Month: February 2019

Dewarper Workaround

Post author By Bhargav Atturu
Post date February 27, 2019

Issue

Both Axis and Pelco depend on OpenGL for dewarping. If dewarping is not working for a Windows client because of GPU driver issues you can use the following open source Mesa3D software OpenGL drivers as a work around. This will basically use a software implementation of OpenGL to do the dewarping which is really no worse than 90% of the other dewarping libraries anyway. It will not perform as well as if it were using the GPU OpenGL drivers, but it seems reasonable. CPU usage went from 6% using GPU drivers to 12% using these drivers.

Workaround

Download Mesa3D windows binaries from https://github.com/pal1000/mesa-dist-win/releases
Extract contents of either x64 or x86 folder to client install directory depending on which client is installed
OpenGL32.dll should be in the same folder as edvrclient.exe

Dewarper-Workaround.pdf

Tags Guest, Axis, Dewarp, Client, exacqVision Client, Mesa3D Software, OpenGL, KB-00008-08-210201, 326

Knowledge Support Support Categories exacqVision Webservice Products

Time Zone Only Shows UTC-0 Option

Post author By Bhargav Atturu
Post date February 26, 2019

Symptom

In the exacqVision Client software on the ‘System Configuration’ page, under the ‘Date/Time’ tab, the Time Zone drop down menu has only one option, UTC-0.

Problem

The user cannot set the proper server time zone.

Affecting only Windows systems, the script that obtains the time zones from the operating system has failed. The ‘timeconfig.ps1’ script will fail if the system is running PowerShell 2.0.

To check the version of PowerShell installed, open a PowerShell command prompt and enter:

Get-Host | Select-Object Version

Solution

Steps to correct:

Update the installed version of PowerShell to 3.0 or higher.
When the update has completed, restart the system.
Run the exacqVision Server installer over the top of the existing install.
Open the exacqVision Client software and set the proper time zone.

Tags Server, Server Time Zone, Time Zone, KB-00039-39-210203, 638, SFA000034975, Guest, Server Software

Knowledge Support Support exacqVision Server Categories Products

Troubleshooting Cloud Drive

Post author By Bhargav Atturu
Post date February 22, 2019

Note: Only H.264 streams are currently allowed for Cloud Drive. All other streams will be hidden on the Archiving Schedule page.

Note: Audio is not currently supported for Cloud Drive.

As of 9.8, Cloud Drive technically runs as a side integration that is installed by default. This results in log files that are separate from the Server’s regular logs. Cloud Drive activity can be confirmed only by accessing the logs in the following location on the Server:

Windows: C:\Program Files\exacqVision\Server\cloud-drive\logs\YYYYMMDD.txt
Linux: /usr/local/exacq/server/cloud-drive/logs/YYYYMMDD.txt

To confirm that Cloud Drive is functioning appropriately, look for: INFO successfuly uploaded clip for uuid /tmp/4719360_1550870199563.mp4:

If a 30 second clip fails to upload to Cloud Drive within the allowed time-frame, the following log will appear and the video is discarded: ERROR failed to upload clip for uuid /tmp/4719360_1550847735563.mp4 (7): curl_easy_perform() failed: Timeout was reached

Cloud Drive will attempt to create .mp4 files in the System’s Temp directory:

Windows: C:\Windows\Temp\
Linux: /tmp/

The file pattern looks like: 4719360_1550847735563.mp4

The first set of numbers (4719360) is the Camera ID, which can be verified by right-clicking on any video stream in the exacqVision Client and selecting Properties.

The second set after the underscore will be the Unix Epoch time when the file was created.

A maximum of 3 files will be created and held in Temp per capable device. If this queue is already maxxed, Cloud Drive will discard any future video until at least one of the current uploads completes and clears one of the files from the queue. The following log will occur:

request failed for /tmp/4719360_1550847985563.mp4: too many clips in cloud upload queue (max X)

Troubleshooting-Cloud-Drive.pdf

Tags Troubleshooting, KB-00036-36-210203, 619, Guest, Server Software, Linux, Windows, Server, Cloud Drive

Knowledge Support Support exacqVision Server Categories Products

Disabling Short Filename Support May Speed Up Drive Scans

Post author By Bhargav Atturu
Post date February 15, 2019

Each hour, the server scans all enabled recording volumes in order to index all existing video recordings, and to determine the oldest video to be deleted in order to make space for new recordings.

This task can be time consuming, sometimes to the point that the scan may not actually complete within an hour. In the case of Windows 7, Windows Server 2008, or older, this may partly be due to 8.3 (short) filename support remaining in effect on all enabled recording volumes.

To disable, refer to instructions in https://blogs.technet.microsoft.com/josebda/2012/11/13/windows-server-2012-file-server-tip-disable-8-3-naming-and-strip-those-short-names-too/
This Microsoft article is written in the context of upgrading from Windows Server 2003 to Windows Server 2012 without reformatting data volumes, but may be applicable to exacqVision Servers as well.

Tags Guest, Windows, Server, Operating System, KB-00040-40-210203, 641, File Scan, Filename, File Name

Knowledge Support Support exacqVision Enterprise Categories Products

Modifying ESM Security Access

Post author By Bhargav Atturu
Post date February 15, 2019

Tyco Security Solutions has confirmed a vulnerability in the exacqVision Enterprise System Manager (ESM) v5.12.2 application whereby unauthorized privilege escalation can be achieved and providing guidance on mitigation actions to avoid a potential exploit.

Scope: This vulnerability impacts exacqVision ESM v5.12.2 and all prior versions of ESM running on a Windows operating system (except Windows Server). This issue does not impact Linux deployments with permissions that are not inherited from the root directory.

Mitigation: The following mitigating steps are recommended for Windows 10 Desktop OS. Other versions of Windows may have different nomenclature, but the same mitigating steps are recommended.

Launch a command prompt with Administrator privileges, then run the following 4 commands sequentially:

cacls C:\exacqVisionESM /e /R “Authenticated Users”
cacls C:\exacqVisionESM\uninstall.exe /e /R “Authenticated Users”
cacls C:\exacqVisionESM\EnterpriseSystemManager /e /T /R “Authenticated Users”
cacls C:\exacqVisionESM\apache_solr /e /T /R “Authenticated Users”

Open the ‘Services’ applet and restart all of the following:

ESMImporter
ESMDatarolloff
ESMSendemail
ESMWebservice
solrJetty
solrApache

Fix: Tyco Security Solutions is working on a fix that will be incorporated into a future version of the exacqVision ESM that will not require the foregoing manual mitigation process to be executed.

References: CPP-PSA-2019-01 – Please visit the Tyco Security Solutions, Cyber Protection website to register for and download security advisories.

Modifying-ESM-Security-Access.pdf

Tags Guest, ESM, exacqVision Enterprise, Enterprise, Security Access, KB-00033-33-210202, 599