[CONFIRMED+FIX] Joomla! 1.0.13 Admin session dies for certain $task values

Confirmed bugs that have been Fixed - Joomla 1.0.x



[New Threads cannot be started in this forum]
User avatar
greenarrow
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 196
Joined: Fri Aug 24, 2007 5:02 am

Re: [CONFIRMED+FIX] Joomla! 1.0.13 Admin session dies for certain $task values

Postby greenarrow » Fri Jan 04, 2008 4:25 am

:) :) :) :) Thank Bro Thank You Very Much. I Got it

User avatar
greenarrow
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 196
Joined: Fri Aug 24, 2007 5:02 am

DOWNLOAD HOTFIX FOR JOOMLA - Also for eXtplorer component

Postby greenarrow » Fri Jan 04, 2008 4:33 am

:) THE eXtplorer COMPONENT FOR JOOMLA HOT FIX PROBLEM IS SLOVED. DOWNLOAD IT FROM THE FOLLOWING LINK.

ALSO READ THE INSTALLATION DETAILS THERE


DOWNLOAD HOTFIX FOR JOOMLA : http://forum.joomla.org/index.php/topic ... #msg943504




HOW TO INSTALL HOTFIX FOR JOOMLA :

The first file is index.php should replace administrator/index.php and joomla.php should replace includes/joomla.php  When you put these files in place, you will probably get logged out but once you get logged back in, the problem will hopefully be fixed.  Please do not test this on live sites though, I cannot guarantee that it works as I am working on a laptop and only have one environment to test against.

By : RobS
Development Workgroup
Joomla! Hero.




DOWNLOAD eXtplorer component : http://extensions.joomla.org/component/ ... Itemid,35/

:pop :pop :pop :pop :pop :pop :pop :)
Last edited by greenarrow on Fri Jan 04, 2008 6:09 am, edited 1 time in total.

User avatar
greenarrow
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 196
Joined: Fri Aug 24, 2007 5:02 am

Re: [CONFIRMED+FIX] Joomla! 1.0.13 Admin session dies for certain $task values

Postby greenarrow » Fri Jan 04, 2008 5:49 am

I have the same problem when i try to login first time after install hotfix . i load my browser again and try,  it give me the access.  :)

HOTFIX IS WORKING FINE.
Last edited by greenarrow on Fri Jan 04, 2008 6:11 am, edited 1 time in total.

Trank
Joomla! Fledgling
Joomla! Fledgling
Posts: 4
Joined: Tue Sep 25, 2007 10:55 am

Re: [UNDER REVIEW] Joomla! 1.0.13 Admin session dies for certain $task values

Postby Trank » Sat Jan 05, 2008 8:52 am

RobS wrote:Hi all,

I'm sorry that I have taken so long to get back here but I have just been really busy and dealing with life.  I went through and tried to rework the problem so it doesn't have this problem and I think I found a way to deal with it that it is just as secure and possibly faster than the previous fix that was made.  I have attached a zip file to this post with two files in it.  The first file is index.php should replace administrator/index.php and joomla.php should replace includes/joomla.php  When you put these files in place, you will probably get logged out but once you get logged back in, the problem will hopefully be fixed.  Please do not test this on live sites though, I cannot guarantee that it works as I am working on a laptop and only have one environment to test against.


Well, after I patched that two files, I got event worse situation.  :(
There isn't any logging interface any more, and I got the following message:

Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator, support@supportwebsite.com and inform them of the time the error occurred, and anything you might have done that may have caused the error.

More information about this error may be available in the server error log.
--------------------------------------------------------------------------------
Apache/1.3.33 Server at educational-dev.blisswisdom.org Port 80

deomurari
Joomla! Apprentice
Joomla! Apprentice
Posts: 27
Joined: Thu Jun 21, 2007 6:16 am

Re: [CONFIRMED+FIX] Joomla! 1.0.13 Admin session dies for certain $task values

Postby deomurari » Sun Jan 06, 2008 9:22 pm

Dear Friends.....


  While trying to install eXtplorer I tried to install Robs patch...And screwed up my whole site....
Then I had restored the original files from my backup.....But now I can get in to backend....But in frontend I'm getting "The page isn't redirecting properly" error.

For SEF I'm using latest version of SH404SEF

Details is given below:

Joomla! Register Globals Emulation:  OFF 
Register Globals: ON
Magic Quotes: ON
Safe Mode: OFF
File Uploads: ON
Session auto start: OFF
Session save path: /tmp
Short Open Tags: ON
Output Buffering: OFF
Open basedir: none
Display Errors: ON
XML enabled: Yes
Zlib enabled: Yes
Disabled Functions: dl

PHP built On:  Linux mach1.websitewelcome.com 2.6.22_hg_grsec_pax #45 SMP Thu Dec 6 03:29:19 CST 2007 i686
Database Version: 4.1.22-standard
PHP Version: 4.4.4
Web Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a PHP-CGI/0.1b
WebServer to PHP interface: cgi

My .htaccess

##

# @version $Id: htaccess.txt 5975 2006-12-11 01:26:33Z robs $

# @package Joomla

# @copyright Copyright (C) 2005 Open Source Matters. All rights reserved.

# @license http://www.gnu.org/copyleft/gpl.html GNU/GPL

# Joomla! is Free Software




order allow,deny

deny from all




Options +FollowSymLinks



#

#  mod_rewrite in use


RewriteEngine On

RewriteCond %{HTTP_HOST} ^waders.in [NC]

RewriteRule ^(.*)$ http://www.waders.in/$1 [L,R=301]

RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)

RewriteRule .* – [F]


#  Uncomment following line if your webserver's URL

#  is not directly related to physical file paths.

#  Update Your Joomla!/MamboDirectory (just / for root)


RewriteBase /site

########## Begin - Joomla! core SEF Section

############# Use this section if using ONLY Joomla! core SEF

## ALL (RewriteCond) lines in this section are only required if you actually

## have directories named 'content' or 'component' on your server

## If you do not have directories with these names, comment them out.

#

#RewriteCond %{REQUEST_FILENAME} !-f

#RewriteCond %{REQUEST_FILENAME} !-d

#RewriteCond %{REQUEST_URI} ^(/component/option,com) [NC,OR] ##optional - see notes##

#RewriteCond %{REQUEST_URI} (/|\.htm|\.php|\.html|/[^.]*)$  [NC]

#RewriteRule ^(content/|component/) index.php

#

########## End - Joomla! core SEF Section





########## Begin - 3rd Party SEF Section

############# Use this section if you are using a 3rd party (Non Joomla! core) SEF extension - e.g. OpenSEF, 404_SEF, 404SEFx, SEF Advance, etc

#

RewriteCond %{REQUEST_URI} ^(/component/option,com) [NC,OR] ##optional - see notes##

RewriteCond %{REQUEST_URI} (/|\.htm|\.php|\.html|/[^.]*)$  [NC]

RewriteCond %{REQUEST_FILENAME} !-f

RewriteCond %{REQUEST_FILENAME} !-d

RewriteRule (.*) index.php

#

########## End - 3rd Party SEF Section

# Only if you use PHP





php_flag zlib.output_compression On

php_value zlib.output_compression_level 8

php_value memory_limit 60M

php_flag register_globals off

php_value max_execution_time 80

php_value upload_max_filesize 16777216

php_value post_max_size 16777216

php_value max_input_time 90








# Block out any script trying to set a mosConfig value through the URL

RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]

# Block out any script trying to base64_encode crap to send via URL

RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR]

# Block out any script that includes a