Upgrade from 0.8.7a to 0.8.7b: 'Invalid PHP_SELF Path'

chronos · Joined: 12 Feb 2008 Posts: 5

On my FreeBSD server, I've updated through the ports system from 8.7a to 8.7b and now I get the following message:

Invalid PHP_SELF Path

I also tried going to /install/index.html but it gives the same message.

This is my config.php file:

$database_type = "mysql";
$database_default = "cacti";
$database_hostname = "localhost";
$database_username = "somethingi";
$database_password = "something";
$database_port = "3306";

Thanks for helping!

fmangeant · Posted: Tue Feb 12, 2008 2:23 pm Post subject:

Hi

I had the same error when "beta testing" 0.8.7b, but it was fixed.

Can you add this to include/global.php before the "Sanity Check on 'Corrupt' PHP_SELF" block :

megaman · Joined: 11 Feb 2006 Posts: 3

I am using FreeBSD too.

Here is the result after adding your code :

megaman · Joined: 11 Feb 2006 Posts: 3

A temporary solution would be to edit global.php like that :

comment this line:

ben_c · Posted: Tue Feb 12, 2008 8:02 pm Post subject:

Hm, I might hold off on applying those patches for .7b based on this thread!

chronos · Joined: 12 Feb 2008 Posts: 5

davebassjunkie · Joined: 19 Nov 2007 Posts: 13

I'm getting the same error from applying the patch for 0.8.7a (multiple_vulnerabilities-0.8.7a.patch)

I'm not going to remove that line from the code, as that stops one of the XSS attacks that are the problem.

I have in my httpd.conf file in regards to the alias:

Alias /cacti "/local/cacti/"

Has anyone found a workaround that does not require removing an alias or taking out the security part?

fmangeant · Posted: Wed Feb 13, 2008 3:07 am Post subject:

I've sent a PM to Larry about this error, which was supposed to be corrected in final release of 0.8.7b

(and I also renamed the first post)

Gamb · Joined: 22 Nov 2007 Posts: 11 Location: France

Hello,

I have same problem with $_SERVER["PHP_SELF"] :

TheWitness · Posted: Wed Feb 13, 2008 6:59 am Post subject:

I will send a note to the remainder of the developers. Those experiencing this problem need to post their tech support pages for me. Also, please post an error's you are getting in your Apache log.

In the mean time, apply the workaround. I believe that there may be no one solution to this issue.

Regards,

Larry

chronos · Joined: 12 Feb 2008 Posts: 5

Here's my _SERVER array:

Array
(
[UNIQUE_ID] => ss00HMCoAQoAAEZzUy4AAAAJ
[HTTP_HOST] => www.clkroot.net
[HTTP_USER_AGENT] => Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.8.1.12) Gecko/20080201 Firefox/2.0.0.12
[HTTP_ACCEPT] => text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
[HTTP_ACCEPT_LANGUAGE] => en-us,en;q=0.5
[HTTP_ACCEPT_ENCODING] => gzip,deflate
[HTTP_ACCEPT_CHARSET] => ISO-8859-1,utf-8;q=0.7,*;q=0.7
[HTTP_KEEP_ALIVE] => 300
[HTTP_CONNECTION] => keep-alive
[HTTP_COOKIE] => ************
[PATH] => /sbin:/bin:/usr/sbin:/usr/bin
[SERVER_SIGNATURE] =>
[SERVER_SOFTWARE] => Apache/2.2.8 (FreeBSD) mod_ssl/2.2.8 OpenSSL/0.9.8e DAV/2 PHP/5.2.5 with Suhosin-Patch mod_scgi/1.12
[SERVER_NAME] => www.clkroot.net
[SERVER_ADDR] => 192.168.1.10
[SERVER_PORT] => 80
[REMOTE_ADDR] => 81.85.237.5
[DOCUMENT_ROOT] => /usr/local/www/wordpress
[SERVER_ADMIN] => **************
[SCRIPT_FILENAME] => /usr/local/share/cacti/index.php
[REMOTE_PORT] => 53845
[GATEWAY_INTERFACE] => CGI/1.1
[SERVER_PROTOCOL] => HTTP/1.1
[REQUEST_METHOD] => GET
[QUERY_STRING] =>
[REQUEST_URI] => /sys_cacti/
[SCRIPT_NAME] => /sys_cacti/index.php
[PHP_SELF] => /sys_cacti/index.php
[REQUEST_TIME] => 1202907375
)

And my alias in my httpd.conf:
Alias /sys_cacti/ "/usr/local/share/cacti/"

fmangeant · Posted: Wed Feb 13, 2008 8:38 am Post subject:

I can reproduice the problem by installing Cacti 0.8.7b in /home/cactiuser/test, with an Apache directory /foo :

dvl · Joined: 15 Nov 2006 Posts: 12 Location: Warrington, PA

fmangeant · Posted: Wed Feb 13, 2008 10:10 am Post subject:

Modification by megaman worked for me : http://forums.cacti.net/viewtopic.php?p=125940#125940

alepot · Joined: 13 Jun 2007 Posts: 1