Tag Archives: PHP

Important – 777 Permissions To Be Removed From All Servers

Due to the large scale phishing attacks happening on many of our sites due to the lack of security on many of the domains, we are taking certain steps to protect our servers and the sites from such attacks.

As a part of this, we are disabling 777 access to any website. To accomplish this, we are migrating our servers to SuPHP to secure our PHP and apache configurations. This move will make sure files cannot be written by everyone and will prevent the issue caused by the 777 permissions that were previously allowed on all files.

We are implementing this change in our shared servers on 30-Oct-2010.
suPHP is a tool for executing PHP scripts with the permissions of their owners. With this we have following advantages in shared hosting environment

No folders or files can have 777 permission and it cannot be owned by user “nobody”. This is one of the greatest advantage where we can secure the files and folders in the site as none can do anything other than the site owners.

This change will go in at midnight on 29-Oct-2010 and as of 30-Oct-2010 we will not allow any 777 access on any of our servers.

Site Owner should make following in their site
1. Make sure no 777 permission files or folders/directories present in the site. The recommendation is to change it to 755 for folders and 644 for files.
2. .htaccess file should not contain any php_value. Please move those values under php.ini file instead.

Please feel free to contact us if you need any help with this.

Resellers please pass this is to the respective site owners.

WordPress upgradation from 2.9.2 to wordpress-3.0.1

From our previous post

We have successfully upgraded our wordpressmu from 2.9.2 to 3.0.1

Here are the steps we followed for this upgradation
http://wpmu.org/how-to-upgrade-wpmu-2-9-2-to-wordpress-3-0-in-5-easy-steps/

We have also upgraded all our plugins and we are happy to say that we are in WordPress-3 club.

Have fun!!

Magento Upgrade from 1.3.1 to 1.4.1.1

Magento is one of the preferred ecommerce open source platforms we specialise in at Auro Infotech. Recently, Magento announced upgrade to 1.4.1.1 and we also decided to upgrade on of the Magento based sites that we manage.

In version 1.3.1, we faced the following error when we checkout using paypal
“There was an error proccessing your request”

We did many studies to fix this and we finally we decided to upgrade the magento to the latest version as we thought this might fix the issue. Since we developed the skin(theme) for the site, we knew it should be done with great care as we need to merge our custom code with magento code.

As always, before upgrading the live site, we upgraded the testing site with many trial and errors and atlast we did it successfully in testing. We have the steps noted down below which we took while upgrading the production site. Below are the steps which we like to share

Continue reading

WordPress migration to php-5.3

Today we migrated one of our wordpress site from one server to another.
Present server has the version PHP-5.2.9 and the new server has PHP-5.3.2

Once we copied the files and database to the new server, it started showing has the following errors

Assigning the return value of new by reference is deprecated in /home/sitename/public_htm/wp-settings.php line xx

This error should be fixed by removing “&” in wp-settings.php where you have assigned a variable

For example, I have given below one assignment statement

$GLOBALS[‘wp_query’] =& new WP_Query();

Remove ‘&’ and make the line look like below

$GLOBALS[‘wp_query’] = new WP_Query();

Similarly remove “&” in all places whereever this error is thrown.

One more thing is function “set_magic_quotes_runtime()” in deprecated in php-5.3.2
Instead we should use the following
ini_set(“magic_quotes_runtime”, 0);

Also, the function split() is deprecated in php-5.3.2. Instead we should use explode ()

I had already posted a week back other functions that are deprecated in PHP-5.3.2.

Today I found other 3 functions. I will keep posting my updates whenever I find the old functions deprecated in PHP-5.3.2

Function eregi_replace is deprecated in PHP

– post by Aravind

We are using a search engine called Search Plugin .  This search engine uses PHP code that was working well on its old server which had PHP 5.1 on it.

Recently, we migrated Search Plugin to one of our semi-dedicated server for enhancing its usability. After we migrated to this server, we faced the following error.

Deprecated: Function eregi_replace() is deprecated in /home/searchpl/public_html/include/searchfuncs.php on line 582

We came to knew recently that the in-built function mentioned in the error eregi_replace() is deprecated (or removed) in PHP 5.3.2. The recommendation from PHP is to use the alternate function preg_match.

Please see the sample code below

Continue reading

Meet The Auro Team – Purushothaman

Purushothaman joined Auro Infotech last year. He is now one of the core members of the development team.

Purushothaman has been a consistent participant in the Auro Technology Research Programs  and has also won the award recently in March 2009.

Purushothaman was a key member of the team working on Funepets website, GuideVu system and many other PHP/MySQL driven sites.

Purushothaman was one of the three winners of the ‘Employee of the Year Award’ for the year 2008.