Bypass authorization of FileMaker Server or “there is no such category” Source: https://fm-security.com/posts/bypass_auth/ CVE FileMaker Server CVE-2024-27790 Menu Introduction In the summer of 2023, I decided to investigate the internal communication protocol between FileMaker clients and the server. This led to the discovery of perhaps the most significant vulnerability in the platform’s history. I discovered that it
Understanding the Risks and Mitigations of dylib Hijacking in macOS FileMaker Pro CVE-2023-42920 Source: https://fm-security.com/posts/dylib/ CVE macOS FileMaker Pro CVE-2023-42920 Menu Introduction The dylib hijacking vulnerability for macOS is well known and studied. But from a FileMaker developer’s point of view, I have not seen any analysis of this problem. I will begin a little bit from afar. Embedding into someone else’s
Richard Carlton, Jul 30, 2024, FileMaker Training Videos Menu Introduction to FileMaker Upgrades To top Upgrading FileMaker to its latest version is a decision that many organizations delay, often due to concerns about cost, downtime, or compatibility. However, running an outdated version of FileMaker comes with several risks, including slower performance, security vulnerabilities, and compatibility
Wim Decorte, Claris Engage 2024 As the complexity of digital ecosystems continues to evolve, ensuring the security of the applications we build has never been more important. With the increasing sophistication of attacks, even a small oversight can lead to catastrophic results such as data breaches, fines, or damage to reputation. This blog post delves
Keycloak 17 & FileMaker: Installation & Configuration Tutorial Duncan Baker, Sounds Essential Blog Source: https://www.soundsessential.com/support/tutorials/212-keycloak-17-filemaker-installation-configuration-tutorial-part-1-ubuntu-mysql Part 1: Ubuntu & MySQL Introduction As we have before, we need to acknowledge the excellent work from Wim Decorte and Steven Blackwell who have and continue to push the subject of security in the FileMaker platform. Our forays into
Jacob Taylor, April 21, 2021, FileMaker Training Videos Introduction FileMaker Server crashes are inevitable in high-demand environments. A quick and structured response is key to minimizing downtime, safeguarding data, and ensuring that such incidents don’t repeat. This guide provides a deep dive into diagnosing the cause, executing a proper recovery, preventing future crashes, and completing
Peter Baanen, Mar 21, 2020, Troi Plugins blog Source: https://www.troi.com/additional/how-to-investigate-access-privileges-of-plug-ins-and-filemaker/ With macOS 10.14 Mojave Apple added new (and more strict) security measures, which may cause some functions of the Troi File Plug-in to return an error. Some FileMaker script steps that worked before, will now return error code $$-5000, which is error afpAccessDenied (User does not have