Coppermine and Domain URL-Hiding Coppermine and Domain URL-Hiding
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Coppermine and Domain URL-Hiding

Started by bolbit, January 11, 2006, 08:50:29 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

bolbit

Hello,

i create a subdomain in my domain and redirect it to the coppermine gallery.

The coppermine gallery is stored in a sub-folder of a diffrent webspace.

The redirect is done via url-hiding. this means that the subdomain stays in the addressbar of the browser and redirect the requests to the other webserver, where coppermine is installed and reirect the response back to the client.

Viewing the gallery is no problem. All works fine.
But when i want to upload an image i get the Message that 0 Uploads were successful.

When i enter the gallery directly with the URL of the Webserver coppermine is installed on the upload works without errors.

What can i do to get the upload working for my sobdomain?

Joachim Müller


bolbit

OK, here comes the debug info
Quote
USER:
------------------
Array
(
    [ID] => 1f375817505823596f6158153064429c
    [am] => 1
    [lang] => german
    [liv] => Array
        (
        )

)

==========================
USER DATA:
------------------
Array
(
    [user_id] => 1
    [user_name] => thomas
    [groups] => Array
        (
           
  • => 1
            )

        [disk_max] => 0
        [disk_min] => 0
        [can_rate_pictures] => 1
        [can_send_ecards] => 1
        [ufc_max] => 3
        [ufc_min] => 3
        [custom_user_upload] => 0
        [num_file_upload] => 5
        [num_URI_upload] => 3
        [can_post_comments] => 1
        [can_upload_pictures] => 1
        [can_create_albums] => 1
        [has_admin_access] => 1
        [pub_upl_need_approval] => 0
        [priv_upl_need_approval] => 0
        [group_name] => Administrators
        [upload_form_config] => 3
        [group_quota] => 0
        [can_see_all_albums] => 1
        [group_id] => 1
    )

    ==========================
    Queries:
    ------------------
    Array
    (
       
  • => SELECT extension, mime, content, player FROM cpg_filetypes; (0.01s)
        [1] => select * from cpg_plugins order by priority asc; (0.002s)
        [2] => delete from `usr_db_bolbit_1`.cpg_sessions where time<1136970334 and remember=0; (0s)
        [3] => delete from `usr_db_bolbit_1`.cpg_sessions where time<1135764334; (0s)
        [4] => select user_id from `usr_db_bolbit_1`.cpg_sessions where session_id=md5("7dc080400e85b808d785fc39c0cc04693430ebac1f8f35e8a7b8f9463c00b69c"); (0s)
        [5] => select user_id as id, user_password as password from `usr_db_bolbit_1`.cpg_users where user_id=1 (0.001s)
        [6] => SELECT u.user_id AS id, u.user_name AS username, u.user_password AS password, u.user_group+100 AS group_id FROM `usr_db_bolbit_1`.cpg_users AS u INNER JOIN `usr_db_bolbit_1`.cpg_usergroups AS g ON u.user_group=g.group_id WHERE u.user_id='1' (0s)
        [7] => SELECT user_group_list FROM `usr_db_bolbit_1`.cpg_users AS u WHERE user_id='1' and user_group_list <> ''; (0s)
        [8] => SELECT MAX(group_quota) as disk_max, MIN(group_quota) as disk_min, MAX(can_rate_pictures) as can_rate_pictures, MAX(can_send_ecards) as can_send_ecards, MAX(upload_form_config) as ufc_max, MIN(upload_form_config) as ufc_min, MAX(custom_user_upload) as custom_user_upload, MAX(num_file_upload) as num_file_upload, MAX(num_URI_upload) as num_URI_upload, MAX(can_post_comments) as can_post_comments, MAX(can_upload_pictures) as can_upload_pictures, MAX(can_create_albums) as can_create_albums, MAX(has_admin_access) as has_admin_access, MIN(pub_upl_need_approval) as pub_upl_need_approval, MIN( priv_upl_need_approval) as  priv_upl_need_approval FROM cpg_usergroups WHERE group_id in (1) (0s)
        [9] => SELECT group_name FROM  cpg_usergroups WHERE group_id= 1 (0s)
        [10] => update `usr_db_bolbit_1`.cpg_sessions set time='1136973934' where session_id=md5('7dc080400e85b808d785fc39c0cc04693430ebac1f8f35e8a7b8f9463c00b69c'); (0s)
        [11] => SELECT user_favpics FROM cpg_favpics WHERE user_id = 1 (0s)
        [12] => SELECT * FROM cpg_mark_users WHERE user_id = 1 (0s)
        [13] => SELECT * FROM cpg_mark_config (0s)
        [14] => DELETE FROM cpg_banned WHERE expiry < '2006-01-11 11:05:35' (0.009s)
        [15] => SELECT * FROM cpg_banned WHERE (ip_addr='217.111.100.22' OR ip_addr='217.111.100.22' OR user_id=1) AND brute_force=0 (0.005s)
        [16] => SELECT aid, title FROM cpg_albums WHERE category < 10000 ORDER BY title (0s)
        [17] => SELECT aid, title FROM cpg_albums WHERE category='10001' ORDER BY title (0s)
        [18] => SELECT COUNT(*) FROM cpg_pictures WHERE approved = 'NO' (0s)
    )

