The secure CMS.

Welcome to Geeklog, Anonymous Sunday, December 22 2024 @ 12:10 am EST

Development

Emailing Geeklog Topics

  • Tuesday, April 09 2002 @ 05:24 am EDT
  • Contributed by: Anonymous
  • Views: 4,753
Geeklog Hi folks,

Using Geeklog 1.3.4 which I\'m thoroughly impressed with, however there\'s just one feature I\'ve not managed to make work correctly as yet - and that\'s the Emailing Topics for User option, I\'ve setup CRON to run the \'emailgeeklogstories\' script as php (which I\'ve corrected the paths etc in) but when the job executes on it\'s daily rotation I\'m emailed the following error from CRON:

#!/usr/local/bin/php -q
Warning: Cannot add header information - headers already sent by
(output started at
/path-to-geeklog/public_html/email.php:2) in
/path-to-geeklog/system/lib-sessions.php on line 150
Warning: Cannot add header information - headers already sent by
(output started at
/path-to-geeklog/public_html/email.php:2) in
/path-to-geeklog/system/lib-sessions.php on line 162

(the paths in the real error are correct, but changed here to path-to-geeklog).

email.php is the modified version of the emailgeeklogstories script (the only modification being the path to geeklog) and it\'s in the public_html folder for the geeklog installation, the line in my crontab looks like this:

0 20 * * * lynx -dump http://geeklog-url/email.php

(again, geeklog-url is actually my domain name in the crontab ;) ).

Anybody have any ideas? Sorry about the lengthy post - I\'m too lame to work this one out for myself, though ;)

Don't forget to secure your installation

  • Wednesday, March 20 2002 @ 08:25 pm EST
  • Contributed by:
  • Views: 8,301
Geeklog
Assuming that one has not implemented any WebServer based or file access security changes:

The default install of Geeklog does not secure the installation and will leave your admin/install/install.php file open for anyone to access. I Recommend a few things

  • Remove access rights to the directory
  • Change the name of the install directory
  • Configure webserver security - e.g. Use apache .htaccess
  • All of the above

    Doing a little check before submitting this note, 50% of the sites I checked have open access to install.php. I debated about posting this, in case someone thinks this would be their idea of fun. Hopefully, it will be seen as a reminder to secure our installs - as anyone that has installed GL will know the default install path.

    A recommendation would be for GL to include a install feature like Gallery that will secure all access and redirect anyone without proper authentication to the main page.

    Cheers,
    Blaine

    • New theme

    • Friday, March 15 2002 @ 08:21 pm EST
    • Contributed by:
    • Views: 4,833
    Geeklog I've released my first Geeklog theme for download. This new theme is called Foundation. you can get it from the downloads section at geeksta.com.

    Page navigation