RE: Cannot Access Includes Above Current Directory

RE: Cannot Access Includes Above Current Directory

am 30.12.2003 17:45:26 von Steve Benson

John:

Thanks for your suggestion.

I checked the output of phpinfo from both http and https and other than
directory name differences I found the following variables in the https
info:

Variable Value=20
UNIQUE_ID 8Sevn38AAAEAAALTfvAAAAAA =20
nokeepalive 1 =20
ssl-unclean-shutdown 1 =20
downgrade-1_0 1 =20
force-response-1_0 1 =20
HTTPS on =20
SSL_VERSION_INTERFACE mod_ssl/2.0.48 =20
SSL_VERSION_LIBRARY OpenSSL/0.9.6l =20
SSL_PROTOCOL SSLv3 =20
SSL_CIPHER RC4-MD5 =20
SSL_CIPHER_EXPORT false =20
SSL_CIPHER_USEKEYSIZE 128 =20
SSL_CIPHER_ALGKEYSIZE 128 =20
SSL_CLIENT_VERIFY NONE =20
SSL_SERVER_M_VERSION 1 =20
SSL_SERVER_M_SERIAL 00 =20
SSL_SERVER_V_START Dec 5 15:42:10 2003 GMT =20
SSL_SERVER_V_END Dec 2 15:42:10 2013 GMT =20
SSL_SERVER_S_DN /C=3DUS/CN=3Dwebdev/Email=3Dsbenson@sdfair.com =20
SSL_SERVER_S_DN_C US =20
SSL_SERVER_S_DN_CN webdev =20
SSL_SERVER_S_DN_Email sbenson@sdfair.com =20
SSL_SERVER_I_DN /C=3DUS/CN=3Dwebdev/Email=3Dsbenson@sdfair.com =20
SSL_SERVER_I_DN_C US =20
SSL_SERVER_I_DN_CN webdev =20
SSL_SERVER_I_DN_Email sbenson@sdfair.com =20
SSL_SERVER_A_KEY rsaEncryption =20
SSL_SERVER_A_SIG md5WithRSAEncryption =20
SSL_SESSION_ID
110B6D1F72C43479A06BC5EA6310AF411F903713674E82256769B2F923AF 5727 =20
Connection close

I didn't see any thing that stood out, do you see anything there that
might shed some light on this problem?

Thanks,

............. Steve

-----Original Message-----
From: John.Airey@rnib.org.uk [mailto:John.Airey@rnib.org.uk]=20
Sent: Tuesday, December 30, 2003 2:01 AM
To: modssl-users@modssl.org
Subject: RE: Cannot Access Includes Above Current Directory


Sorry I haven't got back to you sooner. I think I understand the problem
better now.

I suspect this is down to environment variables. Try using "phpinfo();"
via SSL and non-SSL connections and see if you can see which variables
aren't in the first one (curl and diff are very handy for this).

-=20
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of the
Blind, Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848
John.Airey@rnib.org.uk=20

There is more historical evidence for the existence of Jesus Christ than
for either Henry VIII or Julius Caesar.


> -----Original Message-----
> From: Steve Benson [mailto:sbenson@sdfair.com]
> Sent: 16 December 2003 17:29
> To: modssl-users@modssl.org
> Subject: RE: Cannot Access Includes Above Current Directory
>=20
>=20
> John:
>=20
> Thanks for taking the time to respond to my question it's much=20
> appreciated.
>=20
> I can understand this may be thought of as nothing to do with mod_ssl=20
> (and that's most likely true). I'm not sure what other list might be=20
> more appropriate and was trying to reach knowledgeable folks with both

> Apache and SSL experience.
>=20
> It might help if I explained the reason I tried the mod_ssl
> list is that
> -
>=20
> - I've created a number of Apache web sites using PHP but this is my=20
> first using SSL(mod_ssl incorporated into Apache 2.0.48, openssl).=20
> I've never encountered anything like this before in web development.
>=20
> - All scripts work fine with relative paths to include files
> as long as
> they're accessed via http and are not in the
> https virtual server directory tree structure.
>=20
> - When accessing the same scripts within the https virtual server tree

> the scripts cannot reference any include files that aren't at the same

> level or below in the directory tree.
>=20
> - If the include file is made available at the same level or below, no

> problem accessing via relative or absolute paths.
>=20
> - Even when the paths to include files are changed to absolute paths=20
> they fail if the file is above the current directory in the tree. For

> some reason I can't go up the directory tree from within the https=20
> virtual server directory structure. This is true no matter where I am=20
> in the structure i.e. if I'm two levels deep in the directory tree I=20
> can't reference a file up one level.
> If I'm three levels deep I can't reference files back on level two,
> bummer!
>=20
> This seems to be a configuration problem but I've exhausted
> my resources
> trying to figure out what within httpd.conf or ssl.conf would=20
> be causing
> this behavior.
>=20
> Seems like such a small thing but with an existing site structure I'd=20
> have to replicate many scripts, css',images etc. to make the=20
> components I need available within the https virtual server's=20
> directory structure.
> What a maintenance nightmare!
>=20
> Any suggestions you may offer are appreciated.
>=20
> Thanks,
>=20
> .......... Steve
>=20
>=20
>=20
> -----Original Message-----
> From: John.Airey@rnib.org.uk [mailto:John.Airey@rnib.org.uk]
> Sent: Tuesday, December 16, 2003 2:30 AM
> To: modssl-users@modssl.org
> Subject: RE: Cannot Access Includes Above Current Directory
>=20
>=20
> This isn't really a mod_ssl issue, but I suggest you use the absolute=20
> path for included php as the current directory is probably where the=20
> httpd binary is, or perhaps where the config files are.
>=20
> (I changed the subject as my last post was rejected, somehow)
>=20

-=20
DISCLAIMER:=20

NOTICE: The information contained in this email and any attachments is=20
confidential and may be privileged. If you are not the intended=20
recipient you should not use, disclose, distribute or copy any of the=20
content of it or of any attachment; you are requested to notify the=20
sender immediately of your receipt of the email and then to delete it=20
and any attachments from your system.=20

RNIB endeavours to ensure that emails and any attachments generated by=20
its staff are free from viruses or other contaminants. However, it=20
cannot accept any responsibility for any such which are transmitted. We
therefore recommend you scan all attachments.=20

Please note that the statements and views expressed in this email and=20
any attachments are those of the author and do not necessarily represent

those of RNIB.=20

RNIB Registered Charity Number: 226227=20

Website: http://www.rnib.org.uk=20
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org