AVH users reported issues with webservice interactions on the addin due to a possible change in how Windows handles webservice that are bound to locahost or 127.0.0.1 adresses.
It seems some firewall definitions have changed in windows updates that makes those kind of webserver triggering a firewall security notice (a small dialog asking if the application should be authorized on public, domain or private network areas).
AVH has hardened their security rules to disallow users to access this dialog, making the DAISY Pipeline 2 to raise an "Access denied" error when trying to launch the webserver.
(It also noted that the -Dcom.sun.management.jmxremote seems to also trigger this security notice on launching the pipeline)
As a temporary bypass, the following firewall rules need to be added by an admin if the addin installed on users account with such security configuration :
- rule name: SaveAsDAISY embedded engine TCP
- Program
%LOCALAPPDATA%\Apps\Save-as-DAISY Word Addin\daisy-pipeline\jre\bin\java.exe
- Profil Public
- All TCP ports
- Action : blocking connections
- rule name: SaveAsDAISY embedded engine UDP
- Program
%LOCALAPPDATA%\Apps\Save-as-DAISY Word Addin\daisy-pipeline\jre\bin\java.exe
- Profil Public
- All UDP prots
- Action : blocking connections
As the addin can now also use the DAISY Pipeline app, the following rules can also be added to allow its use by SaveAsDAISY
- rule name: DAISY Pipeline app engine TCP
- Program
%LOCALAPPDATA%\Programs\pipeline-ui\resources\app.asar.unpacked\resources\daisy-pipeline\jre\bin\java.exe
- Profil Public
- All TCP ports
- Action : blocking connections
- rule name: DAISY Pipeline app engine UDP
- Program
%LOCALAPPDATA%\Programs\pipeline-ui\resources\app.asar.unpacked\resources\daisy-pipeline\jre\bin\java.exe
- Profil Public
- All UDP ports
- Action : blocking connections
AVH users reported issues with webservice interactions on the addin due to a possible change in how Windows handles webservice that are bound to locahost or 127.0.0.1 adresses.
It seems some firewall definitions have changed in windows updates that makes those kind of webserver triggering a firewall security notice (a small dialog asking if the application should be authorized on public, domain or private network areas).
AVH has hardened their security rules to disallow users to access this dialog, making the DAISY Pipeline 2 to raise an "Access denied" error when trying to launch the webserver.
(It also noted that the
-Dcom.sun.management.jmxremoteseems to also trigger this security notice on launching the pipeline)As a temporary bypass, the following firewall rules need to be added by an admin if the addin installed on users account with such security configuration :
%LOCALAPPDATA%\Apps\Save-as-DAISY Word Addin\daisy-pipeline\jre\bin\java.exe%LOCALAPPDATA%\Apps\Save-as-DAISY Word Addin\daisy-pipeline\jre\bin\java.exeAs the addin can now also use the DAISY Pipeline app, the following rules can also be added to allow its use by SaveAsDAISY
%LOCALAPPDATA%\Programs\pipeline-ui\resources\app.asar.unpacked\resources\daisy-pipeline\jre\bin\java.exe%LOCALAPPDATA%\Programs\pipeline-ui\resources\app.asar.unpacked\resources\daisy-pipeline\jre\bin\java.exe