Christoph Heck : Elgg.org

Christoph Heck

- Christoph Heck@ChristophHeck
Christoph Heck replied on the discussion topic Warning: .htaccess file access hardeningDisabled 430 days ago

Yes, I am using an apache webserver. mod_rewrite is enabled. If I go to http://yoursite.com/vendor/autoload.php the following 403 Error occures: Request-URL: http://192.168.56.102/vendor/autoload.php Request... view reply
- Christoph Heck@ChristophHeck
Christoph Heck replied on the discussion topic Warning: .htaccess file access hardeningDisabled 431 days ago

No, it wasn't correctly pasted. I have edited my warning description. Do you have any other ideas? view reply
- Christoph Heck@ChristophHeck
Christoph Heck added a new discussion topic Warning: .htaccess file access hardeningDisabled in the group Elgg Technical Support 431 days ago

Hi guys, I get the following warning, when I open my security informations: .htaccess file access hardeningDisabled In the .htaccess file access to certain files can be blocked to increase security on your site. For more information look in...
- Christoph Heck@ChristophHeck
  
  Christoph Heck 430 days ago
  Yes, I am using an apache webserver. mod_rewrite is enabled. If I go to http://yoursite.com/vendor/autoload.php the following 403 Error occures:
  
  Request-URL:
  
  http://192.168.56.102/vendor/autoload.php
  
  Request method:
  
  GET
  
  Statuscode:
  
  403 Forbidden
  
  Remote-Address:
  
  192.168.56.102:80
- Jerome Bakker@jeabakker
  
  Jerome Bakker 428 days ago
  So the hardening does work (yay!!), it's just the detection that isn't working.
  Any errors in the webservers/php error log?
- Jerome Bakker@jeabakker
  
  Jerome Bakker 428 days ago
  Maybe there is a firewall rule on your webserver which prevents it from checking the hardening rules?
  The page does a curl call to the autoload.php file and checks if the response is 403. If a firewall would prevent the 'outgoing' call the response wouldn't be 403, thus no check mark.
  I also thought it could be an SSL verification issue, but in your example I see the website doesn't run on an https site (for internal testing of course ;)
+3 more
- Christoph Heck@ChristophHeck
Christoph Heck replied on the discussion topic Fatal Error. 437 days ago

@JeromeBakker Thank you very much for your help! This tutorial helped me a lot: https://www.geeksforgeeks.org/how-to-enable-curl-in-php/ Cheers Christoph view reply
- Christoph Heck@ChristophHeck
Christoph Heck added a new discussion topic Fatal Error. in the group Elgg Technical Support 437 days ago

Hi guys, I always get the following fatal error if I open the Information tab with the security configuration on the admin panel: Fatal Error. Call to undefined function curl_init() Log...
- Jerome Bakker@jeabakker
  
  Jerome Bakker 437 days ago
  looks like you don't have the PHP module curl enabled. Check your php.ini
- Christoph Heck@ChristophHeck
  
  Christoph Heck 437 days ago
  @JeromeBakker
  Thank you very much for your help!
  This tutorial helped me a lot:
  https://www.geeksforgeeks.org/how-to-enable-curl-in-php/
  Cheers
  Christoph

Christoph Heck

Send private message

Friends

Group membership

Elgg Technical Support

Activity

Navigation

Contact

Legal