Upgrade 1.0.0beta2 produce error Undefined index: HTTP_HOST

ramgsramgs
in General
I have upgraded 0.9.9 and 1.0.0beta2. 0.9.9 Working fine but 1.0.0beta2 gives me the following error.
PHP Notice: Undefined index: HTTP_HOST in /home/mitib/public_html/lib/util.php on line 1314

Comments

  • jordancjordanc
    A notice isn't an error, it's probably nothing to worry about, you can change your php error notification settings to not show notices or warnings, but still show actual errors by changing the error_reporting line in your php.ini to the following.
    error_reporting = E_ALL & ~E_NOTICE & ~E_WARNING
  • ramgsramgs
    tried both still give same error on cli and on web page is

    Internal Server Error
    The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator, root@localhost and inform them of the time the error occurred, and anything you might have done that may have caused the error.
    Apache/2.2.3 (CentOS) Server at mitib.com.my Port 80

    on httpd error log display as
    [error] [client 60.49.106.33] malformed header from script. Bad header=X-XSS-Protection 1; mode=block: index.php

    When i reinstall back the alpha version is works fine

  • jordancjordanc
    Are you running php in cgi mode?
  • ramgsramgs
    yes
  • jordancjordanc
    Are you using any other rewrite rules that might be confusing the origin of the script?
  • ramgsramgs
    nope

    RewriteEngine On

    # NOTE: change this to your actual StatusNet base URL path,
    # minus the domain part:
    #
    # http://example.com/ => /
    # http://example.com/mublog/ => /mublog/
    #
    RewriteBase /

    ## Uncomment these if having trouble with API authentication
    ## when PHP is running in CGI or FastCGI mode.
    #
    RewriteCond %{HTTP:Authorization} ^(.*)
    RewriteRule ^(.*) - [E=HTTP_AUTHORIZATION:%1]

    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule (.*) index.php?p=$1 [L,QSA]



    Order allow,deny

  • ramgsramgs
    Hostname: ramgs.com
    Hostname: 110.4.47.103
    Platform: Linux 2.6.18-238.12.1.el5xen #1 SMP Tue May 31 14:02:29 EDT 2011
    Architecture: x86_64 Username: mitib ( UiD: 501, GiD: 501 )
    Curent Path: /home/mitib/public_html
    Server Type: Apache/2.2.3 (CentOS)
    Server Admin: root@localhost
    Server Signature: Apache/2.2.3 (CentOS) Server at mitib.com.my Port 80
    Server Protocol: HTTP/1.1 Server Mode: CGI/1.1
  • jordancjordanc
    Can you show me your phpinfo?
  • ramgsramgs
    http://mitib.com.my/amuts.php
  • jordancjordanc
    Do you have php-cli installed?
  • ramgsramgs
    yes i do
  • ramgsramgs
    PHP 5.2.16 (cli) (built: Dec 17 2010 14:11:16)
    Copyright (c) 1997-2010 The PHP Group
    Zend Engine v2.2.0, Copyright (c) 1998-2010 Zend Technologies
    with eAccelerator v0.9.6.1, Copyright (c) 2004-2010 eAccelerator, by eAccelerator
  • jordancjordanc
    Strange, I don't suppose there's any chance you can test it with the apache php module rather php-fcgi?
    I'll try to setup a similar centos/fcgi environment to test it out.
  • ramgsramgs
    let me check my other server
  • ramgsramgs
    different server but running CGI/FastCGI http://www.muzic.my/statusnet/ its also giving same error. In the morning i can get hold another server with apache php module then i will try again
  • agaraagara
    Hi, I have tried to update from statusnet 1.0.0alpha5 to statusnet 1.0.0beta2 but it gives me an 'internal server error'. I watched the log and it's the same error that @ramgs: malformed header from script. Bad header=X-XSS-Protection 1; mode=block: index.php

    I'm running it on a standard DreamHost server. I haven't any major problem with the alpha5 version.

    How I can fix it?

    Thank's

    Asier
  • jbfavrejbfavre
    Seems it should be written
    "X-XSS-Protection: 1; mode=block" and not
    "X-XSS-Protection 1; mode=block"

    Seems to be a typo in code
  • jbfavrejbfavre
    OK, found it:

    Please try to modify lib/htmloutputter.php, line 114.
    Replace:
    header('X-XSS-Protection 1; mode=block'); // detect XSS Reflection attacks
    with
    header('X-XSS-Protection: 1; mode=block'); // detect XSS Reflection attacks

    Should works

    Regards,
    JB
    @jordanc, think there is a typo in code :)
  • jordancjordanc
    @jbfavre thanks!
  • jbfavrejbfavre
    @jordanc welcome :)
  • agaraagara
    Thank you very much @jbfavre
  • jbfavrejbfavre
    @agara you're very welcomed :)
    @jordanc, I've opened an issue for that: http://status.net/open-source/issues/3265
  • jordancjordanc
    Awesome, I've already alerted the authorities ;-)
  • jbfavrejbfavre
    @jordanc great \o/
  • ramgsramgs
    reinstall my centos vps so that will have both php cgi and also php module so in future will be easy for testing. will update later
  • ramgsramgs
    installing using php module does not produce any error the error only with fcgi and the above fix is working. Anway i have 2 enviroment to test till go public with the server.
    waumail.my fcgi and mitib.com.my php module.
Sign In or Register to comment.

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In with Google Sign In with OpenID
Sign In Register

Categories