We build. You grow.

Get best community software here

Start a social network, a fan-site, an education project with oxwall - free opensource community software

Get started
Google+

Newsfeed comments not work, version 1.5.3 (build 6341) | Forum

Topic location: Forum home » Support » Bug reports and troubleshooting
Esmoof
Esmoof May 3 '13
Do not open the box to write a review. It is charging, without giving an answer
#1
Alia Team
Alia May 3 '13
Your site URL please.

Did you do clean install? OR updated from one of the previous version ( which version did you have before)?
#2
Esmoof
Esmoof May 3 '13
I did the upgrade from the AdminCP, when I received notification of update .. Do not delete anything or installed above. I've checked the permissions of the scripts and are at 777. Site: bdsmface.com
#3
Alia Team
Alia May 3 '13
Esmoof, debug tools shows "NetworkError: 403 Forbidden - http://bdsmface.com/...=0.38121027202798907" along with 404 not found for  the image of the "comment" button and several 502 Bad Gateway errors.


1. Check your server's error logs? What do you see there?
2. Contact your hosting company.
3. What do you currently have in Oxwall's .htaccess file?
#4
Alia Team
Alia May 3 '13
Also, is your "Newsfeed" plugin up to date ?
#5
Esmoof
Esmoof May 3 '13

1. I have the. Htaccess, customized to prevent attacks (mod_evasive20.c, mod_security.c) and activate the browser cache for a faster navigation (Apache. Htaccess caching, mod_expires.c, mod_headers.c)


2. Error Logs in this moment:

  [Fri May 03 3:53:24 2013] [error] [client 84.79.72.188] File does not exist: / home/xxxx/public_html/403.shtml, referer: http://www.oxwall.org/forum/ topic/10720

[Fri May 03 3:48:57 2013] [error] [client 83.41.216.83] File does not exist: / home/xxxx/public_html/404.shtml, referer: http://mydomain.com/user/claraesclava

[Fri May 03 3:48:57 2013] [error] [client 83.41.216.83] File does not exist: / home / xxxx / public_html / ow_static / themes / macabre / images / comment_arr.png, referer: mydomain.com / user / claraesclava

[Fri May 03 3:47:42 2013] [error] [client 83.41.216.83] File does not exist: / home/xxxx/public_html/404.shtml, referer: http://mydomain.com/

[Fri May 03 3:47:42 2013] [error] [client 83.41.216.83] File does not exist: / home/xxxx/public_html/ow_userfiles/plugins/base/avatars/avatar_142_1363460588.jpg, referer: mydomain.com /


3. Newsfeed Update 6254

The Forum post is edited by Esmoof May 4 '13
#6
Alia Team
Alia May 7 '13
Esmoof, thanks for your reply.
403 forbidden error when posting anything into newsfeed, is most likely caused by either mod_evasive20.c or mod_security.c . Try disabling mod_evasive20.c first>>then try posting anything into newsfeed. Make sure to check your error logs after disabling each mod.

Do the same thing with mod_security.c.
Let me know the results.
#7
Esmoof
Esmoof May 7 '13
Protection of our social networks with the apache server, File .htaccess


I tried to protect it with a series of modules and rules, but I see that this is causing problems:


###Prevent Hotlinking#######RewriteCond %{HTTP_REFERER} !^$RewriteCond %{HTTP_REFERER} !^http://208.45.345.97/.*$ [NC]RewriteCond %{HTTP_REFERER} !^http://(.+\.)?yourdomain.com/.*$ [NC]RewriteRule \.(gif|GIF|jpg|JPG|js|JS|css|CSS|png|PNG|html|forum)$ - [F]###prevent injections SQL####RewriteCond %{QUERY_STRING} (;|<|>|’|”|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*(/\*|union|select|insert|cast|set|declare|drop|update|md5|benchmark) [NC,OR]RewriteCond %{QUERY_STRING} \.\./\.\. [OR]RewriteCond %{QUERY_STRING} (localhost|loopback|127\.0\.0\.1) [NC,OR]RewriteCond %{QUERY_STRING} \.[a-z0-9] [NC,OR]RewriteCond %{QUERY_STRING} (<|>|’|%0A|%0D|%27|%3C|%3E|%00) [NC]RewriteRule .* - [F]###prevent scan of vulnerabilities and Badbots#####RewriteCond %{HTTP_USER_AGENT} ^$ [OR]RewriteCond %{HTTP_USER_AGENT} ^(-|\.|') [OR]RewriteCond %{HTTP_USER_AGENT} ^(.*)(<|>|%3C|%3E)(.*) [NC,OR]RewriteCond %{HTTP_USER_AGENT} (<|>|’|%0A|%0D|%27|%3C|%3E|%00) [NC]RewriteCond %{HTTP_USER_AGENT} ^(java|curl|wget)(.*) [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^(.*)(libwww-perl|libwwwperl|winhttp|snoopy|curl|wget|winhttp|python|nikto|scan|clshttp|archiver|loader|email|harvest|fetch|extract|grab|miner|suck|reaper|leach)(.*) [NC]RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Bot\ mailto:craftbot@yahoo.com [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Custo [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^DISCo [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Download\ Demon [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^eCatch [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^FlashGet [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^GetRight [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^GrabNet [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Grafula [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^HMView [NC,OR] RewriteCond %{HTTP_USER_AGENT} HTTrack [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [NC,OR] RewriteCond %{HTTP_USER_AGENT} Indy\ Library [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^InterGET [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [NC,OR] RewriteCond %{HTTP_USER_AGENT} Java [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^JetCar [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^JOC\ Web\ Spider [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^larbin [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^lwp:: [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^lwp- [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Mass\ Downloader [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Navroad [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^NearSite [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^NetAnts [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^NetSpider [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^NetZIP [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Octopus [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Offline\ Explorer [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Offline\ Navigator [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^pavuk [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^RealDownload [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^ReGet [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Schmozilla [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^SuperBot [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Surfbot [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebAuto [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebCopier [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^webcollage [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^WebFetch [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebGo\ IS [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebReaper [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebSauger [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Website\ Quester [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebStripper [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WebZIP [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Wget [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Widow [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Xaldon\ WebSpider [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Zeuse [NC] RewriteRule .* - [F]######Remote File Inclusion (RFI)######RewriteCond %{REQUEST_METHOD} GETRewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=[OR]RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=(\.\.//?)+ [OR]RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=/([a-z0-9_.]//?)+ [NC]RewriteRule .* - [F]</IfModule>


Can you tell me if you see something that is not right?


Best regards

The Forum post is edited by Esmoof May 7 '13
#8
Scott Cowick
Scott Cowick May 7 '13
Hello, I am experiencing the same exact errors but I have not modified any of the stock code for any plugins or the site itself. I'm guessing that means that it must be a permissions issue with my server. I have no idea how to even begin looking for where this issue might originate though.
#9
Alia Team
Alia May 8 '13
Scott, what is your site URL?
#10
Alia Team
Alia May 8 '13
Esmoof, unfortunately I am not competent in settings of these Appache  modules.
I recommend getting advice from a good system administrator.


#11
Start | Demo | About | Policies & Licenses | Blog | Contact Us | Oxwall Foundation | Roadmap | Developer Central | Oxwall hosting | Contribute | Partners | Donation | Community software | Dating software
© Copyright Oxwall Software
Oxwall Community Software