PHP - Any One Php Expert Help Me.htaccess Error

I've just implemented PHPass into an application that I am working on, and I am seeing a strange inconsistency. The issue is, the application is installed on one site, and it works perfectly. But the same application works on another site, and the login nor registration works. Does anyone know what might be the issue that registration and login works on one site but not the other with PHPass? Thanks.

Hi,

My hosting company (Bluehost) told me when someone goes to my home page, it sends these series of queries and this is the reason for my high cpu usage and this is why my site says Error Establishing Database. The hosting company gave me these:

Each script is using a decent about of CPU.
[2:09:33 AM] hollane3 31881 6.2 0.1 186084 49000 ? RN 01:59 0:26 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 934 6.6 0.1 184012 48652 ? RN 01:59 0:25 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 5344 7.1 0.1 184008 48440 ? RN 02:01 0:21 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/wp-cron.php
hollane3 5164 7.1 0.1 186444 48772 ? RN 02:01 0:22 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 7246 6.9 0.1 184116 48196 ? RN 02:02 0:18 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 11221 5.8 0.1 185160 47852 ? RN 02:03 0:09 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 11236 6.4 0.1 182992 47620 ? RN 02:03 0:10 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/wp-cron.php
hollane3 12595 5.4 0.1 183088 47264 ? RN 02:04 0:07 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 13969 5.4 0.1 184648 47396 ? RN 02:04 0:05 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 14161 6.1 0.1 182480 47140 ? RN 02:04 0:06 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/wp-cron.php
hollane3 14198 6.7 0.1 183092 47204 ? RN 02:04 0:06 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php
hollane3 16343 4.9 0.1 181968 46496 ? RN 02:05 0:02 | \_ /ramdisk/bin/php5 /home4/hollane3/public_html/index.php

I am not well versed with scripting, so I don't know what this mean.    Can anyone PLEASE help me to answer these questions:

+ Is this related to a particular plugin or widget or theme?
+ What could be the possible source of this issue, that is, which file should I look at to resolve this?
+ Can I fix this myself or do I need a php coder to help me?

Thanks!

This topic has been moved to PHP Applications.

http://www.phpfreaks.com/forums/index.php?topic=351799.0

If you are a PHP expert, then I really your help. I have a question regarding PHP sessions and their security. So here is my story ...

I created a login script (login.php) for my website. When a user goes to the login.php page, they see a login form that they must fill with their username and password to login to the members' area and view their profile, etc.

On that login page, when the user enters their username and password and then clicks the "Login" button, my script filters the data, sends MySQL query and checks if the login is valid. If the login is NOT valid, then they get a "Login Failed" message. If the login is valid, I register their username and the password in sessions and redirect them to the members.php page.

Here is some of my code for my login.php page after mysql confirms the login is valid


<?php

$query = mysql_query('SELECT * FROM `users` WHERE username='$user' AND password='$pass'");
$numRows = mysql_num_rows($query);

if ( $numRows ) {
     
      // login is valid
      $_SESSION['username'] = $user;
      $_SESSION['pass'] = $pass;

      // redirect user to members area
      header('Location: /members.php');

} else {
     
       // login is invalid
       echo "Login failed";

}

?>


My question is ... is this login script secured? I mean, I am not generating any session id or any cookie. I am just storing the username and the password in two session variables and those are the things that i will use to display the user's profile, etc. Can attackers attack this script? Is this secured or is there any other way I can make it stronger?

Hi can someone help me

i have this .htaccess code

 

Supposed i have

RewriteRule ^([a-zA-Z0-9-z\-]+)/([^.]+)/([a-zA-Z0-9-z\-]+)$ index.php?Active=$1&PostID=$2&PostName=$3 [L]

 

 

this line wont work 

##RewriteRule ^([a-zA-Z0-9-z\-]+)/([^.]+)$ index.php?Active=$1&PostCell=$2 [L]

so i commented it

 

i need to make them both work for pretty urls

Options -Indexes
Options +FollowSymLinks -MultiViews

RewriteEngine On

ErrorDocument 404 /404.html
ErrorDocument 401 /404.html
ErrorDocument 403 /404.html
ErrorDocument 404 /404.html
ErrorDocument 500 /404.html

RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} /(.*)/$
RewriteRule ^ /%1 [R=301,L]


RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-l
RewriteCond %{DOCUMENT_ROOT}/$1 -f
RewriteRule ^[^/]+/([^.]+\.(?:js|css|jpe?g|png|gif))$ /$1 [L,R=301,NC]

RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^([a-zA-Z0-9-z\-]+)/?$ index.php?Active=$1 [L]
##RewriteRule ^([a-zA-Z0-9-z\-]+)/([^.]+)$ index.php?Active=$1&PostCell=$2 [L]




RewriteRule ^([a-zA-Z0-9-z\-]+)/([^.]+)/([a-zA-Z0-9-z\-]+)$ index.php?Active=$1&PostID=$2&PostName=$3 [L]

Thank you in advanced.

