scan through all folders and subfolders on a drive and return me their trustee information (who has permission to view folder). I have written a script which seems to work until it comes accross a folder name with an apostrophe in such as "C:\O'Brien" This returns me an invalid path error as the apostrophe is a reserved character and it stops reading after the apostrophe. I have looked online for solutions and the only solution I have come accross is to put a backslash before the apostrophe such as "C:\O\'Brien. I have tried this but the same error occurs. If I enter a On Error Resume Next code at the top of my script it will run through and appear to work but the information it returns for the apostrophe folders is incorrect - simply gives the previous folders information again. Can anyone help me? The script I am using is the following: strComputer = "." Set objWMIService = GetObject("winmgmts:" _ & "{impersonationLevel=impersonate}!\\" & strComputer & "\root\cimv2") Set colFolders = objWMIService.ExecQuery("Select * from Win32_Directory WHERE Drive = 'G:' ") For Each objFolder in colFolders strFolder = objFolder.Name Wscript.Echo objFolder.Name path = objFolder.Name Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\cimv2") Set objFile = objWMIService.Get("Win32_LogicalFileSecuritySetting='"& path & "'") If objFile.GetSecurityDescriptor(objSD) = 0 Then Wscript.Echo "Owner: " & objSD.Owner.Name Wscript.Echo For Each objAce in objSD.DACL Wscript.Echo "Trustee: " & objAce.Trustee.Domain & "\" & objAce.Trustee.Name Next End If Next Thanks for any help provided. Tag: Security issues for scripters Tag: 198979
  - 2
    - Gmail and "For :" input behavior How Gmail implements its "For :" input? I mean, when you start writing one of your contact's names, a filter shows you the contacts that matches with your input, in a sort of "intellisense" behavior. I was looking for resources about that but was unable to find them. Thanks in advance Tag: Security issues for scripters Tag: 198975
  - 3
    - Add user to the local admin group during logon process Hi all, I need your help folks. I have joined new company and my predecessor added domain users to the local admin group (through the GPO) on every single desktop in the domain. This has been discovered recently and I have to find a solution ASAP. I was told that the reason this has been like that is that one of the applications requires local admin privileges to run properly. I need to add individual domain user to the local admin group on each workstation, ideally during logon process through netlogon. Is this possible at all, to add domain user into the local admin group during the netlogon process. I can't have a group of users added to the local admin as they don't want to have somebody else being local admin on their desktop. I am not sure how to script this and would realy appreciate your help. If I can do this with the script through the netlogon I will be later on remoing the domain user group from the local admin group on each desktop again through the GPO by unchecking that feature. Please, please help. Pluto Tag: Security issues for scripters Tag: 198973
  - 4
    - Add user to the u help folks.local admin group during logon proces Hi all, I need yo Tag: Security issues for scripters Tag: 198972
  - 5
    - Bold characters in a message box Hi there This is a newbie question. How can i put some characters in bold in a message box? I tried with \b but couldn't succeed. And how to insert a CRLF in a message box? Thanks for your help Phil Tag: Security issues for scripters Tag: 198963
  - 6
    - if objFile.Size < 1K then (syntax correction needed) Dim objFSO, objFile, objFolder Set objFSO = CreateObject("Scripting.FileSystemObject") 'enumerate through the files in the folder 'we've been given, for each file, delete it. For Each objFile In objFSO.GetFolder(strPath).Files if objFile.Size < 1K then objFile.Delete end if Next Can someone tell me how to change the "If objFile.Size < 1K Then" to a valid syntax. (I don't write scripts and this would work fine given a correct If clause). Thanks, Dean S Tag: Security issues for scripters Tag: 198960
  - 7
    - xml/xslt I wrote a vbscript that uses xml/xslt transformation and it working except for one thing I would like to change. The script goes through many xml files and transforms the data to file named Data.xml. The item I would like to figure out how to do is everytime a xml file is passed to the function it always overwites the previous data. For example, if I passed 100 xml files the data in the data.xml file would be only data from the 100th file. I am unable to figure out how to append the data into one big file. Code from function below.................. set fso = CreateObject("Scripting.FileSystemObject") set wshell = CreateObject("Wscript.Shell") set storefolder = fso.GetFolder(path) set subfolders = storefolder.subfolders set xDom = CreateObject("MSXML2.DOMDocument") xDom.async = false set xslt= CreateObject("MSXML2.DOMDocument") xslt.async = false set newDom = CreateObject("MSXML2.DOMDocument") newDom.async = false for each subf in subfolders wscript.echo subf.name bDone = false for each f in subf.Files if UCase(right(f.name,7)) = "WMI.XML" then xDom.Load f.Path '----------------------------------name of the file we need to get data from. xslt.Load "c:\Projects\PSMT\wmiload.xslt" '---------------------template for what data to get from the xml file. transformedStr = xDom.transformNode(xslt) newDom.loadXML transformedStr newDom.save "c:\temp\data.xml" '--------------save transformed data to data.xml. End If next next Tag: Security issues for scripters Tag: 198959
  - 8
    - is this script possible I do some work for a non for profit group. they have windows 2003 sbs with exchange. what i want to do is limit what the users can do on the local machines...such as...install apps, save any data to the local machines, not be able to play games, have access to only certain items on the server, and also have access to their email on whatever machine they sit at. and also make it so that their setting are on a computer when they log into it. meaning if they log into a computer thats not at their desk they get their settings.and also have access to internet and need admin aproval to install a plugin they might need on a webiste. users machines are windows xp pro. I remember when i was in school and the desktops were windows 200 pro computers thats how they were setup. im just trying to limit what the users can do. please let me know if this is even possible and how i can go about making this happen. thanks Steve Tag: Security issues for scripters Tag: 198958
  - 9
    - How to verify a local account exists. I need to be able to check for the existence of a specific local user account on our workstations. If the account does not exist, I want to run the rest of my script that will add this account, set its password, and add the account to the local administrators group. I already have the script put together to add the account, etc. I just need to know the best way to check for the existence of this account, first. If it exists, I want to skip the rest of the script and close out. Thanks. Tag: Security issues for scripters Tag: 198955
  - 10
    - СryptEnumProviders in VBScript Hello! I need to get in VBScript-program list of the Crypto-Providers (CSP) installed in the System. There is function called СryptEnumProviders in CryptoApi and the example of its usage here: [url]http://msdn.microsoft.com/library/default.asp?url=/library/en-us/seccrypto/security/cryptenumproviders.asp[/url] and here [url]http://www.rsdn.ru/article/crypto/usingcryptoapi.xml[/url] (bellow) DWORD dwIndex=0; DWORD dwType; DWORD cbName; LPTSTR pszName; while (CryptEnumProviders(dwIndex, NULL, 0, &dwType, NULL, &cbName)) { if (!cbName) break; if (!(pszName = (LPTSTR)LocalAlloc(LMEM_ZEROINIT, cbName))) return; if (!CryptEnumProviders(dwIndex++, NULL, 0, &dwType, pszName, &cbName)) { Error("CryptEnumProviders"); return; } std::cout<<"--------------------------------"<<std::endl; std::cout<<"Provider name: "<<pszName<<std::endl; std::cout<<"Provider type: "<<dwType<<std::endl; LocalFree(pszName); } Please, help me to make such code in VBScript. I'm trying to do it, by using CAPICOM, but I couldn't find any object in it, wich could help me. Thanks! -- Andremon ------------------------------------------------------------------------ Posted via http://www.codecomments.com ------------------------------------------------------------------------ Tag: Security issues for scripters Tag: 198953
  - 11
    - Converting array definition to c# from vbscript The array is defined in vbscript like this: doc.Selection.Select Array( Array( 50, 60 ), Array( 150, 60 ), Array( 150, 120 ), Array( 50, 120 ) ),...,...,... Defining in C# double[] [] varName fails as it requires a single dimension array double[,] varName also fails The program doc refers to is Photoshop CS2. Tag: Security issues for scripters Tag: 198949
  - 12
    - When does a UUID change? Much like this guy: http://groups.google.com/group/microsoft.public.win32.programmer.wmi/browse_thread/thread/5cf95d9e1671bb74/da5d819e18b1b531?lnk=st&q=UUID+Win32_ComputerSystemProduct&rnum=1&hl=en#da5d819e18b1b531 I'm interested in learning when the UUID that is retrieved from Win32_ComputerSystemProduct.UUID will change. I want to be able to query WMI for something that is unique and will not change. Please help. Thanks, Matt Tag: Security issues for scripters Tag: 198930
  - 13
    - Attribute doesn't Exist??? Help. I get (null): The specified directory service attribute or value does not exist. for line (27,4) in the script below. Any suggestions? Line 27 is the one containing objTermProfile.SetInfo. Option Explicit 'Demands that variables are "dimmed". 'On Error Resume Next 'Continue despite errors. (Disable Until Script is working.) 'Define Variables Dim objExcel 'Creates Excel Instance Dim objWorkbook 'Opens designated Excel Workbook Dim intRow 'Contains the row number of the Excel worksheet. Dim usrVar 'Contains the new user's full user name. Dim objOU, strOU, strUser 'Binds to the Organizational Unit Object. Dim objTermProfile 'Connect to the object. Set objExcel = CreateObject("Excel.Application") 'Set the correct file location for the excel data file. '>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>Set the class list address below!!!! Set objWorkbook = objExcel.Workbooks.Open("L:\TRANSFER\Class Lists 2006\10list.xls") 'Open the class list file. intRow = 2 'Variable for loop. Begins on 2 to bypass header row. Do Until objExcel.Cells(intRow,1).Value = "" 'Initiate loop. 'Set the Terminal Services Profile Path for the account. strUser=objExcel.Cells(intRow,1).value Set objTermProfile=GetObject("LDAP://mcistudsvr01/cn=" & strUser & ",ou=Senior Two,dc=mcistudent,dc=local") objTermProfile.Put "TerminalServicesProfilePath","\\mcistudsvr01\Profiles\Terminal" objTermProfile.SetInfo WScript.Echo "The new TprofilePath has been added to " & objExcel.Cells(intRow,4).Value & "'s account." intRow = intRow + 1 'Advance to the next row. Loop 'Repeat the loop. WScript.Echo "CHANGES TO THE " & StrOU & " ORGANIZATIONAL UNIT ARE COMPLETE." objWorkbook.Save 'Save the Excel file. objExcel.Quit 'Close the Excel thread and End Script Tag: Security issues for scripters Tag: 198928
  - 14
    - Querying IIS web site properties I'm using vbscript to query IIS via ADSI to find out whether settings such as "Enable anonymous access", "Integrated Windows authentication" and/or "Basic authentication" are enabled for each site. Eventhough I map an object to the specific ADSPath for the site, the results do not match what is being indicated by the IIS Manager MMC. The following is an abridged version of the code in use: Sub ScanMetabaseTree(sADSPath) 'On Error Resume Next Set objIIS = GetObject(sADSPath) For Each oBject in objIIS If (oBject.Class = "IIsWebServer") AND (IsNumeric(oBject.Name)) Then WScript.Echo oBject.ServerComment WScript.Echo oBject.Name WScript.Echo oBject.ADSPath WScript.Echo oBject.AccessFlags WScript.Echo oBject.AccessRead WScript.Echo oBject.AccessWrite WScript.Echo oBject.AccessScript WScript.Echo oBject.AccessSource WScript.Echo oBject.AuthAnonymous WScript.Echo oBject.AnonymousUserName WScript.Echo oBject.AnonymousUserPass WScript.Echo oBject.AuthBasic WScript.Echo oBject.AuthNTLM WScript.Echo oBject.AuthFlags WScript.Echo oBject.DirBrowseFlags End If ScanMetabaseTree(oBject.ADSPath) Next End Sub Any idea what I'm doing wrong? Is there any other way to check each site for these properties? Thanks in advance Tag: Security issues for scripters Tag: 198926
  - 15
    - Strange behavior re: class property I doubt anyone's run into this before but I thought I'd throw it out there anyway. I have a class with a property that returns a date value. The issue is that retrieving the property value converts it into an integer for some reason. Suppose I have a bit of code as below: Dim objBid Set objBid = New Bid objBid.Test Class Bid Private m_ExpirationDate Private Sub Class_Initialize() m_ExpirationDate = #11/1/2006# End Sub Public Property Get ExpirationDate() ExpirationDate = m_ExpirationDate End Property Public Sub Test() MsgBox "ExpirationDate = " & ExpirationDate & ", VarType = " & VarType(ExpirationDate) MsgBox "m_ExpirationDate = " & m_ExpirationDate & ", VarType = " & VarType(m_ExpirationDate) End Sub End Class So in my real code, the test method would report, "ExpirationDate = 1, VarType = 2" for the first message box. The second would correctly report the date value. Accessing the property from outside the class would report correctly as well. The actual code is retrieving and assigning m_ExpirationDate from an ADO recordset. I have a feeling this is some kind of strange variant conversion issue but I could not reproduce it outside of the actual environment. (i.e. above code) There are obvisouly so many workarounds and so I'm just curious as to what is going on. Jiho Han Senior Software Engineer Infinity Info Systems The Sales Technology Experts Tel: 212.563.4400 x216 Fax: 212.760.0540 jhan@infinityinfo.com www.infinityinfo.com Tag: Security issues for scripters Tag: 198910
  - 16
    - creating xml document I'm trying to create an xml document with values from a database, but have the following problem. Many of the items in the database contain characters from the extended charcter set (I think that is the correct phrase!) and when i try to create my xml it throws an error unless i have the server.urlencode statement dim DelegateList,dqt,dtd,DelegateListElement dqt = chr(34) Set DelegateList = Server.Createobject("MSXML.DOMDocument") Set dtd = DelegateList.createProcessingInstruction("xml", "version=" & dqt & "1.0" & dqt ) DelegateList.appendChild dtd Set DelegateListElement = DelegateList.createElement("delegate_details") DelegateList.appendChild DelegateListElement 'some database stuff Do Until adoRS.EOF vCOUNT=vCOUNT+1 set recElement = DelegateList.createElement("delegate") for i = 0 to adoRS.Fields.Count - 1 recElement.setAttribute adoRS(i).name, server.urlencode(adoRS(i).value) DelegateList.lastChild.appendChild recElement next adoRS.MoveNext Loop If I don't have server.urlencode then it immediately doesn't work, but when I do have server.urlencode it seems to translate some of the characters incorrectly. For example "Ö" becomes %D6 but it should become %C3%96 Could anyone please steer me in the correct direction. Many thanks Dave Tag: Security issues for scripters Tag: 198906
  - 17
    - Script to map a JetDirect Printer Hi!!! I'm trying to create a script to map via GPO (Windows 2003) a Net Printer (HP 1320n) that has an internal JetDirect configured but i don't know it.... Can somebody help me? The IP addres of HP 1320 is: 192.168.101.30 The Host printer name is: Hp1320Rh Thans a lot! PD: Sorry with my english... i'm from Spain Tag: Security issues for scripters Tag: 198901
  - 18
    - naive question on shortcut I see documentation of creating shortcuts. but what if want relocate lets say x:\dira\dirb to x:\dirb and change all the corresponding shortcuts in a folder and subfolders of the windows taskbar myTB, what will be the best way of going about it? the complication comes in that shortcuts may point to files in subfolders of dirb Tag: Security issues for scripters Tag: 198897
  - 19
    - Runtime Error...Object Required Need Some Fresh Eyes Please help me troubleshoot...my eyes are weary. I'm getting the following error when I run the script that I've included below: Microsoft VBScript runtime error: Object required: '[string: "\\mcistudentsvr01\MCISt"]' Option Explicit 'Demands that variables are "dimmed". 'On Error Resume Next 'Continue despite errors. (Disable Until Script is working.) Dim objUser Dim objOU Dim objTermProfile Dim TProfilePath Dim arrMembersOf Set TProfilePath = "\\studsvr01\MCIStudentProfiles\Terminal" Set objOU = GetObject _ ("LDAP://ou=Senior One,ou=Students,ou=Network Users,dc=student,dc=local") objOU.getInfo arrMembersOf = objOU.GetEx("sAMAccountName") For Each objUser in arrMemberOf 'Set the Terminal Services Profile Path for the account. Set objTermProfile = _ GetObject("LDAP://cn=" & objUser & ",ou=Senior One,ou= Students,ou=Network Users,dc=student,dc=local") objTermProfile.TerminalServicesProfilePath = TProfilePath objTermProfile.SetInfo 'Print Confirmation WScript.Echo objUser & " has been given the new Terminal Services Profile Path." Next WScript.Echo "Changes are complete." Tag: Security issues for scripters Tag: 198895
  - 20
    - 10+15.505 not equal to 25.505 Why? -- iTech Consulting Co., Ltd. Website: http://www.itech.com.hk (IE only) Tel: (852) 2325 3883 Fax: (852)2325 8288 Tag: Security issues for scripters Tag: 198889
  - 21
    - VBScript compilation error for console app Hello, I am trying to do a simple console app to delete older files; it does not work and the debugger does not see the mistake. Any help would be greatly appreciated. Sub Main() On Error Resume Next Dim oFSO Dim sDirectoryPath Dim oFolder Dim oFileCollection Dim oFile Dim iDaysOld Dim todaysdate todaysdate = Now() iDaysOld = 1 oFSO = CreateObject("Scripting.FileSystemObject") sDirectoryPath = ("\\vs1\c:\temp") oFolder = oFSO.GetFolder(sDirectoryPath) oFileCollection = oFolder.Files For Each oFile In oFileCollection If oFile.DateLastModified < (todaysdate) - (iDaysOld) Then oFile.Delete(True) End If Next 'Clean up oFSO = Nothing oFolder = Nothing oFileCollection = Nothing oFile = Nothing End Sub Tag: Security issues for scripters Tag: 198886
  - 22
    - Help listing all groups and users Hi I have a script that list all users and nested groups for the admin group. How can I have it list all groups and nestsed groups and users? I am a newb and really appreciate the help. Here is the script Option Explicit Dim objGroup, strComputer strComputer = "." Set objGroup = GetObject("WinNT://" & strComputer & "/Administrators,group") Wscript.Echo "Members of local Administrators group on computer " & strComputer Call EnumGroup(objGroup, "") Sub EnumGroup(objGroup, strOffset) Dim objMember For Each objMember In objGroup.Members Wscript.Echo strOffset & objMember.Name & " (" & objMember.Class & ")" If (objMember.Class = "Group") Then Call EnumGroup(objMember, strOffset & "--") End If Next End Sub -- LPDale ------------------------------------------------------------------------ Posted via http://www.codecomments.com ------------------------------------------------------------------------ Tag: Security issues for scripters Tag: 198884
  - 23
    - File search and replace? Maybe I'm at a block here, but I need to have a script replace multiple stings in a file, or better yet, delete those stings and format a text file. What I need is to display the path right after C:\ then delete everything but the User\Specific sting.... that said, a target seach would work from this, but I don't know how to run multiple queries.. http://www.microsoft.com/technet/scriptcenter/resources/qanda/feb05/hey0208.mspx C:\IO.SYS BUILTIN\Administrators:F BUILTIN\Administrators:F NT AUTHORITY\SYSTEM:F BUILTIN\Users:F User\Specific C:\Logon.log BUILTIN\Administrators:F NT AUTHORITY\SYSTEM:F BUILTIN\Users:F User\Specific Tag: Security issues for scripters Tag: 198883
  - 24
    - DHCP Scirpt for checking default gateway I'm having a very strange problem with our DHCP servers. We currently have two MS DHCP server that are serving client in various locations doing an 80/20 split using IP Helpers. Every time we reboot the servers, some of the scopes will lose there Default router attributes. No error logged, nothing that indicates a problem, just no gateway. So each time we have to go back and re-add the gateway back in. Does anyone have any good scripts that will allow me to check each scope to see if the default gateway attribute exists after the reboot? We have hundreds of scopes, and manually checking them is quite the task. Tag: Security issues for scripters Tag: 198880
  - 25
    - unable to open connections with MSWinsock.Winsock I have the following script: Set oSck = WScript.CreateObject("MSWinsock.Winsock") MsgBox(oSck.localIP) oSck.RemoteHost = "64.233.167.99" oSck.RemotePort = "80" oSck.Protocol = 0 oSck.connect myTimer = 0 Do While oSck.state <> 7 and myTimer < 10000 myTimer = myTimer + 1 Loop MsgBox(myTimer) Every time I run it, 10000 is output. This suggests that oSck.state is never 7 (ie. that it has never connected). Any ideas as to why? Tag: Security issues for scripters Tag: 198876
- Next
  - 1
    - do while loop yields "Error: Object required: '[number: 0]'" Say I have the following script: Set myTimer = 0 Do While myTimer < 10000 myTimer = myTimer + 1 Loop MsgBox(myTimer) When I try to run it, I get the following error: Windows Script Host Script: C:\vbscript\test.vbs Line: 1 Char: 1 Error: Object required: '[number: 0]' Code: 800A01A8 Source: Micrsoft VBScript runtime error The output I'd expect to get is a single alert box that says 1000. Any ideas as to what I'm doing wrong? Tag: Security issues for scripters Tag: 198874
  - 2
    - Hide Process via VB Good day, I have a process that needs to start for every client via citrix. I created a batch file: ************************* start "DO NOT CLOSE" /min waveengine.exe --debug "M:\Documents and Settings\All Users\Application Data" cd\ cd "M:\Program Files\Twisted Pair Solutions\WAVE\DispatchCommunicator\ WAVEDispatchCommunicator.exe *************************** When I run the above via citrix, it will open a dos box and then kick off the application. The problem is that the dos box doesn't go away "hince "do not close" title bar. i tried the following script: **************************** Const HIDDEN_WINDOW = 12 strComputer = "." Set objWMIService = GetObject("winmgmts:" _ & "{impersonationLevel=impersonate}!\\" & strComputer & "\root\cimv2") Set objStartup = objWMIService.Get("Win32_ProcessStartup") Set objConfig = objStartup.SpawnInstance_ objConfig.ShowWindow = HIDDEN_WINDOW Set objProcess = GetObject("winmgmts:root\cimv2:Win32_Process") errReturn = objProcess.Create("waveengine.exe",null,objconfig, intProcessID) ******************************* This looks like its going to work but fails. Reason I believe its failing is the waveengine.exe needs to look at --debug "M:\Documents and Settings\All Users\Application Data" -------see batch file above---- How do I add this line? Also when the application WAVEDispatchCommunicator.exe is closed would need waveengine.exe process to stop. I am so green at this Vb stuff. Thanks for your time. Tag: Security issues for scripters Tag: 198859
