[Solved]: Gallery Images have disappeard. [Solved]: Gallery Images have disappeard.
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

[Solved]: Gallery Images have disappeard.

Started by cyrus6, February 04, 2009, 11:25:54 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

cyrus6

So here's my situation. Yesterday my photos were displaying fine. Today they are gone.
File names are visible.
Image files and dirs are still on my server.
I've checked to see if hotlink protection has been enabled by accident for some- it hasn't.
Directory permissions have not changed from 777.
Directory names/locations haven't changed.
Can't find any weird file names.
I've been through the forums and tried solutions to similar problems but no dice.

So now I'm just confused.

Thanks for a great software and thanks in advance for your support.

Links:
http://www.blueridgeoutdoors.com/yourpic/gallery/
http://www.blueridgeoutdoors.com/yourpic/gallery/thumbnails.php?album=4

Debug:

USER:
------------------
Array
(
    [ID] => 6c22256e8360d34d2908e30046317480
    [am] => 1
    [lang] => english
    [liv] => Array
        (
            [0] => 369
            [1] => 370
            [2] => 371
            [3] => 372
            [4] => 387
        )

)

==========================
USER DATA:
------------------
Array
(
    [user_id] => 1
    [user_name] => admin
    [groups] => Array
        (
            [0] => 1
        )

    [disk_max] => 0
    [disk_min] => 0
    [can_rate_pictures] => 1
    [can_send_ecards] => 1
    [ufc_max] => 3
    [ufc_min] => 3
    [custom_user_upload] => 0
    [num_file_upload] => 5
    [num_URI_upload] => 3
    [can_post_comments] => 1
    [can_upload_pictures] => 1
    [can_create_albums] => 1
    [has_admin_access] => 1
    [pub_upl_need_approval] => 0
    [priv_upl_need_approval] => 0
    [group_name] => Administrators
    [upload_form_config] => 3
    [group_quota] => 0
    [can_see_all_albums] => 1
    [group_id] => 1
)

==========================
Queries:
------------------
Array
(
    [0] => SELECT extension, mime, content, player FROM cpg14x_filetypes; (0s)
    [1] => select * from cpg14x_plugins order by priority asc; (0s)
    [2] => delete from `bro`.cpg14x_sessions where time<1233782619 and remember=0; (0s)
    [3] => delete from `bro`.cpg14x_sessions where time<1232576619; (0s)
    [4] => select user_id from `bro`.cpg14x_sessions where session_id = '41b54ae9804104b507ca6cbd983f8038' (0s)
    [5] => select user_id as id, user_password as password from `bro`.cpg14x_users where user_id=1 (0s)
    [6] => SELECT u.user_id AS id, u.user_name AS username, u.user_password AS password, u.user_group+100 AS group_id FROM `bro`.cpg14x_users AS u INNER JOIN `bro`.cpg14x_usergroups AS g ON u.user_group=g.group_id WHERE u.user_id='1' (0s)
    [7] => SELECT user_group_list FROM `bro`.cpg14x_users AS u WHERE user_id='1' and user_group_list <> ''; (0s)
    [8] => SELECT MAX(group_quota) as disk_max, MIN(group_quota) as disk_min, MAX(can_rate_pictures) as can_rate_pictures, MAX(can_send_ecards) as can_send_ecards, MAX(upload_form_config) as ufc_max, MIN(upload_form_config) as ufc_min, MAX(custom_user_upload) as custom_user_upload, MAX(num_file_upload) as num_file_upload, MAX(num_URI_upload) as num_URI_upload, MAX(can_post_comments) as can_post_comments, MAX(can_upload_pictures) as can_upload_pictures, MAX(can_create_albums) as can_create_albums, MAX(has_admin_access) as has_admin_access, MIN(pub_upl_need_approval) as pub_upl_need_approval, MIN( priv_upl_need_approval) as  priv_upl_need_approval FROM cpg14x_usergroups WHERE group_id in (1) (0s)
    [9] => SELECT group_name FROM  cpg14x_usergroups WHERE group_id= 1 (0s)
    [10] => update `bro`.cpg14x_sessions set time='1233786219' where session_id = '41b54ae9804104b507ca6cbd983f8038' (0s)
    [11] => SELECT user_favpics FROM cpg14x_favpics WHERE user_id = 1 (0s)
    [12] => DELETE FROM cpg14x_banned WHERE expiry < '2009-02-04 22:23:39' (0s)
    [13] => SELECT * FROM cpg14x_banned WHERE (ip_addr='71.62.15.12' OR ip_addr='71.62.15.12' OR user_id=1) AND brute_force=0 (0s)
    [14] => SELECT COUNT(*) FROM cpg14x_pictures WHERE approved = 'NO' (0.001s)
    [15] => SELECT value FROM cpg14x_config WHERE name = 'theme' (0s)
)

==========================
GET :
------------------
Array
(
)

==========================
POST :
------------------
Array
(
)

==========================
VERSION INFO :
------------------
PHP version: 5.1.6 - OK
------------------
mySQL version: 5.0.22
------------------
Coppermine version: 1.4.18(stable)
==========================
Module: GD
------------------
GD Version: bundled (2.0.28 compatible)
FreeType Support: 1
FreeType Linkage: with freetype
T1Lib Support:
GIF Read Support: 1
GIF Create Support: 1
JPG Support: 1
PNG Support: 1
WBMP Support: 1
XPM Support:
XBM Support: 1
JIS-mapped Japanese Font Support:

