Windows 10 has a feature to block any font outside the %windir%/Fonts directory from loading in a browser.
Our entire website (AEM + Apache webserver) uses a proprietary purchased font which is hence blocked in all PC's. Is there any way to bypass this setting so that the font loads seamlessly in all users.
We need to do something from AEM/Apache websrver/Akamai CDN end because any local changes will not be possible for end users to follow.
I didn't find much help online for this.
The documentation says - "By default, this feature is not turned on." so i would assume you are facing issues on company issued laptops that have this security feature enabled.
Depending on your fonts licensing you could choose to do following -
Use user-agent information to detect if the OS is windows 10
If Windows 10 is detected show an overlay with the link to download and install fonts
To let the font work with this setting, it is to install the font on each machine with the Untrusted font setting turned on and then declare the font with a fallback.
The second option would it be to whitelist the application, in this case, the browser to be whitelisted as explained in the Microsoft website here: https://technet.microsoft.com/en-us/itpro/windows/keep-secure/block-untrusted-fonts-in-enterprise
I had a similar issue, with Icomoon, but the concepts would be the same one: install the font in the system and then declare a fallback font.
This might help you in the process:
http://maurizionapoleoni.com/blog/how-to-display-fontawesome-icomoon-and-font-icons-on-a-windows-10-with-blocked-untrusted-fonts/
Related
I have to test a product on Internet Explorer but when I try to start it always Edge browser is opened. I tried to set IE as default browser but did not help. I try to set Chrome or Firefox as default but also not help. I tried to uninstall then reinstall IE component from 'Uninstall programs - Turns windows feature on or off' but also did not help.
I have upgraded my Windows to Version 1909 x64 but also before this update the problem existed. I am using a Dell Latitude E5470 laptop. I also search the IE and Edge group policy settings but I don't find anything which help solving this problem.
Your suggestions, ideas and help would be very appreciated.
Thanks.
For me, I was able to fix the behavior by searching for "Internet Explorer Compatibility" in the Edge settings panel. Then setting the "Open Sites in Edge" setting to "Never."
I have had a similar behavior in Windows 10 20H2 (As of writing this answer, the latest Windows 10 build so far). I had a scheduled task which opens a website at a given time, the command there is:
"C:\Program Files\Internet Explorer\iexplore.exe" https://some.webiste.com
After upgrading to 20H2 it always opened in Edge, also manually browsing to that website was redirected to Edge.
I found a setting in Internet Explorer under Internet Options -> Advanced Tab -> Browsing section -> Uncheck Enable third party extensions.
Note: This might need a restart to take effect and disable also other extensions but unfortunately as of this day there seems to be no other options to browse a website in IE which needs IE for one or the other reason.
Edit:
This behavior I was experiencing seems to be a DLL (ie_to_edge_bho.dll) file which comes with Edge and is being installed in IE. There is a static list of websites which get automatically redirected to Edge. Disabling this extension is greyed out and not supported out of the box, other than disabling all extensions via the option described above.
This setting lets you decide whether to open all sites not included in the Enterprise Mode Site List in Microsoft Edge. If you use this setting, you must also turn on the Administrative Templates\Windows Components\Internet Explorer\Use the Enterprise Mode IE website list policy setting and you must include at least one site in the Enterprise Mode Site List.
Enabling this setting automatically opens all sites not included in the Enterprise Mode Site List in Microsoft Edge.
Disabling, or not configuring this setting, opens all sites based on the currently active browser.
Note: If you've also enabled the Administrative Templates\Windows Components\Microsoft Edge\Send all intranet sites to Internet Explorer 11 policy setting, then all intranet sites will continue to open in Internet Explorer 11.
https://admx.help/?Category=Windows_10_2016&Policy=Microsoft.Policies.InternetExplorer::RestrictInternetExplorer
The problem was with 20H2(Microsoft Windows 10 Enterprise ver 10.0.19042) when I received the same complaint from multiple users.
So this has been sorted out using below registry fix as mentioned by #alpar
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Main\EnterpriseMode and set RestrictIE value from 1 to 0
For me, the correct answer was the one provided by #josibu.
I was trying to use the performance profiler in Visual Studio 2019 for a Web project. For this function, there is no way to convince Visual Studio 2019 to use anything other than Internet Explorer. Even on Windows 11, it tries to run iexplore.exe when no such program exists. For those machines that do have Internet Explorer installed, but crippled by Microsoft, disable third party extension, as directed by #josibu.
You may get a message that the setting will not take effect until you restart your system. In my case, this was not needed. The change worked after I simply closed Internet Explorer.
I recently deployed my website in the live shared resource server in Linux environment. The website is a Property Listing Application that allows real estate agents to list their properties with 18 High Definition (HD) images per listing.
My Web Hosting Provider configured the php.ini file for upload_max_filesize at 20MB. I tried different possible configurations to increase the upload size whether through php scripting in cpnel or progammatically but I got connection time out without notification error.
I spoke to Techical Support Team who increased the upload_max_filesize to 50MB that allowed me to only upload 16 images of 3MB size each. But when I tried, the image upload failed still.
I noticed that the cpanel master settings override all the changes. I wanted to upgrade the package for VPS but its features don't convice my ideal server settings.
I decided to concider a self web hosting with control panel. I investigated some possibilities and did some research online to find out how I can accomplish this, I found a few tips that showed possibilities with drawbacks.
I would like to know if it is possible for the self web hosting. What will be server requirements like number of CPUs, Raid, RAM and HDD sizes, etc. What is the most trusted server manufacturers like Cisco, Dell, etc. For Software between Windows and Linux. What is the best fit and why? What is a good cpanel to consider?
I fixed my upload issues. The problem was not upload_max_filsize but the actual image resolution in my script that needed a slight modication. I just modified the image resolution and the upload file image work fine.
For the ideal cpanel, I found cpanel.net
I have a site that uses web fonts.The site used to function properly until the client's IT team rolled out Windows 10 Pro across the organization. After the Windows upgrade, the web fonts stopped working with error "CSS3111: #font-face encountered unknown error" on IE 11 browser. However on all other major browsers including new Edge the site works without any issues.
I did some search to and came to know it is because of a recommended features called Untrusted Font Blocking and to disable it I need to modify certain registry keys. However in my case that is not an option as the this feature is recommended by Microsoft for security. Also it needs the change to be done on local machines.
While googling, I noticed some people suggesting encoding and embeding of font file as Base64 encoded string. In fact I could see that as a workaround in many Q&A sites and forums (eg here, here). But I failed when I attempted to do that. On my Win10+IE11 I still get CSS3111: #font-face encountered unknown error (screenshot)
Further googling led me to this SO question that actually answers to my problem. It says even if I convert the font file to Base64 the Win10+IE11 will still prevent it while converting and loading into the memory for execution.
Interestingly I found major Font and icon vendors are not attempting to figure out a workaround for this as I can see none of their website shows up properly on Win10+IE11. Even Microsoft's own site (outlook.office.com) has this issue.
Now my questions are:
Is there any workaround that can help me to fix the issue
If no workaround then is it a good idea to have a end user warning popup to switch to more supported browser with user agent detection?
Thanks in advance.
I'm using a Samsung Wave 2 with Bada OS on it. I'm wondering if I can see / backup my saved passwords on Dolfin Browser. I can code if required.
It seems the l/p pairs are stored in \User\Br\SFB\FF.dat. I may be wrong though; it's just some hours ago that I've started examining the full file system content of Bada 1.x. Of course the file is fully encrypted.
I will quickly check out whether, after enabling TKFileExplorer on the phone itself (see the mini-tutorial at http://www.mortara.org/board/viewtopic.php?f=14&t=138#p417 for more info), you can access the full file system from inside Bada apps. To browse it from a PC, I recommend TkFileExplorer 2.4 (NOT 2.2, it didn't work with my 723) available at http://forum.xda-developers.com/showpost.php?p=12515691&postcount=20 .
Will report back soon on the sandbox restrictions of TKFileExplorer'ed phones - hope they behave like jailbroken iOS ones (read: no sandbox any more).
Has anyone run into problems getting Crystal XI to embed fonts when displaying reports via the web (served by RAS) and then exporting to PDF? We have a barcode font that we use in a few reports, and it worked fine via the web viewer and when exporting to PDF. When we moved our reporting server from a 2000 box to a 2003 box, the font is no longer exported. It does display properly in the html viewer, but when you export it to PDF to print, the PDF doesn't contain the font. The True Type font is installed on the new server, with scandalously lenient permissions, and the font is installed on all the client machines. Is there no way to start Crystal in some sort of "debug" mode where it will emit info on what it is doing?
(Edited to specify that it is only when exporting to PDF through a page served by RAS that the font is not embedded)
So far I've come across some info that doesn't help me but might help others with similar symptoms:
One issue that can arise is that Crystal won't embed fonts that have DRM on them. See this utility to remove DRM if need be. Microsoft also has a utility to tell you more than you ever wanted to know about your true type fonts, including their "embeddable" status. Sadly, my fonts are already embeddable so this did not help me.
EDIT: FOUND SOLUTION!
The solution here worked for me. The relevant part was this:
On the Windows 2003 PC open Control
Panel, and double click on Regional
and Language Options. Click on the
Language Tab and check on Install
Fonts for complex scripts.... Now
click on the Advanced tab and in
Default user account settings check on
apply all settings....
For the folks stuck with this problem on Windows 2008, I got barcodes working after I did the following:
Install the Crystal Runtime.
Open the fonts folder and select "Font Settings." Make sure the "Hide fonts based on language settings" option is not checked.
Make sure you have a 3 of 9 barcode font installed on the server and its "Font Embeddability" is "Installable". Also make sure the file is not blocked.
Set your "Load User Profile" setting under the App Pool Advanced Settings to True.
After after doing the above and rebooting, my barcodes started to work.
On our Windows Server 2012 R2 - only a reboot required after installing our (DRM-appropriate) font. That is with runtime 13_0_15.
Why you still have to reboot after installing a font is a question for the ages.
Windows Server 2008 supposedly already has fonts for complex scripts enabled according to the article here.
The option "Advanced tab and in Default user account settings check on apply all settings" setting is similar in Server 2008 but you can select Default User And and / or System accounts.
This solution worked on Server 2003 and we are testing it on Server 2008. Note that on Server 2003 we had to perform a complete system restart in order for the changes to take affect.