  - 3
    - An Encrypted VB script file so it's not editable how do you take a VB script and turn it into a VBE script? Tag: Security issues for scripters Tag: 198857
  - 4
    - Reading in a line from a CSV Hi, I need to read in a CSV file with 4 values per line. value1,value2,value3,value4 value1,value2,value3,value4 and so on.... I need to read that in to some arrays in VBScript. I want to something similar to this Set csvFile = objFileSystem.GetFile(csvFilePath) Set csvFileForRead = csvFile.OpenAsTextStream(ForReading) count = csvFileForRead.numberOfLines For i = 0 to count - 1 strLine = csvFileForRead.readLine value1Array(i) = substring(0,",") value2Array(i) = substring(first comma, next comma) and so on next I don't want the code to work only with a four value CSV file either... Can someone suggest a way to implement this? Thanks. Also, what I want to do is use the script to load a CSV file of events, dates, times, and notes into an Outlook calendar on an exchange server so any insight on that would be welcomed to. In a previous post, a poster suggested looking at VbaOUTL9.chm but I could not find a copy of this. Thanks. Tag: Security issues for scripters Tag: 198856
  - 5
    - Add the loged in user to the local admin group during logon proces I have windows 2003 AD domain native mode. I would like to add the loged in user to the local admin group during the logon process. In other words whoever logs to his/her workstation should automaticaly be added to the local admin on that workstation. I have something like this but it is not working for me(it errors in th line 7): Const ADS_SECURE_AUTHENTICATION = &H1 Set oNet = CreateObject("WScript.Network") strGroup = "WinNT://" & oNet.ComputerName & "/Administrators,Group" ' BEGIN CALLOUT A Set oProvider = GetObject("WinNT:") Set oGroup = oProvider.OpenDSObject(strGroup, _ oNet.ComputerName & "\Administrator", _ "Password", ADS_SECURE_AUTHENTICATION) ' END CALLOUT A oGroup.Add "WinNT://" & oNet.UserDomain & "/" & oNet.UserName I would like to drop the vb script in the netlogon share so everyone who logs in gets into the local admin group on that PC. Can somone help PLEASE. Pluto Tag: Security issues for scripters Tag: 198854
  - 6
    - How to convert strings between ASCII and Unicode? Hi I have saved all the web pages that display lists of book titles at a web site. I want to detect duplicates. I've written a VBScript to go through all of the web pages, extracting the titles in the lists. I use the file object's readall method to read the files, and the Split and other string functions to extract individual titles. I add the titles as keys in a dictionary and set the value for this item to the file name and the title's location in this file. If the key already exists, the current file and position are added to that key's value. On initial tests, this worked fine - I could easily get a list of duplicates. My problem is that while most of the web pages are plain ASCII, a significant number of them are Unicode. The string functions work fine with Unicode, but the dictionary .Exists method seems to mess up with a mixture of ASCII and Unicode, resulting in false indications that a title already exists. I know how to detect the Unicode files - the first two bytes are Hex FF FE. And my Unicode files are about twice as large as the plain ASCII file. Once I have a file or string variable that contains Unicode, how can I quicky convert it to ASCII? If the scripting dictionary handles Unicode well, I'm just as open to converting the plain ASCII to Unicode I have tried manually opening the Unicode files in WXP's Notepad and then saving them with ANSI encoding. This solves my problem, but I'd like the script to handle the problem. . Thanks, -Paul Randall Tag: Security issues for scripters Tag: 198853
  - 7
    - automatically saving screenshot Hi NG, is there a way to automatically save scrennshots via hotkey? Example: CTRL+F13 is pressed, a folder c:\screenshot is created and the file is stored with the following syntax: screenshot_dd_mm_yy_hh_mm.jpg I saw a Linux application which was able to do so.Is it also possible with Windows? Without installing any further programs? Thanks in advance, Tim Tag: Security issues for scripters Tag: 198848
  - 8
    - Script to delete 0K files in a directory? Anybody written a script to delete all files within a given folder that are 0K or 1K in size? Never written a script, where should I start? Dean S Tag: Security issues for scripters Tag: 198847
  - 9
    - Select control DHTML This is a multi-part message in MIME format. ------=_NextPart_000_0006_01C703E3.22966690 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I have a list box filled with entries. On a button click I want to fill = the different entries in the same list box. How do I refresh it with new = entries. I tried innerHTML but did not work for me. Thanks in advance ------=_NextPart_000_0006_01C703E3.22966690 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2900.2963" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY> <DIV><FONT face=3DArial size=3D2>I have a list box filled with = entries.  On a=20 button click I want to fill the different entries in the same list box. = How do I=20 refresh it with new entries. I tried innerHTML but did not work for=20 me.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Thanks in advance</FONT></DIV> <DIV> </DIV></BODY></HTML> ------=_NextPart_000_0006_01C703E3.22966690-- Tag: Security issues for scripters Tag: 198843
  - 10
