tracker issue : CF-4205808

select a category, or use search below
(searches all categories and all time range)
Title:

404 - File or directory not found (Tomcat/ISAPI/isapi_redirector/1.2.46)

| View in Tracker

Status/Resolution/Reason: To Track//NeedMoreInfo

Reporter/Name(from Bugbase): Michael L. / ()

Created: 11/06/2019

Components: Installation/Config, Connector

Versions: 2016

Failure Type: Non Functioning

Found In Build/Fixed In Build: 2016,0,12,315717 /

Priority/Frequency: Normal / Some users will encounter

Locale/System: English / Win 2012 Server x64

Vote Count: 0

Problem Description: After applying Update 12, we started to notice errors when accessing some ColdFusion and .NET web sites on the same server. I mention .NET as we use a single connector for all of the web sites, so they all also have the Tomcat ISAPI filter added to them. The errors is:

404 - File or directory not found.  
The resource you are looking for might have been removed, had it name changed, or is temporary unavailable. 
The requested URL was not found on the server!
If you entered the URL manually please check your spelling and try again.
Tomcat/ISAPI/isapi_redirector/1.2.46

We are getting rather large isapi_redirect.log file in <ColdFusion install>\config\wsconfig\1 with entries like:

[Wed Nov 06 02:48:13.412 2019] [17784:21472] [warn] jk_check_for_path_attack::jk_util.c (2457): Path attack using [/] 

Is there a security setting that is too sensitive? 

We notice in the patch notes, "It includes some library upgrades and also upgrades the Tomcat version to 8.5.42." so we are kind of thinking Tomcat is the culprit here.

Steps to Reproduce:

Install ColdFusion and apply Update 12.

Actual Result:

Intermittent 404 errors

Expected Result:

No intermittent 404 errors

Any Workarounds:

For non-ColdFusion websites add the following to the web.config under the <system.webServer> to remove the Tomcat ISAPI filter. 

<isapiFilters>
<remove name="tomcat" />
</isapiFilters>

Attachments:

Comments:

Michael, This looks like a duplicate of CF-4205252. Can you pls try the steps suggested in the comments there to see if that fixes your issue. you can download and replace the connector DLL from the following location. [https://www.dropbox.com/sh/q2hv32vuw25oiho/AAD0a9-eQWZDP0H0vKtaQwjRa/CF2016%20Binaries/Windows/IIS?dl=0&subfolder_nav_tracking=1]    
Comment by Piyush K.
31690 | November 07, 2019 06:10:28 AM GMT
Should we use this connector that you linked or the ones here as we need to update ColdFusion 2016 and 2018? https://coldfusion.adobe.com/2019/10/error-accessing-coldfusion-administrator-using-connector-port/
Comment by Michael L.
31804 | November 12, 2019 02:55:09 PM GMT
@Michael, you can use the one from https://coldfusion.adobe.com/2019/10/error-accessing-coldfusion-administrator-using-connector-port/
Comment by Vamseekrishna N.
31805 | November 13, 2019 04:15:09 AM GMT
Michael, The fix was released with the pre-release of update 6 / update 13, in case you want to try it out. You can find info on how to access the build at: https://coldfusion.adobe.com/2019/11/preview-builds-coldfusion-2018-release-update-6-and-coldfusion-2016-release-update-13-released/
Comment by Piyush K.
31806 | November 15, 2019 06:41:58 AM GMT