LOL

Do you remember my post about backdoor in default installation and doubts about SDLC in EMC? This sad history has a sequel! About one week ago my skypemate asked me about whether I experienced difficulties with installing latest patchsets on Content Server, today I found post on ECN with similar problem:

It turns out, that EMC tried to fix security issue described in my post about backdoor in default installation and, as expected, got failed – latest Content Server patches contain special XSLT intended to remove mapping for DmSampleServlet from web.xml:

<xsl:stylesheet version="1.0" exclude-result-prefixes="xs"
    xmlns:xsl="http://www.w3.org/1999/XSL/Transform"
    xmlns:xs="http://www.w3.org/2001/XMLSchema">
    
    <xsl:template match="@* | node()">
        <xsl:copy>
            <xsl:apply-templates select="@* | node()"/>
        </xsl:copy>
    </xsl:template>

    <xsl:template match="//servlet[servlet-name = 'DmSampleServlet']"/>
    <xsl:template match="//servlet-mapping[servlet-name = 'DmSampleServlet']"/>
</xsl:stylesheet>

I seems that EMC thinks customers who are not going to upgrade their pre-D7 installations do not deserve security fix.

LOL 🙂

3 thoughts on “LOL

  1. I’ve been installing a new 7.2 environment this week. Preproduction environment was fine (I installed everything before installing P02), but in the production environment I installed P02 before anything else and found that I couldn’t install PE because the installer failed trying to parse web.xml (the file had some characters at the end of the file, outside the closing xml node). I wonder if this has something to do with it…

    Like

  2. I believe it’s possible to install Process Engine manually (just deploy bpm.ear and install dars), on the other hand it seems that turning customers into betatestes is a new trend:)

    Like

  3. Pingback: Weird release management | Documentum in a (nuts)HELL

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s