The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

hotlinking and htaccess

Discussion in 'Data Protection' started by bxy, Sep 6, 2007.

  1. bxy

    bxy Member

    Joined:
    Feb 13, 2005
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    My server recently upgraded? cpanel and now my htaccess file is being ignored / overridden. Turning hotlinking on or off in cpanel makes no diference, even cought your little "alow direct" how funny, not! You do a great job of screwing up my htaccess, pure sloppy code guys. Now a little history. My htaccess file has been in place unmodified and has worked fine for years. Now my server upgrades cpanel, and now everyone can hotlink. And yes my server has been working on this for days, and can't get the hotlinking to stop.

    Also worth note, for some reason your gui keeps putting the line
    rewritecond %{HTTP_REFERER} iaea\.org [NC,OR]
    into my htaccess, nothing against iaea.org, but that has nothing to do with my domain, no relation in ownership, in name, or in content. but cpanel keeps adding that line

    My question is as a user how do I disable cpanels control of my htaccess. I don't want cpanel taking any action regarding htaccess.
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,447
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    What version of cPanel are you using? Have you checked the changelog for fixes?
    http://changelog.cpanel.net/

    Your hosting company is the one who you should be asking this to. Short of that, have you bothered to search the forums for similar problems and possible fixes that might help?
    Might also try and submit a support ticket and see what the guys at cPanel have to say about it.
     
  3. bxy

    bxy Member

    Joined:
    Feb 13, 2005
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    Thankyou Infopro, I am glad to see someone here has the honor to answer. I am my own host and I host 20 or so other domains. But The Plenet forces cPanel on everyone and often hires tecks who's second language is english. A lot of them try hard, but they can never have the comprehention of your product that you have.

    The Version of cPanel is 10

    And your cPanel wants to apply a global htaccess which is not practical on large complex domains. ie credit card processor one needs access to directorys 1, 2, 4, 500, 3987; where credit card processer two needs access to directories 3, 7, 9, 1005; etc.

    Enable htaccess in cPanel and you have everything locked down and only accessable through one global protection, no open content, no alternet protection... Disable htaccess in your cPanel and the whole bleeping thing is wide open, ignoring any local htaccess.

    And asking someone else to do something complex with Apache is not practacle as if they understood it that well they would not need to by a gui from you.
     
  4. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Version 10 hasn't been available for over 6 months now. Perhaps you are just on the old X and X2 themes instead of the newer X3 theme. Check the sidebar on the login screen for cPanel version number, not at the top. If it says version 11, then all they need to do is change your theme.

    Are you saying that when you enable password protection, it is for the whole website? cPanel does have the ability to password protect different directories with different accounts. It isn't an all or nothing system. I use it myself to password protect specific directories of one of my personal websites.

    Are you sure you aren't inadvertently password protecting your entire website? An update to the X3 theme may assist here as the X3 interface is much more user-friendly and thus less prone to inadvertent issues.
     
  5. bxy

    bxy Member

    Joined:
    Feb 13, 2005
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    Thanks David, Yes you are corect it is 11.18.2-RELEASE 21594 to be exact, it says CPANEL 10 at the top just below your logo, and it is x2 theme.

    I have not used cPanel to enable pasword protection, my current processors both require their htaccess file in directories they controle, your hotlink protection is taking the global controle, including disabling both my processors htaccess. And I also use htaccess to create password directories, which is also disabled by your hotlink protection.

    Your hotlink protection only gives two choices, enable or disable. choose diable and everything is wide open, no htaccess file in any directory is paid any attention to. choose enable and, well of course it is only at the root, so there can be one htaccess for the whole domain (a phenomina caused by cPanel).

    I don't want to use cPanels hotlink protection, nor password protection, I have near a hundred thousand pages on one domain alone, this would be a nightmare to reconfigure and learn something new. I just want what has worked for years to be left in place and alowed to do the job it was designed to do without some gui messing with it.

    A wild guess would be something in mod rewrite telling it to look to cPanel instead of htaccess, which a simple use local choice setting could be added to your gui that would end these nightmares every time someone updates cPanel
     
  6. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    If you have root access, I'd recommend having someone look into that for you: http://tickets.cpanel.net/submit

    If you do not have root access to the server, inform your hosting provider and they can have us look into this issue for you.
     
  7. bxy

    bxy Member

    Joined:
    Feb 13, 2005
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    No if I had root access, I wouldn't have this problem, I like to code. When I had my own servers they ran smooth, no gui's. No offence, but I'd bypass the gui's in a heatbeet if I had root.

    They did talk to you back when I first encountered this fenomina, and you showed someone over at The Planet how to totaly remove hotlink controle from cPanel, and everything worked great again. Now hotlink protection is back in my cPanel (probably from an update if I were to guess, or maybe a restored backup) and the problem is back with it. But I take it that gentilman is no longer at The Planet, and he would never convey to me how he did it, else I would tell the guys there now how he fixed it.

    If you rember that situation, or they do talk to you again, I would apreciate a coppy of the fix so I don't have to suffer the nightmare again.
     
  8. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Removing an icon from the cPanel interface will not automatically modify any .htaccess files.

    However, to remove an icon from the cPanel interface, simply go to WHM -> Packages -> Feature Manager and create a feature list. You should be able to do this even if you only have reseller access. In that list, uncheck the functionality you don't want to see and assign that feature list to a package (create a package if necessary) then assign that package to your account.

    If you don't have reseller access, then the only productive advice I can provide is to contact your hosting provider regarding this issue.
     
  9. bxy

    bxy Member

    Joined:
    Feb 13, 2005
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    If it takes functionality out, that might solve it. Thankyou.
     
  10. bxy

    bxy Member

    Joined:
    Feb 13, 2005
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    worked flawlessly and returned 100% controle to my htaccess files. Thank You!
     

Share This Page