URLs are not working in beta11
Moderators: OldWolf, re*s.t.a.r.s.*2
24 posts
• Page 2 of 2 • 1, 2
by phpfreechat » Mon Jul 30, 2007 11:20 am
csstidy is only used to parse css stylesheets at chat loading ... it's not used at all to parse urls.
- phpfreechat
- Site Admin
- Posts: 2657
- Joined: Tue Feb 07, 2006 3:35 pm
- Location: France
by King Moonraiser » Thu Aug 23, 2007 11:24 pm
zovall wrote:Also, my site is hosted at Dreamhost. Any ideas?
Same here! There has to be a connection.
- King Moonraiser
- Member
- Posts: 98
- Joined: Fri Jun 22, 2007 9:42 pm
by King Moonraiser » Sat Aug 25, 2007 1:03 am
I think I found the culprit!
Dreamhost has implemented an add-on called mod_security. Other hosts may have done the same.
It's on by default. To disable it go to your dreamhost panel, and do the following: Control Panel -> Domains -> Manage Domains Screen. Select the "edit" link under the "Actions" column on the right side of the screen adjacent to the domain in question, uncheck the setting for Extra Web Security," and submit the form.
However, I've found a workaround. Simply create a .htaccess file containing the following in your chat directory:
That way you can keep mod_security on for the rest of your domain.
Dreamhost has implemented an add-on called mod_security. Other hosts may have done the same.
It's on by default. To disable it go to your dreamhost panel, and do the following: Control Panel -> Domains -> Manage Domains Screen. Select the "edit" link under the "Actions" column on the right side of the screen adjacent to the domain in question, uncheck the setting for Extra Web Security," and submit the form.
However, I've found a workaround. Simply create a .htaccess file containing the following in your chat directory:
- Code: Select all
<IfModule mod_security.c>
SecFilterEngine Off
</IfModule>
That way you can keep mod_security on for the rest of your domain.
Last edited by King Moonraiser on Sat Aug 25, 2007 1:17 am, edited 1 time in total.
- King Moonraiser
- Member
- Posts: 98
- Joined: Fri Jun 22, 2007 9:42 pm
by King Moonraiser » Sat Aug 25, 2007 3:03 am
zovall wrote:Which folder are you placing this .htaccess file into?
I've tried the src folder and the phpfreechat-1.0-beta11 folder to no avail.
Put it in the phpfreechat-1.0-beta11 folder. Make sure the file is really named ".htaccess" and has 644 access on it. Files on linux that begin with a "." are hidden files.
Of course, you should try disabling the "Extra Security" if the .htaccess file doesn't work.
UPDATE: Using the .htaccess file I posted turns off ALL mod_security for the chat software. On my Dreamhost account, I have found that this works without disabling other potentially helpful features of mod_security:
- Code: Select all
<IfModule mod_security.c>
<Files index.php>
SecFilterInheritance Off
</Files>
</IfModule>
We want to keep as much of mod_security running to protect the application without preventing it from working altogether.
Last edited by King Moonraiser on Sat Aug 25, 2007 3:01 pm, edited 1 time in total.
- King Moonraiser
- Member
- Posts: 98
- Joined: Fri Jun 22, 2007 9:42 pm
by zovall » Thu Aug 30, 2007 4:37 pm
Thanks for the advice KM!
I actually had to place:
in the .htaccess of my forum software a few directories up from the phpfreechat folder.
Also, replacing the above code with:
didn't work for me.
Things are working fine now although I understand that security may not be as tight as could be.
I actually had to place:
- Code: Select all
<IfModule mod_security.c>
SecFilterEngine Off
</IfModule>
in the .htaccess of my forum software a few directories up from the phpfreechat folder.
Also, replacing the above code with:
- Code: Select all
<IfModule mod_security.c>
<Files index.php>
SecFilterInheritance Off
</Files>
</IfModule>
didn't work for me.
Things are working fine now although I understand that security may not be as tight as could be.
- zovall
- New member
- Posts: 5
- Joined: Thu Aug 23, 2007 6:40 pm
24 posts
• Page 2 of 2 • 1, 2
Return to General Support (v1.x)
Who is online
Users browsing this forum: No registered users and 7 guests
