[SOLVED] Remote Include Help ?

[d.shankar]

I need to include a php file in my code which is available in a remote site say..

http://123.54.23.123/new.php

 

My code is here

 

<?php

include 'http://123.54.23.123/new.php';

?>

 

 

Warning: include() [function.include]: URL file-access is disabled in the server configuration in C:\wamp\www\apps\info.php on line 2

 

Warning: include(http://123.54.23.123/new.php) [function.include]: failed to open stream: no suitable wrapper could be found in C:\wamp\www\apps\info.php on line 2

 

Warning: include() [function.include]: Failed opening 'http://123.54.23.123/new.php' for inclusion (include_path='.;C:\php5\pear') in C:\wamp\www\apps\info.php on line 2

 

[trq]

Exactly as it says.

 

URL file-access is disabled in the server configuration

[d.shankar]

Do i have to use ?

 

ini_set('allow_url_fopen', 'on');

[d.shankar]

Exactly as it says.

 

URL file-access is disabled in the server configuration

 

 

But i am able to access that URL directly., But not from code.

[MadTechie]

allow_url_fopen  boolean

 

    This option enables the URL-aware fopen wrappers that enable accessing URL object like files. Default wrappers are provided for the access of remote files using the ftp or http protocol, some extensions like zlib may register additional wrappers.

 

      Note: This setting can only be set in php.ini due to security reasons.

[d.shankar]

I checked the php.ini on the remote server the option is set to On only.

 

Also i checked with my own localhost

I get the same error which i previously showed.

 

<?php
include 'http://localhost/myfile.php';
?>

[MadTechie]

if allow_url_fopen is on then you need to check

 

allow_url_include

 

[d.shankar]

Yea i added that too MT

allow_url_include=On

 

The error was vanquished but the contents of that file is not being fetched. ???

[MadTechie]

has to be a problem in the code then..

[d.shankar]

Oh ..

 

Then how it works if i put in this manner

 

<?php
include 'myfile.php';
?>

 

I dont know whats the problem ?

[MasterACE14]

thats probably your problem right their, if the file your including has nothing in it, say maybe it has a couple variables or something, without printing them, then nothing will be displayed.

 

EDIT: on second thoughts, is that the only PHP code you got on your page?

<?php
include 'myfile.php';
?>

 

or is their more?

 

Regards ACE

[d.shankar]

Ok guys i will clearly provide the info

 

Actually this consist of two files n1.php(the file to be included)  &  n2.php

 

I need to detect an SQL Injection pattern i.e. If the user enters ' then an alert will be displayed

It perfectly works when i just use include("n1.php") in n2.php , but matters get worse when i include along with localhost , i hope it is gettiing included but the alert is not displayed.

 

 

n1.php

 

<?php
$pat1="/(?:^.?'$)|(?:.*(?:#|--)[^\w\s]*$)|(?:^.*\\'.+(?<!\\)')|(??:^['\\]*(?:[\d']+|[^']+'))+\s*(?:AND|OR|XOR|NAND|NOT|\|\||\&\&)[\s+]*[\d'[+&!-@])|(?:\^')|(?:^[\w\s-']+(?<=AND|OR|XOR|NAND|NOT|\|\||\&\&)\w+\()/";
$sub1='Detected classic SQL injection probings';

$pattern=array($pat1);
$subject=array($sub1);

foreach($_REQUEST as $key => $value)
{
	//echo "The Key".$key;
	//echo "<br>";
	//echo "The Value ".$value;
	for($x=0;$x<count($pattern);$x++)
	{
	if(preg_match($pattern[$x],$value))
	{
		echo $subject[$x];
		echo "<br>";

	}
	else
	{

	}
	}
}

?>

 

 

 

n2.php

 

<?php

include("n1.php");//This works
include("http://localhost/test/t1/n1.php");//This does not work

?>
<html>
<body>
<form action=''>
<input type='text' name='txt1'>
<input type='submit' name='sub1'>
</form>
</body>
</html>
<?php
?>

 

 

 

Inorder to chk the code pls try giving the input ' (single quote)

 

 

Thanks a lot.

[d.shankar]

Bump 1

[d.shankar]

Any help ?

[d.shankar]

??? ??? ??? ???

[darkfreaks]

thats because your testing it on localhost not a actual domain. if it were a domain the full path would work

[d.shankar]

I am using WAMP Server.

I used the option "Put Online" and checked like this still it didnt work

 

<?php

include("http://192.168.1.15/test/t1/n1.php");//Still didnt work

?>
<html>
<body>
<form action=''>
<input type='text' name='txt1'>
<input type='submit' name='sub1'>
</form>
</body>
</html>
<?php
?>

 

 

I am afraid that it wont work online bud.

[MadTechie]

probably because very few sites support remote include

[d.shankar]

Yep i am in grave trouble !!!

 

I wrote a simple code for checking out the remote include from my localhost.

It works !!

 

t1.php

 

<?php
$var="I am here";
echo $var;
?>

 

 

t2.php

 

<?php
include("http://localhost/test/t1.php");
?>

 

 

The above code works !!

 

But the code i previously posted is not workin, Please guide me.

[d.shankar]

Any Help Would Be Greatly Appreciated.

[yzerman]

do you have permission from the site you are trying to include a file from?

[d.shankar]

Yea yea

[yzerman]

Ok, since you have permission from the server owners - do they have THEIR php.ini file set up the same way you have yours (to allow remote includes?)

[d.shankar]

I am checking locally within my system dude.

Instead of accessing include("file.php"); i am trying it as include("http://localhost/file.php");

Both refers to my system only.

[yzerman]

well, if it worked with local host, but it didnt work with 192.168.2.1 (or whatever) I don't think that would be a php issue.