XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk
  1. Board index / 
  2. XOOPS Community Support forums / 
  3. Beginner's Corner 
  4.  / can some one advise
Register
1
jimbo51
can some one advise

  • 2010/5/10 18:30

  • jimbo51

  • Just popping in

  • Posts: 3

  • Since: 2010/5/10


WARNING: Folder /home/letshagg/public_html/bl/xoops_lib is inside DocumentRoot!
For security considerations it is highly suggested to move it out of DocumentRoot.
the above I get when i go to admin i get it for xoops_ lib and xoops_data folders but if I do as it says the site crashes by saying they are missing.
2
bjuti
Re: can some one advise

  • 2010/5/10 22:31

  • bjuti

  • Just can't stay away

  • Posts: 871

  • Since: 2009/1/7 2


Well, put the lib and data dirs in /home/letshagg/ and change paths in mainfile.php also.
3
deka87
Re: can some one advise

  • 2010/5/11 5:53

  • deka87

  • Friend of XOOPS

  • Posts: 1125

  • Since: 2007/10/5


is there a notice about it in faq? i wonder cos there is a question of this type every couple of days
Mind anchors
4
jimbo51
Re: can some one advise

  • 2010/5/11 7:19

  • jimbo51

  • Just popping in

  • Posts: 3

  • Since: 2010/5/10


Thanks for replys.
5
jimbo51
Re: can some one advise

  • 2010/5/11 10:08

  • jimbo51

  • Just popping in

  • Posts: 3

  • Since: 2010/5/10


I did as you suggested but still same as before evan tryed to move the dirs to outside public_html and edited the main file with poor results lol at moment unenstalled it going to reinstall myself and not use the cp auto install of my webhost.
6
Mamba
Re: can some one advise

  • 2010/5/11 11:03

  • Mamba

  • Moderator

  • Posts: 11366

  • Since: 2004/4/23


Make sure, you read the detailed Installation Guide
Support XOOPS => DONATE
Use 2.5.10 | Docs | Modules | Bugs
7
zyspec
Re: can some one advise

  • 2010/5/11 21:43

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


The other thing you should know is that some shared hosting plans just don't like you having things outside your document root. If this is the case with your hosting company then you will either just have to live with the warning messages or comment them out.

I've had to do that for a few customers who use inexpensive hosting packages.
8
ghia
Re: can some one advise

  • 2010/5/12 0:11

  • ghia

  • Community Support Member

  • Posts: 4953

  • Since: 2008/7/3 1


There are also many that have a special directory reserved for this kind of things, called eg private, data, tmp, etc.
9
welshdog
Re: can some one advise

  • 2010/9/24 8:01

  • welshdog

  • Just popping in

  • Posts: 2

  • Since: 2009/6/27


How serious a 'security issue' is it to leave the files in place??

Fiddling with mainfile.php isn't something I feel comfortable with!
10
ghia
Re: can some one advise

  • 2010/9/24 10:01

  • ghia

  • Community Support Member

  • Posts: 4953

  • Since: 2008/7/3 1


That is difficult to say. How much safer is a car with a security belt, airbag, ...? One thing is sure: every bit helps.
You should at least rename the directories (which involves also the editing of mainfile.php) and have the .htaccess in place (see XOOPS 2.4.5).

Don't be shy to make modifications.
Copy simply mainfile.php to mainfile.old.php or something.
Then copy the directories to the new place or name.
Adapt the mainfile.php (watch out for not destroying punctuation).
Check if it works.
If not, replace mainfile.php by the copy and your site will run again.
Either way remove superfluous copies.

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

197 user(s) are online (125 user(s) are browsing Support Forums)

Members: 0

Guests: 197

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: May 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits