oscommerce and php safe mode
I am running php safe mode from several weeks now , without any big problem .
But I found now that oscommerce generate an error using php safe mode ...
Warning: is_dir() [function.is-dir]: SAFE MODE Restriction in effect. The script whose uid is 32003 is not allowed to access /tmp owned by uid 0 in /home/test/public_html/oscommerce/includes/header.php on line 30
Any idea to avoid this error ?
█ Stop SPAM & VIRUS :: ASSP Deluxe for cPanel http://www.grscripts.com
█ ASSP Deluxe is supported by Fritz Borgstedt,ASSP main developer.
Ok I solved ..
when cpanel execute the oscommerce installation tag I execute this php line ..
<?
shell_exec("replace \"define('STORE_SESSIONS', '')\" \"define('STORE_SESSIONS', 'mysql')\" -- /home/$auserb/public_html/$url/includes/configure.php");
?>
In this way oscommerce works fine with php safe mode saving
the session on mysql .
█ Stop SPAM & VIRUS :: ASSP Deluxe for cPanel http://www.grscripts.com
█ ASSP Deluxe is supported by Fritz Borgstedt,ASSP main developer.
you can also define the session in the OSC configure.php file.
Look in /includes/configure.php
last line asks where you want to store sessions. Just insert 'mysql' in between the qoutes.
This will have to be done for both the store frontend and the admin area.
yes , infact my php lines above make exactly thatOriginally posted by mrbill
you can also define the session in the OSC configure.php file.
Look in /includes/configure.php
last line asks where you want to store sessions. Just insert 'mysql' in between the qoutes.
This will have to be done for both the store frontend and the admin area.They assign
mysql on configure.php .
█ Stop SPAM & VIRUS :: ASSP Deluxe for cPanel http://www.grscripts.com
█ ASSP Deluxe is supported by Fritz Borgstedt,ASSP main developer.
Why not just modify the configure.php in the osCommerce tar package:
/usr/local/cpanel/addons/osCommerce/pkg.tar.gz
Will cpanel updates overwrite this?
Also, are there other bad consequences of turning on safe mode for users?
I modified the osCommerce package file located in /usr/local/cpanel/addons/osCommerce/pkg.tar.gz so that the configure.php file in there uses mysql to store sessions. However I noticed that it's always reverting back. This tells me Cpanel updates are overwriting it.
I can do a chattr but then if there are critical updates I might miss them. How are you guys doing the php replace script upon user install of osC? Modify the cpanel html files?
cPanel.net Support Ticket Number:
Anyone submitted a ticket on this ?
maybe it's just more simple to tell DarkOrb to put 'mysql' as default ...
I think most of us use safe mode ... you know what that evil php shell script does ... heh
Regards.
cPanel.net Support Ticket Number:
Carlos Ariel Sepúlveda
CAS company :: 1997-2011, 14 Years! :: Dedicated Attitude
http://www.cascompany.com :: Providing CPANEL/WHM Servers since 2002 !
Replace the package???
Why do you do things the hard way? Just do this:
Uncoment the second line in each (remove '#'):
#do we need this?
#regsrep("$installdir/includes/configure.php","\\(\'STORE_SESSIONS\'","define('STORE_SESSIONS', 'mysql');");
#do we need this?
#regsrep("$installdir/admin/includes/configure.php","\(\'STORE_SESSIONS\'","define('STORE_SESSIONS', 'mysql');");
in the file:
/usr/local/cpanel/addons/osCommerce/install
Regards,
~ Dani
Last edited by NiN; 06-04-2003 at 05:28 AM.
~ DM
oscommerce recently started again to show safe mode on errors ..
as it seems storing session on mysql is no more enough (!)
Anyone found a turnaround ?
█ Stop SPAM & VIRUS :: ASSP Deluxe for cPanel http://www.grscripts.com
█ ASSP Deluxe is supported by Fritz Borgstedt,ASSP main developer.
Did you find a solution? I'm getting safe mode errors even though sessions are set to use mysql.Originally Posted by Radio_Head
Michael
Open
/home/user/public_html/catalog/include
change
define('STORE_SESSIONS', '');
with
define('STORE_SESSIONS', 'mysql');
Open
/home/user/public_html/catalog/includes/functions/sessions.php
change
function tep_session_save_path($path = '') {
if (!empty($path)) {
return session_save_path($path);
} else {
return session_save_path();
}
}
with
function tep_session_save_path($path = '') {
if (!empty($path)) {
return @session_save_path($path);
} else {
return @session_save_path();
}
}
open
/home/user/public_html/catalog/admin/includes/functions/sessions.php
change
function tep_session_save_path($path = '') {
if ($path != '') {
return session_save_path($path);
} else {
return session_save_path();
}
}
with
function tep_session_save_path($path = '') {
if ($path != '') {
return @session_save_path($path);
} else {
return @session_save_path();
}
}
I am using these changes without any problem from 1 sept .( I am using
a customized php cpanel skin , and I aplly these change automatically using the
php shell exec command )-
Last edited by Radio_Head; 09-24-2005 at 05:48 AM.
█ Stop SPAM & VIRUS :: ASSP Deluxe for cPanel http://www.grscripts.com
█ ASSP Deluxe is supported by Fritz Borgstedt,ASSP main developer.
Thank you very much - that works fine!
Michael
solution
We use the following solution:
1. Login into WebHost Manager
2. Go to phpMyAdmin
3. Find the corresponding database
4. Browse the 'configuration' table.
5. Change the record WHERE configuration_key says "SESSION_WRITE_DIRECTORY" and change the configuration_value to /home/username/tmp
ofcourse username should be replaced with the correct username.
This is a bugfix for the session_save_path problem and also makes the osCommerce installation more secure.
dutch howto's and articles http://turnred.net
LinkBack URL
About LinkBacks
Reply With Quote