    - Returning recordset from a function and using EOF Hi, I have been all over the web looking for a definitive answer to this question. I want to have a function which grabs a record set, and returns it. Then, after my function call, I want to use something like EOF or GetRows() to cycle through the record set. But no matter what I try, I get the following error: Object doesn't support this property or method: 'currentRow.EOF' ----------------- Code returning set from function: <snip> rs.Open cmd, , adOpenStatic, adLockReadOnly Set cmd.ActiveConnection = Nothing Set cmd = Nothing set rs.ActiveConnection = Nothing oConn.Close Set oConn = Nothing getReportLogRow = rs ' This is the return statement End Function ---------- Code using the returned recordset: <snip> Set currentRow = CreateObject("ADODB.Recordset") Set currentRow = getReportLogRow(sessID) if(currentRow.EOF)then <snip> --------------------- If I can solve this... I'm gonna publish the solution all over the place because I can't be the only one ripping out their hair over this. Why does vbscript-asp make using functions such a pain? ;) Thanks for any help! Tag: Security issues for scripters Tag: 198840
  - 11
    - Clean event viewer log with Regular expression. Hi. I'm not a programmer. I do script just to ease my work, and it funs too!!! This is my project. I made a script to scan a list of server from a file, retrieve all Critical event message from EV and write it to a file for analysys with Excel. I should help us configuring our Monitoring application. The problem that I have is with the "objEvent.Message" field. I want to revome all formating, so I can export it in Excel and have a nice looking (Message = 1 cell). Because with all formating character (carriage return, line feed, etc..) it looks weird when I export it. Can you help me with my patern maching. Here is the Scirpt. '*********************************************************************** '* '* Names : List All System Event Type Error.vbs '* '* Retrieve all Critical error from a list (input file) and write it '* in an output file for analyses. Input file is in the current '* directory. '* '* By : '* Date : '* '*********************************************************************** Const ForReading = 1 Const ForWriting = 2 Const ForAppending = 8 Dim strComputer Dim objFSO Dim strScriptFullName Dim objFile Dim objFile2 Dim strFileParentFolder Dim strInputFileName Dim strOutputFileName Dim Message Dim Message1 strInputFileName = "Input.txt" strOutputFileName = "Output.txt" Set objFSO = CreateObject("Scripting.FileSystemObject") strScriptFullName = WScript.ScriptFullName Set objFile = objFSO.GetFile(strScriptFullName) strFileParentFolder = objFSO.GetParentFolderName(objFile) Set objFile = objFSO.OpenTextFile(strFileParentFolder & "\" & strInputFileName, ForReading) Set objFile2 = objFSO.CreateTextFile(strFileParentFolder & "\" & strOutputFileName, True) objFile2.WriteLine "Category,Computer Name,Event Code,Message,Record Number,Source Name,Time Written,Event Type,User" Do While objFile.AtEndOfStream = False strComputer = objFile.ReadLine Set objWMIService = GetObject("winmgmts:" _ & "{impersonationLevel=impersonate}!\\" & strComputer "\root\cimv2") Set colLoggedEvents = objWMIService.ExecQuery _ ("Select * from Win32_NTLogEvent Where Logfile = 'System' and " _ & "Type = 'Error'") For Each objEvent in colLoggedEvents Message = ReplaceRegX(objEvent.Message, [VbCrLf|vbCr|vbLf|^\.], "") WScript.Echo Message ' objFile2.WriteLine objEvent.Category & "," & objEvent.ComputerName & "," & objEvent.EventCode _ ' & "," & objEvent.RecordNumber & "," & objEvent.SourceName & "," & objEvent.TimeWritten _ ' & "," & objEvent.Type & "," & objEvent.User & "," & objEvent.Message Next Loop objFile.Close objFile2.Close Function ReplaceRegX(str1, patrn, replStr) Dim regEx ' Create variables. Set regEx = New RegExp ' Create regular expression. regEx.Pattern = patrn ' Set pattern. ReplaceRegX = regEx.Replace(str1, replStr) ' Make replacement. End Function Salutation, Thank you in advance. -- jasmin leroux MCSE Tech. deployement Tag: Security issues for scripters Tag: 198836
  - 12
    - Create a list of users from AD security group I am trying to create a spread sheet of user located in a particular security group. I can go to the properties of the security group and click members to see all users in this particular group. I need a list of those users in a spread sheet. Any help is appreciated. TIA Tag: Security issues for scripters Tag: 198835
  - 13
    - Add to MS Access database Hi Can anyone tell me if it is possible to use VB Script on a web page to add a record to an Access database without server-side processing? I want to access an mdb file that is stored on a network drive. If so, how? Thanks Stuart Duncan Tag: Security issues for scripters Tag: 198834
  - 14
    - creating folder tree structures Hi, Thanks for taking the time to read this. I work in the construction industry. We have recently started a new policy for how our project managers and department heads are supposed to digitally file job documents. This means that each time we start a new job or new project a particular folder structure is setup in our file servers. I am talking 100+ folders a week, each containing about 10 subfolders, and even some subfolders below those. As you can figure, this is a tedious task for anyone to do. I am looking to streamline this using some VB script if it's possible. The problem I am running into is that I still have to copy/paste folder names into my script (either script or simple mkdir batch file). I wanted to ask if there is a way to build a prompt using VB script so that if asks for the folder name and then does it's thing. This would be good so that I can create a small program for others to use. That, or can I inject data into my script from an outside database? This script will be more complicated, so that is why I am here asking. I know this is possible, and I think I should get this setup as it's going to make a big difference to our daily operations.... Thanks, John L Tag: Security issues for scripters Tag: 198833
  - 15
