Jump to content


Photo

I can't post or reply - why is this happening?


  • Please log in to reply
4 replies to this topic

#1 neylitalo

neylitalo
  • Staff Alumni
  • Advanced Member
  • 1,854 posts
  • LocationMichigan, USA

Posted 16 June 2006 - 03:14 PM

Our Intrusion Prevention System is in place. One of the side effects of these security measures is that certain PHP functions are disallowed from your posts, and if one happens to be present, it will throw the 403 Forbidden error code or a Not Acceptable error.

So, to make your lives easier, we've assembled a list of functions that are disallowed by the IPS security features on the phpfreaks server. Whenever you think you've found a function that's not in this list, and it throws a 403, try putting a space after the function name and before the parentheses. Example:
fwrite ()
If it works that way, please report the function to the Moderation team via the "Report to Moderator" button, and it'll be added to the list. Please, make sure you do not submit an entry already in the list.

Now, for the list of known problem functions:
fwrite ()
fopen ()
chr ()
exec ()
system ()
passthru ()
header("Content-Le ngth: "

http://nealylitalo.net - My personal website, and home of The Netizen's Journal.

#2 ober

ober
  • Staff Alumni
  • Advanced Member
  • 5,337 posts
  • LocationEast Coast, USA

Posted 07 November 2006 - 02:06 PM

Javascript <sc ript> tags also trigger the IPS!

Info: PHP Manual


#3 steelmanronald06

steelmanronald06
  • Staff Alumni
  • Advanced Member
  • 2,004 posts
  • LocationOk

Posted 21 February 2008 - 08:09 PM

fwrite()


#4 steelmanronald06

steelmanronald06
  • Staff Alumni
  • Advanced Member
  • 2,004 posts
  • LocationOk

Posted 21 February 2008 - 08:09 PM

seems to work for me :)

#5 Barand

Barand
  • Moderators
  • Sen . ( ile || sei )
  • 18,021 posts

Posted 24 February 2008 - 11:39 AM

As those disallowed function work perfectly in php code whether there is a space between fname and () or not, what purpose does the IPS serve with such a simple workaround?
If you are still using mysql_ functions, STOP! Use mysqli_ or PDO. The longer you leave it the more you will have to rewrite.

Donations gratefully received






moon.png

|baaGrid| easy data tables - and more
|baaChart| easy line, column and pie charts




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users