==========================
Module: mysql
------------------
MySQL Supportenabled
Active Persistent Links 0
Active Links 1
Client API version 5.0.22
MYSQL_MODULE_TYPE external
MYSQL_SOCKET /var/lib/mysql/mysql.sock
MYSQL_INCLUDE -I/usr/include/mysql
MYSQL_LIBS -L/usr/lib/mysql -lmysqlclient 
==========================
Module: zlib
------------------
ZLib Support enabled
Stream Wrapper support compress.zlib://
Stream Filter support zlib.inflate, zlib.deflate
Compiled Version 1.2.3
Linked Version 1.2.3
==========================
Server restrictions (safe mode)?
------------------
Directive | Local Value | Master Value
safe_mode | Off | On
safe_mode_exec_dir | no value | no value
safe_mode_gid | Off | Off
safe_mode_include_dir | no value | no value
safe_mode_exec_dir | no value | no value
sql.safe_mode | Off | Off
disable_functions | no value | no value
file_uploads | On | On
include_path | .: | .:
open_basedir | /var/www/vhosts/blueridgeoutdoors.com/httpdocs:/tmp | no value
==========================
email
------------------
Directive | Local Value | Master Value
sendmail_from | no value | no value
sendmail_path | /usr/sbin/sendmail -t -i | /usr/sbin/sendmail -t -i
SMTP | localhost | localhost
smtp_port | 25 | 25
==========================
Size and Time
------------------
Directive | Local Value | Master Value
max_execution_time | 30 | 30
max_input_time | 60 | 60
upload_max_filesize | 100M | 100M
post_max_size | 100M | 100M
==========================
Page generated in 0.101 seconds - 16 queries in 0.001 seconds - Album set : ; Meta set: ;


[edit by PYAP] Please you need to use bbCode tag "[ c o d e ] [ / c o d e ]" when you send us a debug [/edit]


Nibbler

There's some redirection setup sending requests for anything inside the albums directory to google.com. Check any .htaccess files for such a redirection. This isn't really a Coppermine issue, so ask your host if you need help finding where the redirection is set.

cyrus6

Yeah, I kind of noticed that when I tried to access the albums directly in a browser. I let you know what I find out. Thanks for the input.

cyrus6

Just as you said, there was a rouge .htaccess file in that directory. How or why it got there is beyond me. Should I be alarmed or concerned about security?

Thanks again for your help.

Nibbler

Yes, since you are running an outdated version of Coppermine.

hisgoldeneyes

This is my problem too, except, where do I find this file to delete? I cant find any .htaccess file.

Nibbler

Make sure whatever you are using to find it is configured to display hidden files. If you still can't find it ask your host for support.

hisgoldeneyes

Aw shoot, its not there. =( Made it so I can see hidden files and folders and I still dont see a .htaccess file. I'll talk to my host.

Does this mean it could be a more serious issue?

Nibbler

It's a trivial issue. Your photos are (probably) still there.


hisgoldeneyes

My host says that they don't support third pary applications, so now I am REALLY confused. =(

Nibbler

If you PM me FTP access I can check for you.

hisgoldeneyes

Okay, my host made it so I have permission to edit the file. Except I still can't see the file. He says that the file is hidden, in my "webspace" directory, not in "albums." I used the host's file manager to edit the file, and that is the only way I can access it. The text in the file is:

# MIMETYPES BEGIN (this is mandatory, do not delete or change)
# MIMETYPES END (this is mandatory, do not delete or change)
# HANDLERS BEGIN (this is mandatory, do not delete or change)
# HANDLERS END (this is mandatory, do not delete or change)
# HOTLINK PROTECTORS BEGIN (this is mandatory, do not delete or change)
# HOTLINK PROTECTORS END (this is mandatory, do not delete or change)
# DENIED IPS BEGIN (this is mandatory, do not delete or change)
# DENIED IPS END (this is mandatory, do not delete or change)

It seems wierd that the file is in the webspace directory, not albums.

How do I delete this annoying file? I can't see it in my windows explorer (what I use to manage files) just the host file manager, which I can only use to edit it.



hisgoldeneyes

WAIT no.

I found the file in my albums directory, and sure enough, it is to redirect to google.com!

Except....its a read only file. Which makes no sense.

Fabricio Ferrero

Remove it anyways and see if it works.  Yo won't harm anybody if you try ;)
Read Docs and Search the Forum before posting. - Soporte en español
--*--
Fabricio Ferrero's Website

Catching up! :)

hisgoldeneyes

No I mean....I can't delete it. It's a read only file so I can't delete it or edit it.
=(

I also can't see it using windows explorer, only using my host's file manager.


Fabricio Ferrero

Quote from: hisgoldeneyes on February 26, 2009, 12:39:28 AM
I also can't see it using windows explorer, only using my host's file manager.
You won't see it. Use the file manager to delete it.


Quote from: hisgoldeneyes on February 26, 2009, 01:41:41 AM
help help?

This is not a hotline. Give supporters not minutes but hours or days if necesary.
Read Docs and Search the Forum before posting. - Soporte en español
--*--
Fabricio Ferrero's Website

Catching up! :)