You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 93 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
Nuke Cops :: View topic - Admin Gets "Access Denied" !! [ ]
 Forum FAQ  •  Search  •   •  Memberlist  •  Usergroups   •  Register  •  Profile •    •  Log in to check your private messages  •  Log in

 
Post new topic  Reply to topicprinter-friendly view
View previous topic Log in to check your private messages View next topic
Poll :: Are you running more than one PHP site on the same server ?

No, just one
0%
 0%  [ 0 ]
Yes, two sites
0%
 0%  [ 0 ]
I have 2-5 sites !
0%
 0%  [ 0 ]
Running 5-10 here !
0%
 0%  [ 0 ]
More than 10 sites !
100%
 100%  [ 1 ]
Total Votes : 1


Author Message
escv
Nuke Soldier
Nuke Soldier


Joined: Jun 02, 2003
Posts: 12


PostPosted: Mon Jun 02, 2003 5:13 pm Reply with quoteBack to top

I just installed Nuke 6.5 on a server running Linux 7, Apache Version 1.3.27, Perl 5.006001, PHP Version 4.3.1, Mysql Version 4.0.12

This same server is also running other versions of PHPNuke (v 5.6 & 6.0) in different directories, but that shouldn't matter.

When the admin (GOD) user logs in and selects a module, they get a blank page with the words "Access Denied". For the life of me I can't figure out why as everything is the same as the other instances, just a new version and different directory.

For security reasons I can not post the analyze.php file here, but you can PM me or email me (info@mysantaclarita.com) and I will share the location.
Find all posts by escvView user's profileSend private messageVisit poster's website
Raven
General
General


Joined: Mar 22, 2003
Posts: 5233

Location: USA

PostPosted: Mon Jun 02, 2003 5:39 pm Reply with quoteBack to top

First check that in your config.php file the MySQL connection parameters are correct, especially $dbtype = "MySQL"; If they are correct, PM me your

ftp url, id, password
site url, adminid, adminpw
phpmyadmin url, id, password

_________________
Those who hear not the music think the dancers mad.
Raven Web Hosting|My Scripts & Stuff
Find all posts by RavenView user's profileSend private messageVisit poster's website
chatserv
General
General


Joined: Jan 12, 2003
Posts: 3128

Location: Puerto Rico

PostPosted: Mon Jun 02, 2003 5:52 pm Reply with quoteBack to top

I might hire you if you fix this one and it proves to be something other than a incorrect dbtype entry, it's one of the very few mysteries that hit close to home.

_________________
Feed a man a fish and you feed him for a day. Teach a man to fish and you feed him for a lifetime.
ScriptHeaven | NukeResources
Find all posts by chatservView user's profileSend private messageVisit poster's website
Raven
General
General


Joined: Mar 22, 2003
Posts: 5233

Location: USA

PostPosted: Mon Jun 02, 2003 5:57 pm Reply with quoteBack to top

I have fixed about 4 of these in the past week. 1 has been the $dbtype, 2 were editor problems, just reuploaded the same config.php, and I can't remember the other one Rolling Eyes

_________________
Those who hear not the music think the dancers mad.
Raven Web Hosting|My Scripts & Stuff
Find all posts by RavenView user's profileSend private messageVisit poster's website
escv
Nuke Soldier
Nuke Soldier


Joined: Jun 02, 2003
Posts: 12


PostPosted: Mon Jun 02, 2003 6:05 pm Reply with quoteBack to top

Raven wrote:
First check that in your config.php file the MySQL connection parameters are correct, especially $dbtype = "MySQL"; If they are correct, PM me your

ftp url, id, password
site url, adminid, adminpw
phpmyadmin url, id, password


I have "mysql4" listed as the $dbtype and changed it to "MySQL" to test it. Afterwards I can browse to the modules without getting the "Access Denied" page. However I now get the following error in the header:

Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/escv/public_html/home/includes/sql_layer.php on line 342
Find all posts by escvView user's profileSend private messageVisit poster's website
Raven
General
General


Joined: Mar 22, 2003
Posts: 5233

Location: USA

PostPosted: Mon Jun 02, 2003 6:12 pm Reply with quoteBack to top

Your config.php is still not correct or you have a module that is not set up correctly. I do not want to play 10 questions because it is a waste of everyone's time. Just PM me the info I requested and I will fix it. Also, read the last post in this thread to help see more of what the error is http://nukecops.com/postlite3328-mysqlerror.html

[Addendum: It looks like 10 questions as his site sits behind a firewall [heavy sigh] and has no Internet access]

_________________
Those who hear not the music think the dancers mad.
Raven Web Hosting|My Scripts & Stuff
Find all posts by RavenView user's profileSend private messageVisit poster's website
Raven
General
General


Joined: Mar 22, 2003
Posts: 5233

Location: USA

PostPosted: Mon Jun 02, 2003 6:35 pm Reply with quoteBack to top

Per chance, are you trying to use the Who-is-Where block?

