August 1, 2012 at 12:09 pm #47883
Really? You don’t think I should be concerned about compromising the site’s security?August 1, 2012 at 12:17 pm #47884
when I add that line to my php.ini file, I get this error when I try to edit my products from the wordpress dashboard.
Warning: require_once() [function.require-once]: open_basedir restriction in effect. File(/nfs/c07/h03/mnt/105219/domains/unfetteredmovement.org/html/wp-load.php) is not within the allowed path(s): (none) in /nfs/c07/h03/mnt/105219/domains/unfetteredmovement.org/html/wp-admin/admin.php on line 30
Warning: require_once(/nfs/c07/h03/mnt/105219/domains/unfetteredmovement.org/html/wp-load.php) [function.require-once]: failed to open stream: Operation not permitted in /nfs/c07/h03/mnt/105219/domains/unfetteredmovement.org/html/wp-admin/admin.php on line 30
Fatal error: require_once() [function.require]: Failed opening required ‘/nfs/c07/h03/mnt/105219/domains/unfetteredmovement.org/html/wp-load.php’ (include_path=’.:/usr/local/php-5.3.13/share/pear’) in /nfs/c07/h03/mnt/105219/domains/unfetteredmovement.org/html/wp-admin/admin.php on line 30August 1, 2012 at 12:29 pm #47885
Okay, take that line back out. Please complete my contact form at https://TheAssurer.com/contact and I will get back to you, later today (around 16:00 GMT-7) about looking at your system.August 3, 2012 at 3:31 am #47886
I looked at your system. We have a classic case of a hosting provider that turns on every security setting possible; resulting in a system that “is secure, because it can’t do anything useful.”
1. Your hosting provider has turned off URL aware fopen() functionality. This causes eStore to always select the cURL download method.
2. Your hosting provider also has PHP safe mode turned on. This also causes scripts in the download manager to fail.
3. Your hosting provider has open_basedir restrictions turned on. This causes failures when a simple file_exists() function is called, among other things.
The resolution is for your hosting provider to relax some of the restrictions on your server. Turning on as many security features as possible, just because they can; is not good security.
P.S. Please inform your provider that PHP safe mode, and open_basedir restrictions have been depreciated/removed, as of version 5.4 of PHP; mostly because of over zealous usage.August 3, 2012 at 10:43 am #47887
I will contact them. But this is very strange as they told me that the PHP safe mode was turned off by default.August 3, 2012 at 7:06 pm #47888
Thanks for looking into this. I spoke to my hosting provider who tells me that I will need to make these changes to the php.ini file myself. I will attempt to do this, but I will need to know EXACTLY what to add as I am not a programmer and I understand just enough php to get by.
Thank you. I really hope we can get this resolved soon.August 3, 2012 at 9:45 pm #47889
Please try adding the following lines to your php.ini file:
safe_mode = off
allow_url_fopen = on
The “open_basedir” line should have nothing after the equals sign.
Also, if the lines already exist in you php.ini file (look for them first), change the settings as appropriate; otherwise, add them to the end of the file.August 3, 2012 at 10:26 pm #47890
hooray! it seems to have worked. thanks a million. there is absolutely no way I would have ever sorted this out without your helpAugust 3, 2012 at 10:42 pm #47891
- You must be logged in to reply to this topic.