Jump to content

Please tell me if you think Aplus.net has lied to me - register_globals

Aldebaran

By Aldebaran
in Miscellaneous

 Share

Recommended Posts

Aldebaran Newbie

Aldebaran

Posted
Posted

Hi,

Here's my story - please tell me what you think of it.

 

I use a file called phpinfo.php that contains one line of code that has phpinfo(); in it to tell me what PHP version and configuration are on my client's websites. It's a great tool.

 

I needed to turn register_globals "OFF", as it was showing as "ON".

 

So I used their awful online chat, and eventually turned it off via their control panel.

 

But the file still showed it as being "ON". The support person said it would take 2 hours.

 

The next morning (today) I checked again, still showing "ON". Refreshed my browser cache just in case, checked on a different browser, still said "ON".

 

Called Aplus.net phone support, after 16 minutes on hold, they said it was now fixed. I refreshed my browser, and indeed, it now said register_globals was "OFF".

 

But they went on to say, that the issue was with my file. They said that because I used a secondary FTP user, it wasn't working. I asked how this possibly made sense, and they kept repeating the same thing.

 

So I tested it, I re-uploaded the same file, same USER, and it didn't revert back to "ON", it still showed the new setting of "OFF".

 

I think Aplus.net's control panel is crap, but if one of you PHP experts can explain to me how their story is possibly true, I'd really like to hear it.  I've written an article on my blog about this, and I'd love to hear your opinions as well.

 

http://aldebaranwebdesign.com/blog/aplusnet-customer-service-another-poor-online-chat/

 

I just really want to know how their explanation could possibly be true... ???

Link to comment
Share on other sites
tomfmason Advanced Member

tomfmason

Posted
Posted

I had several servers hosted with them for about a year and never really had a problem. Maybe you just got some retarded support reps or something. Their dedicated server support always seemed knowledgeable and had quick responses to my support requests.

Link to comment
Share on other sites
Aldebaran Newbie

Aldebaran

Posted
  • Author
Posted

UPDATE:

 

I was still getting the security warning message from the content management tool...even though register_globals was showing as OFF. I emailed the content management tool folks, and they said to put my PHPINFO file inside the content management tool directories.

 

I did this, and to my astonishment, the register_globals was still ON. So the Aplus.net control panel isn't a site-wide setting?!

 

Now I have to call them back again.... >:( for the third time!

Link to comment
Share on other sites
redbullmarky Advanced Member

redbullmarky

Posted
Posted

Nope, that just caused an INTERNAL SERVER ERROR on the entire site. It's not compatible with how Aplus.net has it configured. Thanks for suggestion though.

 

hmm that would imply that the .htaccess file is being recognised, as far as i'm aware. getting a 500 internal server error would normally occur if you've not spelt something correctly in the file itself.

 

instead of php_value, try php_flag:

 

php_flag register_globals off

Link to comment
Share on other sites
Aldebaran Newbie

Aldebaran

Posted
  • Author
Posted

Aplus.net is now claiming that indeed register_globals is off, but that there is some permissions error with the FTP user that I'm using. They are now claiming that you can't have two users access to the main html directory. So they're saying that when THEY upload a file with phpinfo(), it shows register_globals as OFF, but when I do it, it shows it as "ON".

 

Now, I've been using this FTP user the entire time, no issues have surfaced, and when you create new FTP users, it says nothing about not giving them access to the same directory.

 

Groan. What file permissions could prevent register_global from correctly detecting it's status?

J

Link to comment
Share on other sites
Daniel0 Advanced Member

Daniel0

Posted
Posted

Nope, that just caused an INTERNAL SERVER ERROR on the entire site. It's not compatible with how Aplus.net has it configured. Thanks for suggestion though.

 

hmm that would imply that the .htaccess file is being recognised, as far as i'm aware. getting a 500 internal server error would normally occur if you've not spelt something correctly in the file itself.

 

instead of php_value, try php_flag:

 

php_flag register_globals off

 

If they're running the CGI version of PHP then those directives do not exist. That might be the case here.

Link to comment
Share on other sites
Aldebaran Newbie

Aldebaran

Posted
  • Author
Posted

And another strange item:

 

When I look at the file I uploaded (with phpinfo()) and the file they uploaded (same function), the permissions are identical. But what's different, is the Configuration File (php.ini) Path. They are different for the file they've uploaded, and the file that I've uploaded (to the exact same directory).

 

How does the particular php.ini path get chosen via the FTP user?

 

J

Link to comment
Share on other sites
floraview Newbie

floraview

Posted
Posted

Sorry, I know this has nothing to do with your question, but Aplus.net sucks. It may possibly be the worst web host. They lie about downtime and the reasons it went down. They can't manage servers at all, if something fails, they don't know why or how to fix it. Their support sends you no emails saying you should expect downtime, and when you contact them about it they say it will be back up within hours. Two weeks later they send out a email to all users saying it may take weeks to get it back to normal.

 

Don't use Aplus.net.

Link to comment
Share on other sites
rondog Advanced Member

rondog

Posted
Posted

Sorry, I know this has nothing to do with your question, but Aplus.net sucks. It may possibly be the worst web host. They lie about downtime and the reasons it went down. They can't manage servers at all, if something fails, they don't know why or how to fix it. Their support sends you no emails saying you should expect downtime, and when you contact them about it they say it will be back up within hours. Two weeks later they send out a email to all users saying it may take weeks to get it back to normal.

 

Don't use Aplus.net.

 

x2

 

My boss bought them as a new host a few weeks ago. I was getting 500 Internal Server Errors all over the place on previous files that worked perfectly on another host. Their support is hardly support at all because they know absolutely nothing. One guy tried telling me my script wasn't working because it had a .php extension rather than a .sql..I just laughed at that point and switched hosts.

Link to comment
Share on other sites
Aldebaran Newbie

Aldebaran

Posted
  • Author
Posted

And as final note, the original issue has been finally resolved by using a different FTP user account and deleting all the files are reuploading them. Why a FTP user account would be set up to use a different ini file, is beyond me. But this is how we finally fixed it. What a waste of time.

Link to comment
Share on other sites
This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.