18 mins

Claris Support

Running FileMaker Server in a Docker container for Ubuntu 20.04

Source: https://support.claris.com/s/article/Running-FileMaker-Server-in-a-Docker-container-for-Ubuntu-20-04?language=en_US Claris Engineering Blog August 1, 2022 Updates: This engineering blog describes why you might want to use Claris FileMaker Server with Docker and how to set up a Docker image containing FileMaker Server. You can set up FileMaker Server in a Docker container as a primary or secondary machine to deploy your database.

56 mins

Claris Support

FileMaker Server Event Log Messages

Source: https://support.claris.com/s/article/FileMaker-Server-Event-Log-Messages-Part-1?language=en_US The following is a list of FileMaker Server Event log messages: ID Severity Message Text / Information 2 Error Schedule “%1” aborted; no open databases to operate on. 8 Error Unable to back up database “%2”; can’t replace item with that name on destination “%1”. 10 Information Schedule “%1” created by “%2”. 14

7 mins

Christian Schmitz

Security tidbits for FileMaker

Essential Security Tips for Protecting Your FileMaker Solutions Source: https://www.mbsplugins.de/archive/2024-10-14/Security_tidbits_for_FileMaker/monkeybreadsoftware_blog_filemaker We talked about various things at the FileMaker conference in Rome and security is a concern for everyone. Especially as scripted attacks got frequently. Rename Admin Have you ever put a FileMaker Server on the internet? You may note that people knowing your address try

21 mins

David Hamann

FileMaker Server Admin Console: Access and Role Restriction Issues

Uncovering Access and Role Restriction Vulnerabilities in the FileMaker Server Admin Console Source: https://davidhamann.de/2024/10/09/fms-bypassing-restrictions/ With a few security features added to the FileMaker Server Admin Console in the last few versions, I decided to play around with them to see how they are implemented. In this article I want to highlight three of the issues

138 mins

Dimitris Kokoutsidis

Securing Plugin Licenses in FileMaker: Addressing Breaches, Legal Implications, and Evolving Security Practices

Dimitris Kokoutsidis, Sept 8, 2024, CyberFM Many FileMaker developers rely on hardcoded license keys for plugin solutions. I have a few questions regarding this approach: Overview of Plugin License Texts Following the blog post, you’ll find the detailed license texts for major FileMaker plugins. This section serves as a guide to understand how each plugin

1 mins

Alexey Dubov

FMS, privilege escalation

CVE macOS, Windows, Ubuntu FileMaker Server CVE-2024-23202 Source: https://fm-security.com/posts/priv_esc/ I have identified a privilege escalation vulnerability in FileMaker Server for all platforms (macOS, Windows, Ubuntu) This vulnerability allows an attacker, that has the most limited access to a remote database, hosted on FileMaker Server, to get full access privileges, with access to all data from all tables

18 mins

Alexey Dubov

FMS, bypass authorisation

Bypass authorization of FileMaker Server or “there is no such category” Source: https://fm-security.com/posts/bypass_auth/ CVE FileMaker Server CVE-2024-27790 Menu Introduction In the summer of 2023, I decided to investigate the internal communication protocol between FileMaker clients and the server. This led to the discovery of perhaps the most significant vulnerability in the platform’s history. I discovered that it

14 mins

Alexey Dubov

FileMaker, dylib hijacking

Understanding the Risks and Mitigations of dylib Hijacking in macOS FileMaker Pro CVE-2023-42920 Source: https://fm-security.com/posts/dylib/ CVE macOS FileMaker Pro CVE-2023-42920 Menu Introduction The dylib hijacking vulnerability for macOS is well known and studied. But from a FileMaker developer’s point of view, I have not seen any analysis of this problem. I will begin a little bit from afar. Embedding into someone else’s

18 mins

Claris Support

Running FileMaker Server in a Docker container for Ubuntu 20.04

Claris Support The Linux’s FileMaker server installer now have a docker folder which contains a bunch of script to build and deploy a FileMaker Server on docker. You can rely on it instead of the article. Source: https://support.claris.com/s/article/Running-FileMaker-Server-in-a-Docker-container-for-Ubuntu-20-04?language=en_US Claris Engineering Blog August 1, 2022 Updates: This engineering blog describes why you might want to use

7 mins

John Mathewson

Keeping FileMaker Secure

John Mathewson, Jun 20, 2024, Kyologic blog Source: https://kyologic.com/2024/06/keeping-filemaker-secure/ FileMaker is an incredibly powerful tool for managing relational databases. Of course, the nature of this platform means a variety of sensitive material may be stored on these databases. From employee social security numbers to client’s banking info to company finances, it’s crucial to ensure this

72 mins

David Hamann

Exploring the fmp12 file format; or: what was my password again?

Decoding the fmp12 File Format: A Deep Dive into Passwords and Account Security Source: https://davidhamann.de/2024/06/17/how-does-filemaker-store-passwords/ Introduction On This Page I had been planning for a while to dive deeper into the fmp12 file format to explore how data is organized and how accounts and passwords are stored. A few months ago, I finally found the

16 mins

Jacob Taylor

FileMaker 2024 Server Q&A with Wim Decorte and Jacob Taylor

Wim Decorte, Jacob Taylor, Jun 11, 2024, In this blog post, we take a deep dive into the FileMaker 2024 Server (also known as FileMaker 21) Q&A session featuring experts Wim Decorte from Soliant Consulting and Jacob Taylor from RCC. This session provided a comprehensive look at FileMaker Server’s latest features, performance optimizations, and essential

14 mins

Jacob Taylor

Let’s Encrypt in FileMaker 2024 with Wim Decorte and Jacob Taylor

Wim Decorte, Jacob Taylor, Jun 8, 2024, FileMaker Training TV In this blog post, we’ll explore Let’s Encrypt SSL integration in FileMaker 2024, guided by the expertise of Wim Decorte from Soliant Consulting and Jacob Taylor from RCC. This detailed discussion provides a step-by-step breakdown of how to implement SSL certificates, secure your FileMaker environment,

7 mins

Russell Heppell

Install Our FREE FileMaker Logging Add-on v2.0

Russell Heppell, Jun 4, 2024, Portage Bay blog Source: https://www.portagebay.com/blog/install-our-free-filemaker-logging-add-on-v2-0/ Three years ago, we proudly launched our initial version of PBS Log, a robust add-on designed for FileMaker solutions. Today, we are pleased to unveil an upgraded version, available for free in the Claris Marketplace. Read below to see how to incorporate the add-on in your

31 mins

Kevin Frank

OnWindowTransaction JSON

Kevin Frank, May 13, 2024, FileMaker Hacks Source: https://filemakerhacks.com/2024/05/13/onwindowtransaction-json/ Demo file: on-window-transaction-json-v2.zipCredentials: admin / adminMinimum version: 20.2 [for both client and server] Note: This demo file is optimized for Perform Script on Server (PSOS), and is intended to be hosted on FileMaker Server or FileMaker Cloud. Introduction Recently a colleague mentioned that they were running into a