    ==========================
    GET :
    ------------------
    Array
    (
    )

    ==========================
    POST :
    ------------------
    Array
    (
        [URI_array] => Array
            (
               
  • =>
                [1] =>
                [2] =>
            )

        [control] => phase_1
    )

    ==========================
    VERSION INFO :
    ------------------
    PHP version: 5.0.4 - OK
    ------------------
    mySQL version: 4.0.24-standard-log
    ------------------
    Coppermine version: 1.4.2(stable)
    ==========================
    Module: GD
    ------------------
    GD Version: bundled (2.0.28 compatible)
    FreeType Support:
    T1Lib Support:
    GIF Read Support: 1
    GIF Create Support: 1
    JPG Support: 1
    PNG Support: 1
    WBMP Support: 1
    XPM Support:
    XBM Support: 1
    JIS-mapped Japanese Font Support:

    ==========================
    Module: mysql
    ------------------
    MySQL Supportenabled
    Active Persistent Links 3
    Active Links 4
    Client API version 4.1.13
    MYSQL_MODULE_TYPE external
    MYSQL_SOCKET /var/run/mysqld/mysqld.sock
    MYSQL_INCLUDE -I/usr/include/mysql
    MYSQL_LIBS -L/usr/lib -lmysqlclient 
    ==========================
    Module: zlib
    ------------------
    ZLib Support enabled
    Compiled Version 1.2.1
    Linked Version 1.2.2
    ==========================
    Server restrictions (safe mode)?
    ------------------
    Directive | Local Value | Master Value
    safe_mode | Off | Off
    safe_mode_exec_dir | no value | no value
    safe_mode_gid | Off | Off
    safe_mode_include_dir | no value | no value
    safe_mode_exec_dir | no value | no value
    sql.safe_mode | Off | Off
    disable_functions | fsockopen, link, diskfreespace, passthru, popen, pfsockopen, php_uname, highlight_file, ini_alter, ini_restore, ini_set, getrusage, mysql_list_dbs, get_current_user, getmyuid, getmypid, chown, chgrp, realpath, tmpfile,  mb_send_mail, system, shell_exec, proc_terminate, proc_open, proc_nice, proc_get_status, proc_close, exec | fsockopen, link, diskfreespace, passthru, popen, pfsockopen, php_uname, highlight_file, ini_alter, ini_restore, ini_set, getrusage, mysql_list_dbs, get_current_user, getmyuid, getmypid, chown, chgrp, realpath, tmpfile,  mb_send_mail, system, shell_exec, proc_terminate, proc_open, proc_nice, proc_get_status, proc_close, exec
    file_uploads | On | On
    include_path | .:/usr/local/lib/php | .:/usr/local/lib/php
    open_basedir | /cdcv2/www/bolbit | /tmp
    ==========================
    email
    ------------------
    Directive | Local Value | Master Value
    sendmail_from | no value | no value
    sendmail_path | /usr/sbin/sendmail -t -i  | /usr/sbin/sendmail -t -i
    SMTP | localhost | localhost
    smtp_port | 25 | 25
    ==========================
    Size and Time
    ------------------
    Directive | Local Value | Master Value
    max_execution_time | 30 | 30
    max_input_time | 60 | 60
    upload_max_filesize | 5M | 5M
    post_max_size | 8M | 8M
    ==========================
    Page generated in 1.315 seconds - 19 queries in 0.027 seconds - Album set : ; Meta set: ;

Joachim Müller

haven't asked for it. Re-read the section I refered to and do as suggested there.

bolbit

sorry but i didn't get it.

the URL is
http://fotos.pawlitzki.name
The Login ist : test
Password      : test

There might be a generel problem with url hiding from outside domains, because i wasn't able to add a new user via the redirected domain.
Only when i enter the url of the webserver coppermine runs on directly.

Quote
While executing query "INSERT INTO cpg_users(user_regdate, user_active) VALUES (NOW(), 'YES')" on 0

mySQL error: Duplicate entry '' for key 2

Joachim Müller

you haven't done as suggested, there's still 5 upload fields for each type, and debug mode is still off. If you don't do as supporters tell you, you're on your own. I'm out of this thread. Bye.

bolbit

sorry, my fault.

i have lost the sight of this points.

Now i read the text again and carefully and set the settings as described.
I understand that u are anonyed only because i haven t read carefully the first time.

Sorry again for this.