Could you please write an example. I have tried /chat, /modules/chat, /home/../modules/chat, chat etc., but without success.
Does this work only for dirs in /modules?
Don't bother with my previous post. I found solution
here.
In keeping with this topic, I too am having a similar problem with the "Protector Module 2.54 & 2.55". I am trying to get the Protector module to stop monitor the "FlashChat v4.5.6" folder in the Protector's Preference section.
Quote:
Modules out of DoS/Crawler checker
set the dirnames of the modules separated with |. This option will be useful with chatting module etc.
I have tried several different dirname paths with no luck as of yet (e.g. /public_html/flashchat/, /flashchat/, http://www.mysite.com/flashchat/).
I was hoping to fix this problem by looking in the Xoops script file which is loaded at each FlashChat refresh. I am trying to get FlashChat to execute without the includes in the Xoops script in common.php. But it has not worked and I am starting to believe it is a PHP 4 issue.
So if I can figure a way to stop the Protector Module from monitor only this folder, it would be a big relief.
What is happening now is...I intergrated FlashChat with Xoops 2.2.4. The integration works fine, automatically logging members in with their username, but as I said, after 30 seconds, their session ends everytime and Protector logs it as a DOS attack..
This is what the debug windows shows (
I changed the actual Session ID):
Fri Mar 24 15:45:19 GMT-0500 2006:<response id="xg41ar1cg629851827sc21x3f342ft21" />
Fri Mar 24 15:45:23 GMT-0500 2006:<response id="xg41ar1cg629851827sc21x3f342ft21" />
Fri Mar 24 15:45:26 GMT-0500 2006:<response id="xg41ar1cg629851827sc21x3f342ft21" />
Fri Mar 24 15:45:29 GMT-0500 2006:<response id="xg41ar1cg629851827sc21x3f342ft21" />
Fri Mar 24 15:45:32 GMT-0500 2006:<response id="xg41ar1cg629851827sc21x3f342ft21" />
Fri Mar 24 15:45:36 GMT-0500 2006:<response id="xg41ar1cg629851827sc21x3f342ft21" />
Fri Mar 24 15:45:39 GMT-0500 2006:
(session ends here)Fri Mar 24 15:45:42 GMT-0500 2006:
Fri Mar 24 15:45:46 GMT-0500 2006:
Fri Mar 24 15:45:49 GMT-0500 2006:
Fri Mar 24 15:45:52 GMT-0500 2006:
Server Info:PHP Version 4.4.1
Apache/1.3.34
MySQL 4.0.25
IE v6 and Firefox
PHP safe_mode - Off
CMS - Xoops 2.2.3a with the Xoops 2.2.4 (upgrade patch)
Protector 2.54 and 2.55 (two different servers)
FlashChat Version 4.5.6
If anyone has used a dirname to stop Protector from monitor a folder, please let me know the path you used.
As stated in thread #2, there is a workaround...but I would have preferred using the "Protector's Module" preference section and not edit my mainfile.php
I am not sure if this somehow deativates the "Protector Module" or "it just stops it monitoring" the chat folder, but it does work. I have the "Protector Module" running in the pref section and the flashchat program is running without timing out.
I did exactly what the "
Simple-Xoops" website implied, using my dirname (not /dhchat/). So if your dirname for flashchat is "flashchat" use (/flashchat/) or if it is "chat" as stated in the newer version of flashchat, use (/chat/).
edit your mainfile.php like this:define('XOOPS_GROUP_ADMIN', '1');
define('XOOPS_GROUP_USERS', '2');
define('XOOPS_GROUP_ANONYMOUS', '3');
if (!preg_match("/flashchat/i", getcwd()))
include( XOOPS_ROOT_PATH . '/modules/protector/include/precheck.inc.php' ) ;
if (!isset($xoopsOption['nocommon']) && XOOPS_ROOT_PATH != '' ) {
include XOOPS_ROOT_PATH."/include/common.php";
}
if (!preg_match("/flashchat/i", getcwd()))
include( XOOPS_ROOT_PATH . '/modules/protector/include/postcheck.inc.php' ) ;
Though I don't know flashchat, it sounds abnormal XOOPS module.(eg. it doesn't have "dirname" etc.)
The other escaping method should be implemented into protector.
I've just updated.
I can't understand what you mean.
And I didn't (won't) use FashChat.
I did a patch for PHP script including mainfile.php with "$xoopsConfig['nocommon']=1".
(It is not a XOOPS module but a XOOPS peripheral script.)
If the XOOPS peripheral script is under /*/FlashChat, set "FlashChat" as "Modules out of DoS/Crawler checker" in Protector's preferences.