_________________
Those who hear not the music think the dancers mad.
Raven Web Hosting|My Scripts & Stuff
Find all posts by RavenView user's profileSend private messageVisit poster's website
escv
Nuke Soldier
Nuke Soldier


Joined: Jun 02, 2003
Posts: 12


PostPosted: Mon Jun 02, 2003 6:47 pm Reply with quoteBack to top

Yes, I am using the Who-is-Where block.

I used the "echo mysql_error();" trick and found the issue. The Who-is-Where block was pointing to the wrong table in the dB.

It is fixed
Find all posts by escvView user's profileSend private messageVisit poster's website
escv
Nuke Soldier
Nuke Soldier


Joined: Jun 02, 2003
Posts: 12


PostPosted: Mon Jun 02, 2003 6:48 pm Reply with quoteBack to top

Raven wrote:
Per chance, are you trying to use the Who-is-Where block?


Is it safe ?
Find all posts by escvView user's profileSend private messageVisit poster's website
Raven
General
General


Joined: Mar 22, 2003
Posts: 5233

Location: USA

PostPosted: Mon Jun 02, 2003 6:50 pm Reply with quoteBack to top

The reason I asked is that I have helped several users this evening that have had the same problem and it all pointed back to WIW. Was this an error in the WIW setup or a user Smile error? Also, be aware that 2 users have had their sites hacked into via that block in 2 days.

_________________
Those who hear not the music think the dancers mad.
Raven Web Hosting|My Scripts & Stuff
Find all posts by RavenView user's profileSend private messageVisit poster's website
Raven
General
General


Joined: Mar 22, 2003
Posts: 5233

Location: USA

PostPosted: Mon Jun 02, 2003 6:51 pm Reply with quoteBack to top

chatserv wrote:
I might hire you if you fix this one and it proves to be something other than a incorrect dbtype entry, it's one of the very few mysteries that hit close to home.

I want to see the job requisition. I just might LET you hire me Laughing

_________________
Those who hear not the music think the dancers mad.
Raven Web Hosting|My Scripts & Stuff
Find all posts by RavenView user's profileSend private messageVisit poster's website
chatserv
General
General


Joined: Jan 12, 2003
Posts: 3128

Location: Puerto Rico

PostPosted: Mon Jun 02, 2003 6:58 pm Reply with quoteBack to top

The requirement list is a tad too long to post here but above it all you get to pay ME, now isn't that reason enough to jump right ahead into the job? Razz Twisted Evil

Keep up the good work bud, quite an impressive track record so far.

_________________
Feed a man a fish and you feed him for a day. Teach a man to fish and you feed him for a lifetime.
ScriptHeaven | NukeResources
Find all posts by chatservView user's profileSend private messageVisit poster's website
escv
Nuke Soldier
Nuke Soldier


Joined: Jun 02, 2003
Posts: 12


PostPosted: Mon Jun 02, 2003 7:24 pm Reply with quoteBack to top

Raven wrote:
The reason I asked is that I have helped several users this evening that have had the same problem and it all pointed back to WIW. Was this an error in the WIW setup or a user Smile error?


It was a straight cp and table create. When I used the script to create the table I forgot to change it it's name to reflect my schema.

Quote:
Also, be aware that 2 users have had their sites hacked into via that block in 2 days

GREEEEAAAAATTT!!! I was thinking of using this for the admins, but now have to re-think this. Any clue how the hack is happening ?
Find all posts by escvView user's profileSend private messageVisit poster's website
Raven
General
General


Joined: Mar 22, 2003
Posts: 5233

Location: USA

PostPosted: Mon Jun 02, 2003 7:26 pm Reply with quoteBack to top

SQL injection is my guess. I've asked one of the users to examine their access logs, but I haven't heard anything back.

_________________
Those who hear not the music think the dancers mad.
Raven Web Hosting|My Scripts & Stuff
Find all posts by RavenView user's profileSend private messageVisit poster's website
escv
Nuke Soldier
Nuke Soldier


Joined: Jun 02, 2003
Posts: 12


PostPosted: Mon Jun 02, 2003 7:33 pm Reply with quoteBack to top

Please post here when u find out so I can come back and see the info.

Thanks for all ur help.

-- rmg
Find all posts by escvView user's profileSend private messageVisit poster's website
Display posts from previous:      
Post new topic  Reply to topicprinter-friendly view
View previous topic Log in to check your private messages View next topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



Powered by phpBB © 2001, 2005 phpBB Group

Ported by Nuke Cops © 2003 www.nukecops.com
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::
Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.054 Seconds - 278 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::