About the 29th of last month my crons quit working properly, they are still ran but they did nothing.. I finally found out that its giving me an open_basedir error...
I am trying to run the crons from /home/<user>/crons/...
The first few lines of the PHP Code includes some required files that are used by the rest of the site...
However, when the cron is ran I get the following email...
Quote:
X-Powered-By: PHP/5.2.1
Content-type: text/html
Warning: include() [function.include]: open_basedir restriction in effect. File(/home/<user>/public_html/includes/common.php) is not within the allowed path(s): (0) in /home/<user>/public_html/live.php on line 7
Warning: include(/home/<user>/public_html/includes/common.php) [function.include]: failed to open stream: Operation not permitted in /home/<user>/public_html/live.php on line 7
Warning: include() [function.include]: Failed opening '/home/<user>/public_html/includes/common.php' for inclusion (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home/<user>/public_html/live.php on line 7
test
Notice: Undefined variable: db in /home/<user>/public_html/live.php on line 11
Fatal error: Call to a member function query() on a non-object in /home/<user>/public_html/live.php on line 11
WHM 11.11.0 cPanel 11.15.0-R17665
CENTOS Enterprise 4.5 i686 on standard - WHM X v3.1.0
Apache version1.3.39 (Unix)
PHP version5.2.1
MySQL version4.1.22-standard
(Paths have the correct username, I replaced the usernames with <user>...)
I am trying to use chdir() in one of my scripts. However, I am getting an open_basedir restriction error. I have checked the php.ini and the value is not set (which as I understand should disable open_basedir).
I've installed CRE Loaded 6.2 on one of my client accounts and am receiving the following error when trying to edit the language files:
Warning: tempnam(): open_basedir restriction in effect. File() is not within the allowed path(s): (/hsphere/local/home/hrtire:/tmp:/var/tmp:/usr/local/lib/php) in /hsphere/local/home/hrtire/hrtire.net/store/admin/edit_textdata.php on line 151
I've asked for support from my host and they told me that it can be fixed using .htaccess. They said to use:
That doesn't fix the problem and I'm not getting any more responses from them. I've tried variations (e.g. .../store/, .../store/tmp/) and nothing works.
I am running asp.net on my 1and1 "shared" hosting account. I just was told I could not add a simple .mp3 player control because it requires "higher" security. I only have "medium" security. They could only suggest a dedicated server.
Is this going to be normal amongst all asp.net hosting companies? Are most asp controls at the higher security level?
Is there a hosting company that gives this to you as a shared customer?
I have a custom made server side bulk email application. My current hosting service does allow unlimited emails (most restrict to around 3-500 per hour) but im having other problems with them.
As such I need a new host for this tool. I send around 45,000 emails as newsletters to my site members about 10 times a year.
I know that a dedicated server is a obvious solution but I dont want the management headaches and higher costs that go with it.
Has anyone got a shared hosting solution that doesn't restrict email numbers or atleast has much higher limits?
I've just upgraded my apache install to Apache 2.0.59 and PHP 4.4.6 and suddenly open_basedir has stopped working. I have an open_basedir setting in each vhost configuration that used to work fine on php 4.3.9, now upgraded it thinks there is no path specified and I'm getting the usual failures where my scripts are not allowed to write to a directory.
Has anyone else seen this or knows what's happening? I'm on 64-bit Centos 4.4
Trying to restrict access to plesk control panel to one IP address (fake 66.67.68.69).
When I add the network 66.67.68.69/255.255.255.254 I recieve the following notification:
Error: The access restriction policy and the list of networks are currently configured the way you will not be able to log in with administrator's rights from your IP address '66.67.68.69'.
Now I would like this to be the ONLY ip address from wich i can log in.
Assuming that an account on my server is hacked into, is open_basedir enough to protect other users on the same server? I would assume so, since php would not have access to those other accounts? Why is suphp needed?
Ofcourse, I also disabled dynamic loading of modules (apache) and added some disable_functions list.
when I make open_basedir effect in whm > security center
I have in my script this problem :
Warning: tempnam() [function.tempnam]: open_basedir restriction in effect. File() is not within the allowed path(s): (/home/xxxx/:/usr/lib/php:/usr/local/lib/php:/tmp) in /admincp/misc.php on line 685Warning: fwrite(): supplied argument is not a valid stream resource in /admincp/misc.php on line 688Warning: fclose(): supplied argument is not a valid stream resource in /admincp/misc.php on line 689
when I disable it I have this other one problem :
Warning: fopen() [function.fopen]: SAFE MODE Restriction in effect. The script whose uid is 32010 is not allowed to access /tmp/vbthumbLTfVOk owned by uid ..
I can't correct configure the open_basedir. Safe_mode on server is enabled. Now path to accounts is: /var/www/webx/ . I would like change this path to /webx/ On server are some accounts. How can I do it?
What I did:
-> I set path in php.ini file (/etc/php4/apache2) in open_basedir = line to: /webx/ and /var/www/webx/ too. Without effect.
-> I added <Directory /webx/> php_admin_value open_basedir /webx/ </Directory>
in /etc/apache2/apach2.conf and /etc/apache2/confixx_mhost.conf
Without effect.
After any change I was restarting the apache service through /etc/init.d/apache2 restart, of course.
I want to include script wpisz.php from /srv/www/vhosts/default/htdocs into /srv/www/vhosts/domena.pl/httpdocs/, but i recive this error:
Code: Warning: main() [function.main]: open_basedir restriction in effect. File(/srv/www/vhosts/domena.pl/httpdocs/wpisz.php) is not within the allowed path(s): (/srv/www/vhosts/default/htdocs:/tmp) in /srv/www/vhosts/default/htdocs/index.php on line 3
Warning: main(/srv/www/vhosts/domena.pl/httpdocs/wpisz.php) [function.main]: failed to open stream: Operation not permitted in /srv/www/vhosts/default/htdocs/index.php on line 3
Warning: main() [function.include]: Failed opening '/srv/www/vhosts/domena.pl/httpdocs/wpisz.php' for inclusion (include_path='.:/usr/share/php') in /srv/www/vhosts/default/htdocs/index.php on line 3
So, I ask you to help me to set it up (propably open_basedir) in that way in which will it work fine. But please.. use a simple language and describe the solution step-by-step because I'm not doing well whith this..
One of my users...let's call him "fictional" is getting the following error message:
--------- Warning: Unknown(): open_basedir restriction in effect. File(/home/fictional/public_html/blablaja/index.php) is not within the allowed path(s): (/home/hurz/:/usr/lib/php:/usr/local/lib/php:/tmp) in Unknown on line 0 ---------
The strange thing is that the error message refers to another user on my system...named "hurz". Why does it refer to this other username? I looked at the virtual host in httpd.conf for user "fictional" and everything seems alright there:
I am going to run a free host, yes I know I should post this in FWHT but well, they dont answer very fast if at all.
It is very dangerous to have Safe Mode OFF on a free host, but someone was telling me about open_basedir, which makes it so they cant touch any files set outside of open_basedir. Would this be suffiecient to keep them from touching others files? I know I need to disable other functions like exec() and stuff but would open_basedir keep hackers away from others files and hacking them...
if i enable PHP open_basedir Tweak in cpanel, it disables all sites and none load, do note that the other tweak called Apache mod_userdir Tweak is also enabled.
Now i am wondering is if they both clash with each other to compete for the security ?
Anyone else noticed this also?
Info : WHM 11.15.0 cPanel 11.18.6-S24255 CENTOS Enterprise 5 i686 on standard - WHM X v3.1.0
Is there a way to configure the open_basedir to allow cURL to FOLLOW_LOCATION? I'd like to keep the open_basedir enabled for security but at the same time, I need my site to function properly and that's not a possibility with FOLLOW_LOCATION not working.
I'm trying to use server side includes in a PHP website but am getting the error open_basedir restriction in effect.
I've tried going in to the PHP Settings for the website and have selected the predefined option
{DOCROOT}{/}{:}{TMP}{/}
Which as I understand it should allow access to all files within my httpdocs folder but I still get the error:
PHP Warning: include(): open_basedir restriction in effect. File(/sparklyphp/cms/inc/checkAdminLogin.php) is not within the allowed path(s): (F:PLESKWWWviwebsitedesign.comhttpdocs;C:WindowsTemp) in F:PLESKWWWwebsitedesign.comhttpdocssparklyphpcmsindex.php on line 1
The thing is I know 100% that the file it's having a problem with is in a subfolder of the
F:PLESKWWWwebsitedesign.comhttpdocs folder (the full F:PLESKWWWwebsitedesign.comhttpdocssparklyphpcmsinccheckAdminLogin.php).