    - Take ownership of multiple folders? I have the following script that will take ownership of 1 folder, what I want to do is to have this take ownership of a large amount of folders at once by either pulling the folder name from a text file or just listing it in the script. So I have a directory called owner and say I have 10 folders under that called 1 through 10.. is this possible? strComputer = "." Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\cimv2") Set colFolders = objWMIService.ExecQuery _ ("Select * From Win32_Directory Where Name = 'C:\\Owner'") For Each objFolder in colFolders objFolder.TakeOwnershipEx Next Tag: Security issues for scripters Tag: 198829
  - 16
    - large scale print to file (.tif) I am not sure where to put this - I have a need to print a large amount of tif files using office document image but I always get the save as and preview dialog for every file - is there a way to script past this so I can run a contagious print job and automatically overwrite existing file of the same name(revisions) any ideas or help greatly appreciated Tag: Security issues for scripters Tag: 198822
  - 17
    - i want to save preview of this page in an image format like jpeg Hello Friends, only problem is that I have to do this programmatically. I displayed an html page in a popup window. on this page there is a background image and some formated text with tags like <font>, <b>, <i>, <u>. now, i want to save preview of this page in an image format like jpeg, jpg, gif or in any image format. Tag: Security issues for scripters Tag: 198819
  - 18
    - Logging WScript.Timeout Event Hallo, I would like to know if there is a way to log the event, that my script has exceeded the wscript.timeout that I have set before. I would like to log this event within the Script itself, before it's ending, not as a wsh-return code... And I would like to log the return Code inside my logfile... Tag: Security issues for scripters Tag: 198817
  - 19
    - How to get the parent / starting process? Hello How can I get from a running process the parent process or by which process it has been started? A full example or hints into the right direction would be great. Many thanks in advance regards Mark Egloff Tag: Security issues for scripters Tag: 198816
  - 20
    - Newbie - moving files to another folder Hi, I'm trying to write a vbscript that, when run, will create a new folder with a unique timestamp and move the files in one folder, into the new folder. I keep getting an error when I run the script and I can't figure out why... if anyone can have a look it would be greatly appreciated! Thanks in advance, MJ Option Explicit ' Create the File System Object Dim FSO Set FSO = CreateObject("Scripting.FileSystemObject") Dim errorFolder errorFolder = "C:\errors" Dim ef Set ef = FSO.GetFolder(errorFolder) '''''''''''''''''''''''''''''''''''''' 'Create Unique Destination Folder '''''''''''''''''''''''''''''''''''''' Dim datetoday, timetoday Dim strMonth, strDay, strHour, strMinute, strSecond Dim strDirectory datetoday = now strMonth = Month(datetoday) strDay = Day(datetoday) strHour = Hour(datetoday) strMinute = Minute(datetoday) strSecond = Second(datetoday) if len(strMonth) = 1 then strMonth = "0" & strMonth end if if len(strDay) = 1 then strDay = "0" & strDay end if if len(strHour) = 1 then strHour = "0" & strHour end if if len(strMinute) = 1 then strMinute = "0" & strMinute end if if len(strSecond) = 1 then strSecond = "0" & strSecond end if datetoday = YEAR(datetoday) & strMonth & strDay timetoday = strHour & strMinute & strSecond strDirectory = "c:\archive\" & datetoday & "_" & timetoday FSO.CreateFolder(strDirectory) Dim f For Each f in ef.Files ' Copy the file to the archive folder FSO.MoveFile f, strDirectory Next Tag: Security issues for scripters Tag: 198808
  - 21
    - Please Help (Script Control) All I want to do is put a little script into my VB application. I downloaded Script Control (which I believe is the right thing to use), made a reference to it in VB, but there's no Script Control icon in the tools menu (like Microsoft said there'd be). Do I need to download it to a certain folder? I'm going crazy here. Am I even going about this in the right way? There doesn't seem to be any documentation anywhere. Somebody please please please help. Tag: Security issues for scripters Tag: 198802
  - 22
    - Posting Data to pages using VBA (Microsoft.XMLHTTP and MSXML2.ServerXMLHTTP.4.0) Hi, I'm trying to pull some data from htm pages but am having some issues with the POST method. I would like to navigate between these pages and post/retrieve data in the same session. For example, testA.htm would have a couple of text boxes, radio buttons, etc. The code would populate the objects by modifying the HTML to add in the attributes (alternatives to this method would be welcome), then move along to testB.htm when the form is posted. The script would then gather data from testB.htm, modify the HTML, rinse/rather/repeat... I'm currently stuck between the post of testA.htm to testB.htm. I would like to see testB.htm in the responseText when I post testA.htm. If I use Microsoft.XMLHTTP, the page just refers back to itself when I look at the responseText. If I use MSXML2.ServerXMLHTTP.4.0, I get one of two messages- "You are not authorized to view this page" or "Page cannot be displayed" Below is the VBA: Set xmlHTTP = CreateObject("Microsoft.XMLHTTP") 'Set xmlHTTP = CreateObject("MSXML2.ServerXMLHTTP.4.0") xmlHTTP.Open "POST", "http://server/testA.htm", False xml.Send strResponse = xml.responseText Below is the HTML: <FORM name=testA action="http://server/testB.htm" method=post><input type=text name="Text0" value="PopulateSample"></input> <input type=submit value="Move to TestB" /> </FORM> Any input would be greatly appreciated; thanks in advance! -Harry Tag: Security issues for scripters Tag: 198798
  - 23
    - Firefox & Session Vars Hi, I have an application process where users enter info into fields, go on to step 2, when this happens the user info is loaded into the session and then the user is redirected Function SaveCookies() Session("apptype") = Request.Form("apptype") Session("pgmtype") = Request.Form("pgm_type") Session("branch") = Request.Form("branch") Session("guarantors") = Request.Form("gtors_count") Session("references") = Request.Form("refs_count") Session("biztype") = Request.Form("biztype") Session("ref") = Request.Form("external_ref") Session("customerCode") = Request.Form("customer_code") Session("companyName") = ReplaceSpecialCharacters(UCASE(Request.Form("company_name"))) Session("dbaName") = ReplaceSpecialCharacters(UCASE(Request.Form("dba_name"))) Session("address1") = ReplaceSpecialCharacters(UCASE(Request.Form("address1"))) Session("address2") = ReplaceSpecialCharacters(UCASE(Request.Form("address2"))) Session("city") = ReplaceSpecialCharacters(UCASE(Request.Form("city"))) Session("state") = UCASE(Request.Form("state")) Session("zipcode") = Request.Form("zipcode") Session("county") = Request.Form("county") Session("ctname") = Request.Form("contact_tname") Session("cfname") = ReplaceSpecialCharacters(Request.Form("contact_fname")) Session("clname") = Request.Form("contact_lname") Session("ctitle") = Request.Form("contact_title") Session("cphone") = Request.Form("contact_phone") Session("cext") = Request.Form("contact_ext") Session("cfax") = Request.Form("contact_fax") Session("cemail") = ReplaceSpecialCharacters(LCase(Request.Form("contact_email"))) Session("fedid") = Request.Form("federal_id") Session("yrsinbiz") = Request.Form("yrs_in_biz") End Function Say I need to change one of the fields entered in step 1, I hit Previous button, change the info, continue on, but when I go back to see if my change persisted, I find that the field changed back to its original value. This doesn't happen in IE, I am wondering how Firefox caches here?! Tag: Security issues for scripters Tag: 198795
  - 24
    - Firefox & Session Vars Hi, I have an application process where users enter info into fields, go on to step 2, when this happens the user info is loaded into the session and then the user is redirected Function SaveCookies() Session("apptype") = Request.Form("apptype") Session("pgmtype") = Request.Form("pgm_type") Session("branch") = Request.Form("branch") Session("guarantors") = Request.Form("gtors_count") Session("references") = Request.Form("refs_count") Session("biztype") = Request.Form("biztype") Session("ref") = Request.Form("external_ref") Session("customerCode") = Request.Form("customer_code") Session("companyName") = ReplaceSpecialCharacters(UCASE(Request.Form("company_name"))) Session("dbaName") = ReplaceSpecialCharacters(UCASE(Request.Form("dba_name"))) Session("address1") = ReplaceSpecialCharacters(UCASE(Request.Form("address1"))) Session("address2") = ReplaceSpecialCharacters(UCASE(Request.Form("address2"))) Session("city") = ReplaceSpecialCharacters(UCASE(Request.Form("city"))) Session("state") = UCASE(Request.Form("state")) Session("zipcode") = Request.Form("zipcode") Session("county") = Request.Form("county") Session("ctname") = Request.Form("contact_tname") Session("cfname") = ReplaceSpecialCharacters(Request.Form("contact_fname")) Session("clname") = Request.Form("contact_lname") Session("ctitle") = Request.Form("contact_title") Session("cphone") = Request.Form("contact_phone") Session("cext") = Request.Form("contact_ext") Session("cfax") = Request.Form("contact_fax") Session("cemail") = ReplaceSpecialCharacters(LCase(Request.Form("contact_email"))) Session("fedid") = Request.Form("federal_id") Session("yrsinbiz") = Request.Form("yrs_in_biz") End Function Say I need to change one of the fields entered in step 1, I hit Previous button, change the info, continue on, but when I go back to see if my change persisted, I find that the field changed back to its original value. This doesn't happen in IE, I am wondering how Firefox caches here?! Tag: Security issues for scripters Tag: 198794
  - 25
    - Text File Create date problem... Situation: I've got a vbscript that creates a logfile during processing. At the beginning of the script I check to see if the log already exists - if so, I rename it (move) then create a new log (CreateTextFile) for the current execution. Here's the code 1 Set objFSO = CreateObject("Scripting.FileSystemObject") 2 If objFSO.FileExists(myLogFile) Then 3 Set objFile = objFSO.GetFile(myLogFile) 4 objFile.Move(myLogFile & <a suffix containing the last modified date>) 5 End If 6 Set objLogFile = objFSO.CreateTextFile(myLogFile, True) The Problem: The "DateCreated" attribute value seems be carried over from the previous logfile (line 2) to the new logfile (line 6)... but the date modified last accessed values are updated correctly. Why is the date created value not getting the current date and how can I fix this problem? Any feedback on this would be appreciated... celoftis Tag: Security issues for scripters Tag: 198786

I'm passing on this info. because it's especially
applicable to scripters. People might want to
disable or delete certasin files, or at least
take some precautions.

There are two "very serious" bugs out right now.
Both are apparently known to be actively exlpoited
and neither is patched.

A rundown is here:
http://www.techworld.com/security/news/index.cfm?newsID=7324

1) WMI Object Broker control, in WmiScriptUtils.dll.
This one is a risk for anyone with VB.Net 2005
installed, but presumably others could have installed the
DLL for WMI scripting use.
More here:
http://www.microsoft.com/technet/security/advisory/927709.mspx

No plans so far for a fix.

--------------------------------------------
2) MSXML4.DLL
Used for XML parsing. Not necessary and not a
default install in all Windows versions, but possibly
used by some scripters.

http://secunia.com/advisories/22687/

This one had a second bug report last week.

Top