website broke without anyone changing any files

marcnyc

Hello, I am posting to ask for your help trying to figure out why a website would break without anyone having touched a single file on the server...
From one day to the next I get this:

Warning: include() [function.include]: URL file-access is disabled in the server configuration in /home4/liuzzibi/public_html/index.php on line 617

Warning: include(http://www.liuzzi.biz/content/news.php?action=fullnews&id=4) [function.include]: failed to open stream: no suitable wrapper could be found in /home4/liuzzibi/public_html/index.php on line 617

Warning: include() [function.include]: Failed opening 'http://www.liuzzi.biz/content/news.php?action=fullnews&id=4' for inclusion (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home4/liuzzibi/public_html/index.php on line 617

Any idea where to start troubleshooting?
Thanks a lot

cahva

Server settings have been changed. The setting allow_url_include have been set to off(which it really should be).

The way you are now fetching page with include is not very good. Better way would be:

$page = file_get_contents($url);
echo $page;

NogDog

If Cahva's solution does not work, which could be the case if the server settings also have allow_url_fopen disabled, then you may have to use [man]cURL[/man] to access the file.

In any case, you should never include/require off-site files that you do not directly control, due to the security risk. Always use file_get_contents(), cURL, or any other method that will not execute any PHP code that might be injected into the text you receive.

marcnyc

They must have changed something on the server that I didn't know about.
Either way, echo file_get_contents(); seemed to work for me. It is actually on-site (as opposed to off-site) content, but if I wanted to use curl, which I never did, do you know of a good tutorial to learn how to use it?

NogDog

cURL extension section of PHP manual is what I use, though it might not be considered particularly "good" as a tutorial.

You might also consider the PEAR HTTP_Request Package as an alternative.