I am using "protector 3.32 beta" on XCL2.1.6.
Today, I was unable to login as an administrator with a message below.
Retry Post
This screen would be a result by some XSS attack.
Please be careful to continue.
"Send button" appears under the message, but I cannot move to the next page even after clicking that button.
I trashed files in "configs" directory under "xoops_trust_path/modules/protector". Unfortunately however, it did not make any changes.
Of course, I am not sure of causal relationship between this phenomenon and the protector. But, it will be so much appreciated if you let me know suggestions so that I can disable the protector without log-in as an administrator. Thanks.
you can try removing the edited lines from mainfile.php for precheck & postcheck.
I did not notice the scripting written in mainfile.php at all.
After commenting out the description you mentioned, I could log in xoops as an administrator.
Thanks, vaughan!
hi jukai.
The message is irrelevant to Protector.
Perhaps, you are using cubeUtils.
Its "auto-login" sometime raise such a warning (too sensitive).
You can find the latest version of cubeUtils in HD-1.0.3.
http://hodajuku.sourceforge.net/https://sourceforge.net/project/showfiles.php?group_id=200922
hi vaughan.
Quote:
you can try removing the edited lines from mainfile.php for precheck & postcheck.
It's not a good advice.
After it, the user will run the site without Protector.
sorry Gijoe, my advice was only meant as a temporary measure in relation to:
Quote:
But, it will be so much appreciated if you let me know suggestions so that I can disable the protector without log-in as an administrator. Thanks.
which would then enable him to get into admin so that he can figure out the problem he was having due to not being able to login as an admin. I had presumed he would redo the mainfile.php edits after the problem was solved.
i admit my post was a bit too brief :|