Edited May 27, 2020 by azumica

Hi how can I make this URL clean

http://localhost/?Active=View&PostCategory=1

i want to remove the ?,&, = make them into /

this is the php code that manipulate the link

<?php
Class ControlURL{


    public static $_page = "Active";
    public static $_folder = Web_Body;
    public static $_params = array();


    public static function cPage() {
        if(isset($_GET[self::$_page])){
            return $_GET[self::$_page];
        }else{
            return 'index';
        }
    }


    public static function getPage() {
        $page = self::$_folder.DS.self::cPage().".php";
        $error = self::$_folder.DS."error.php";
        if(is_file($page)){
            return $page;
        }else{
            return $error;
        }
    }


}

 

Hi people

i have this link

http://localhost/ViewCategory/PHP

my problem is everytime i put / from PHP/

it will redirect me to Access forbiden

andd return me this

http://localhost/C:/xampp/htdocs/index.php?Active=ViewCategory&PostCategory=PHP/

 

how to fix it 

this is how my htaccess code

 

  Options -Indexes

RewriteEngine On


RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-l
RewriteCond %{DOCUMENT_ROOT}/$1 -f
RewriteRule ^[^/]+/([^.]+\.(?:js|css|jpe?g|png|gif))$ /$1 [L,R=301,NC]

RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^([a-zA-Z0-9-z\-]+)/?$ index.php?Active=$1 [L]
RewriteRule ^([a-zA-Z0-9-z\-]+)/([^.]+)$ index.php?Active=$1&PostCategory=$2 [L]

 

Hi,

Was woudering if someone could help? I would like to stop people accessing a folder (web directory) on my domain using the .htaccess. However the folder contains scripts in it that i use thererfore a redirect away from that folder does not work. can you help?
 

Hello,

I need help to shorten the following url in apache .htaccess example.com/index.php?q=1&w=2   if possible, the url that i would like is... example.com/index.php/1/2   or better yet... example.com/index/1/2

I have the current rule in my htaccess

RewriteRule ^catalogue/([a-z0-9-]+)/([a-z0-9-]+).php$  catalogue/item.php?id1=$1&id2=$2 [L]

however whenever i type in the browser

/catalogue/computers/cases.php and then change the category to a category not in my database it still shows the item.php page but without any data - blank page.

How do you redirect this to a 404 or do I just write a script that if no records are found in the database redirect to the main catalogue page?

Hi all.

I dont knw why I still can't get it right after many tries.
The .htaccess just can't locate the .bypassed file.

On my domain I created a folder called hidden in my web root and this is my authfile path:
/www/hidden/.htpasswd

but still no show. pls what am I missing here.

I even tried it on localhost:
/www/my_folder/hidden/.htpasswd

same no show.

help pls.

thanks

Hi all   I am using the following rewrite rule  

RewriteRule ^news([a-z0-9_-]+)/([a-z0-9_-]+)(/)?$ news.php?id=$1&identifier=$2

  when I use the link generated I get a 404 Not Found but if I go the genuine URL e.g. www.jasondoyle69.com/news.php?id=[id]&identifier=[identifier], then the page is displayed correctly.   My question is, how do I do the rewrite rule for this, where there two php variables?  

Hello every body   Currently I'm facing a new prbel with .htaccess.   I've used this code to remove the .php extention and add a trailing '/' at the end.

RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^([^/]+)/$ $1.php
RewriteRule ^([^/]+)/([^/]+)/$ /$1/$2.php
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} !(\.[a-zA-Z0-9]{1,5}|/)$
RewriteRule (.*)$ /$1/ [R=301,L]

RewriteCond %{HTTP_HOST} !^www.superioradsmedia.com$ [NC]
RewriteRule ^(.*)$ http://www.superioradsmedia.com/$1 [L,R=301]

Everything is working fine except two things   1) If I use an image location like "www.abc.com/images/abc.jpg" it does'nt show up.. But if I use 'http://' in front of it it shows the image...   2) Suppose I have a directory in my root directory like 'new_folder' which contains an index.php page   If i access like this   www.abc.com/new_folder       -------------------> It gives me 404 error...   But if I use       www.abc.com/new_folder/index.php   ---------------------> it works...     ANy help will be greatly appreciated....   Thank you...

http://www.myurl.com.au/newlook/hotel_list.php?cntry=AU&cntryname=Australia&city=Brisbane&checkin=06/12/2014&checkout=06/13/2014&room=1&guest=2

to

http://www.myurl.com.au/newlook/Australia/Brisbane

baring in mind that the country and city will change

I am trying to find out if it is possible to rewrite my urls in htaccess file   from