reg_globals

**Trivium** · 07-16-2008, 02:10 PM

Re: reg_globals

also,if im not running joomla anymore,can i delete this htaccess file?

**navaldesign** · 07-16-2008, 02:13 PM

Re: reg_globals

There is NO original hraccess file, or if there is, it is blank. Obviously this is still there from the Joomla time.

To make sure if register_globals is Off, run phpinfo().

If it is on, turn it off locally with the following script:

<?php
$parm[] = "register_globals = Off";
// full unix path - location of the default php.ini file at your host
// you can determine the location of the default file using phpinfo()
$defaultPath = '/usr/local/lib/php.ini';
// full unix path - location where you want your custom php.ini file
//$customPath = "/path/php.ini";
$customPath = "php.ini";
// nothing should change below this line.
if (file_exists($defaultPath)) {
$contents = file_get_contents($defaultPath);
$contents .= "\n\n; MODIFIED THE FOLLOWING USER PARAMETERS:\n\n";
foreach ($parm as $value) $contents .= $value . " \n";
if (file_put_contents($customPath,$contents)) {
if (chmod($customPath,0600)) $message = "<b>PHP.INI File modified and copied.</b>";
else $message = "PROCCESS ERROR - Failed to upadate php.ini.";
} else {
$message = "PROCCESS ERROR - Failed to write php.ini file.";
}
} else {
$message = "PROCCESS ERROR - php.ini file not found.";
}
echo $message;
?>

Copy the code, paste it in Notepad, ave it as "modify_php_ini.php" using the Save As command.
Upload it in the root folder of your script, and run it in your browser. It will create a copy of the original php.ini file in your own folder, BUT it will also set the register_globals to Off for the specific folder and subfolders.
If you place it in public_html, it will set register_globals to Off for the entire site.

Yes, you can delete the .htaccess file.

**Trivium** · 07-16-2008, 09:00 PM

Re: reg_globals

ok,in did what you said,after running it in browser, i ran mysite/community/admin/phpinfo.php and it still says its on in local and master

**navaldesign** · 07-16-2008, 09:23 PM

Re: reg_globals

What's your site ?

**Trivium** · 07-16-2008, 11:32 PM

Re: reg_globals

http://placidplace.net

**navaldesign** · 07-16-2008, 11:37 PM

Re: reg_globals

Sorry, but that is a protected folder, so i can't see anything

**Trivium** · 07-20-2008, 03:02 PM

Re: reg_globals

ok,dolphin just issued a patch for hosts with reg_globals on so i think im ok for now on that.

However,i do need to enable xsl,here is a post from another member running dolphin,

This is the answer I got and I sent it to my hostng coming and they applied the suggestion and fixed it.

here we go
=========================================
SergeyZ
13 days ago 0

This is an issue of Orca with client-side xslt-transformation in Firefox. To enable server-side transformation you should configure (recompile) your PHP with following options: --enable-xslt --with-xslt-sablot OR --with-dom-xslt (for PHP 4) or --with-xsl (for PHP 5).

**Trivium** · 07-20-2008, 03:14 PM

Re: reg_globals

ok,here is what i found that i need exactly,

Technical Requirements �

Linux/Unix (RedHat, Debian, FreeBSD, Mandrake, etc.) or Windows OS
Apache Web Server
PHP 4.4.0/5.1.0 and higher compiled with XML and XSL
MySQL 4.1.0 and higher

Server Configuration �

PHP server configuration for XML and XSL.
Run phpinfo() on your server to check PHP settings.

PHP 4 version must have these compiled options to run the script correctly:

--with-dom --enable-xslt --with-xslt-sablot

**navaldesign** · 07-20-2008, 04:54 PM

Re: reg_globals

As they say, run phpinfo() on your account to see if your settings are ok.

**Trivium** · 07-20-2008, 07:34 PM

Re: reg_globals

the question is,how can i get them changed?

**Trivium** · 07-23-2008, 02:57 PM

Re: reg_globals

ive been informed,even after patch for dolphin i still should have reg globals off.i have tried but to no avail.Dolphin sites are being hacked because of this.I love the dolphin script and i also love vodahost,what can we do to rectify this?If you need my cpanel info,im sure you can get it to help me or you can email me at trivium97 Y a h o o .com

I believe i have 2 options here,
1 have my host help me get it turned off
2 find a host that will

**navaldesign** · 07-23-2008, 03:04 PM

Re: reg_globals

VodaHost can NOT turn the reg_globals off because this is a shared hosting and other users may need it On.
Your best bet is to turn register globals off by using a local php.ini file.

My experience with VH servers is that by using the script i have provided, you can turn them Off. If you can't it is quite probably a mistake on your end.

If you wish to have someone turn them off for you, you will need to ask (and pay) for it.
if you wish contact me through my site contact form.

**Trivium** · 07-29-2008, 02:22 PM

Re: reg_globals

hi navel,
copied that script and saved in notepad,uploaded it to public html,ran in browser then looked again and both values are still on.Is something wrong with that script,ive done this more than 4 times thinkin im doing it wrong but im not.Again,my reg globals is on.How do i contact voda and talk to a superior,this is very important to me and im paying voda for service,i dont feel i should have to pay more to have a change made on my acct?

**Trivium** · 07-29-2008, 03:05 PM

Re: reg_globals

nvmnd,i just submitted a ticket

reg_globals

reg_globals

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment