Hi,
I've asked my host and osC forum for help but no one is able to so far.
My problem is that I've been using open source cart osCommerce for awhile now and everything is working fine. Last week, however, my host decided to add PHP security and changed some settings. Ever since, no one has been able to log in to my shopping cart so they can't buy anything. When someone click on "login", a page comes up saying they don't have cookies enabled but that's not true.
I'm a newbie so I'm not even sure what to ask or how.
Can someone please help explain to me what the host did; how it made login impossible; and what I should ask them to change? Or, what can I do on my part as far as the osCommerce script, file permission, etc.? Host is running PHP version 4.3.2.
:
Each server will be undergoing a PHP and CGI script security update, by the end of this week.
What does this mean?
1 - CGI & PHP scripts will now run under your username, instead of the user 'nobody' as it was before. This will help us track down spammers, and abusers, with ease, as well as out-of-date scripts.
2 - E-Mail security has been increased with an upgrade to Exim4. Our only worry is that scripts ran by users will not be able to send out E-Mail, if you notice this happening, please let us know.
3 - Most scripts will now work without needing to be world-writable. Meaning: CHMOD of 777 is no longer necessary. A CHMOD of 644 should work in most cases, now.
4 - This update also adds SquirrelMail to the WebMail interface.
5 - OpenBaseDir protection is now enabled on all accounts, limiting PHP access from access system files.
If you must have php_values defined in your .htaccess file, do so like this (gallery example) :
<IfModule mod_php4.c>
php_value post_max_size 20971520
php_value upload_max_filesize 20971520
php_value magic_quotes_gpc off
</IfModule>
.
Thanks so much. If you'd like to take a look my site is: www.intelligencegroup.net
Joseph
