Author Topic: [1.7 / 1.7.1] Security fix in sessions.php  (Read 269250 times)

0 Members and 1 Guest are viewing this topic.

Offline nd.h

  • Pre-Newbie
  • Posts: 2
    • View Profile
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #30 on: June 21, 2005, 02:28:46 PM »
*hust* ... hab's gelesen und ausgeblendet...
Sorrry  :oops: :oops:

Danke nochmal !!!
the foolish ones taught more to me
than the wise ones ever could
calvin russel

Offline Eppi

  • Pre-Newbie
  • Posts: 4
    • View Profile
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #31 on: June 26, 2005, 11:38:24 PM »
Wenn ich die Version 1.7.1 heute heruntergeladen habe, muss ich dan diese Änderung auch vornehmen?

Offline Jan

  • Administrator
  • 4images Guru
  • *****
  • Posts: 5.024
    • View Profile
    • 4images - Image Gallery Management System
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #32 on: June 27, 2005, 01:43:09 PM »
Nein
Your first three "must do" before you ask a question:
1. Forum rules
2. FAQ
3. Search

Offline darkcurves

  • Full Member
  • ***
  • Posts: 114
    • View Profile
    • KTM Railway Fan Club - Gallery
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #33 on: July 05, 2005, 04:05:24 AM »
I cant seem to find that line in version 1.7.1. It's sessions.php right?

Offline V@no

  • If you don't tell me what to do, I won't tell you where you should go :)
  • Global Moderator
  • 4images Guru
  • *****
  • Posts: 17.849
  • mmm PHP...
    • View Profile
    • 4images MODs Demo
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #34 on: July 05, 2005, 05:24:46 AM »
Your first three "must do" before you ask a question:
Please do not PM me asking for help unless you've been specifically asked to do so. Such PMs will be deleted without answer. (forum rule #6)
Extension for Firefox/Thunderbird: Master Password+    Back/Forward History Tweaks (restartless)    Cookies Manager+    Fit Images (restartless for Thunderbird)

Offline darkcurves

  • Full Member
  • ***
  • Posts: 114
    • View Profile
    • KTM Railway Fan Club - Gallery
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #35 on: July 06, 2005, 12:45:20 PM »
Cant find it. If you dont believe me, please check at http://usa.57host.com/cantfindit/sessions.php .

Offline RoadDogg

  • Sr. Member
  • ****
  • Posts: 488
    • View Profile
    • Düsipixel
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #36 on: July 06, 2005, 10:24:59 PM »
I can´t download your sessions.php, please save it as sessions.txt
When have you downloaded your 4images software? In currently download version it´s already fixed.
Do you have phpbb integrated 4images?
For support requests please don´t forget link to your Gallery/to phpinfo.php
Code: [Select]
<?
phpinfo()
?>
safe_mode must turned OFF
Please check Error Messages

Offline kashiftiwana

  • Pre-Newbie
  • Posts: 3
    • View Profile
    • JustPakistan
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #37 on: July 07, 2005, 12:16:21 AM »
W :D W , what i say  8) , i was install 4images with postnuke and alwayz wanted that both working in same database, try many things but never got working both , finally i install postnuke module pn4images, now both was working but got only one error, when i add this security fix, error gone  :D
thank you guys, you dont know how much i appreciate your work n time & also this security fix :wink:

Offline morningstar

  • Pre-Newbie
  • Posts: 5
    • View Profile
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #38 on: July 08, 2005, 01:19:52 PM »
omg im having problems i cant even get on my s4image gallery let alone fix it can anyone help, im getting a error message saying:


Warning: mysql_connect(): Too many connections in /home/sue/public_html/gallery/includes/db_mysql.php on line 39

DB Error: Could not connect to the database server (localhost, sue_imga1).

Offline Kane

  • Newbie
  • *
  • Posts: 23
    • View Profile
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #39 on: July 08, 2005, 05:52:38 PM »
What about for those os us who have integrated the script with vbulletin?

My line says this

$user_id = ($this->read_cookie_data(COOKIE_PREFIX."userid")) ? $this->read_cookie_data(COOKIE_PREFIX."userid") : GUEST;

What do I change it to?

Offline ID25

  • Full Member
  • ***
  • Posts: 125
    • View Profile
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #40 on: July 08, 2005, 10:39:37 PM »
When i fix this problem - my sessions living about 5-15sec.

Where is problem?

Offline V@no

  • If you don't tell me what to do, I won't tell you where you should go :)
  • Global Moderator
  • 4images Guru
  • *****
  • Posts: 17.849
  • mmm PHP...
    • View Profile
    • 4images MODs Demo
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #41 on: July 08, 2005, 11:58:52 PM »
@morningstar:
I have no idea why u wasted your (and our) time replying to this topic with absolutely unrelated issue!

@kane:
which integration are u talking about? Integration 4images 1.7 / vBulletin 2.x? if so, then its seems to be fixed already.

@ID25:
Unless u did something else wrong, this fix could NOT possible affect anything in the way u've discribed.
Your first three "must do" before you ask a question:
Please do not PM me asking for help unless you've been specifically asked to do so. Such PMs will be deleted without answer. (forum rule #6)
Extension for Firefox/Thunderbird: Master Password+    Back/Forward History Tweaks (restartless)    Cookies Manager+    Fit Images (restartless for Thunderbird)

Offline darkcurves

  • Full Member
  • ***
  • Posts: 114
    • View Profile
    • KTM Railway Fan Club - Gallery
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #42 on: July 10, 2005, 08:10:39 PM »
I can´t download your sessions.php, please save it as sessions.txt
When have you downloaded your 4images software? In currently download version it´s already fixed.
Do you have phpbb integrated 4images?

Yeah, it's integrated with PHPBB. Here is the new link:

http://usa.57host.com/cantfindit/sessions.txt

Offline V@no

  • If you don't tell me what to do, I won't tell you where you should go :)
  • Global Moderator
  • 4images Guru
  • *****
  • Posts: 17.849
  • mmm PHP...
    • View Profile
    • 4images MODs Demo
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #43 on: July 10, 2005, 08:52:16 PM »
replace
Code: [Select]
  $user_id = ( isset($sessiondata['userid']) ) ? $sessiondata['userid'] : GUEST;to:
Code: [Select]
  $user_id = ( isset($sessiondata['userid']) ) ? intval($sessiondata['userid']) : GUEST;
Your first three "must do" before you ask a question:
Please do not PM me asking for help unless you've been specifically asked to do so. Such PMs will be deleted without answer. (forum rule #6)
Extension for Firefox/Thunderbird: Master Password+    Back/Forward History Tweaks (restartless)    Cookies Manager+    Fit Images (restartless for Thunderbird)

Offline mWelle

  • Newbie
  • *
  • Posts: 13
    • View Profile
Re: [1.7,1.7.1] Security fix in sessions.php
« Reply #44 on: July 15, 2005, 08:48:40 AM »
Quote
When i fix this problem - my sessions living about 5-15sec.

das gleiche problem, es häufen sich nach einfügen des fixes die beschwerden der user das sie alle naselang rausgeschmissen werden.
mfg
mWelle