Please disregard the 'View article...' shown at the bottom of many posts as this is the result of restoring old forum posts from a backup.

dleffler

Updated software to v2.5.2

About

Username
dleffler
Joined
Visits
461
Last Active
Roles
Guest, Member, Administrator

Comments

  • This is a server issue. From what I've seen on Google referencing the above error, in a move to php v5.6 or greater. A possible fix is that if OpenSSL is not being loaded as a PHP module in the php.ini?
    in Security Validation Failed Comment by dleffler November 2016
  • You might try going to the reCaptcha admin page https://www.google.com/recaptcha/admin and adjusting some of the 'Advanced Settings' near the bottom (click on 'Advanced Settings' to open them up).
    in Security Validation Failed Comment by dleffler November 2016
  • Looks like your site SSL certificate is invalid? Your working with a secure site? I don't have any public secure sties to test myself.
    in Security Validation Failed Comment by dleffler November 2016
  • Is this site maintained by 'package' or using 'git'? Is there a possibility the /external/ReCaptcha files have become corrupted? On a system I maintain by using the zipped package, I had to reupload the /external/ReCaptcha folder to get it to work. …
    in Security Validation Failed Comment by dleffler November 2016
  • The test file is found at https://sourceforge.net/projects/exponentcms/files/Samples/antispam-test.php/download
    in Security Validation Failed Comment by dleffler November 2016
  • I've run several tests on some sites using Exponent and a separate php script (which I'll upload to sourceforge.net later). The only issue I can reproduce is the inability to display the widget while using a newer Firefox based browser.
    in Security Validation Failed Comment by dleffler November 2016
  • Not too long ago, Google required reacquiring new reCaptcha keys against the domain name (not sure if it was entirely for the move from v1 to v2 or something else). If they've not gotten a new reCaptcha key they might try deleting their domain from …
    in Security Validation Failed Comment by dleffler November 2016
  • Sorry, I meant the Google server since they own/run reCaptcha now
    in Security Validation Failed Comment by dleffler November 2016
  • I'm not having issues with my sites, but do see some anomalies between browsers... IE11 must turn off use compatibility list from microsoft.com to get it to validate Firefox (49?) gives a widget ERROR for site owner: Invalid domain for site key I m…
    in Security Validation Failed Comment by dleffler November 2016
  • Confirm this is the 'verification' failing AFTER you submit with the recaptcha checked or is the recaptcha widget saying there is an issue with the site key?
    in Security Validation Failed Comment by dleffler November 2016
  • What browser are you using? I've noticed some anomalies under Firefox...some google searches indicate it may be tied to cookies in the browser cache?
    in Security Validation Failed Comment by dleffler November 2016
  • Please be patient, we are attempting to address over 3 dozen reports, many of which are duplicates.
    in Maybe potential SQL injection Comment by dleffler November 2016
  • This is addressed/fixed in the new v2.4.0 release by escaping the string in the call to getPageByName in line #789
    in Maybe There is an possible sql inject. Comment by dleffler October 2016
  • Exponent should run fine on php v7.0. I do all my testing currently on a 7.0 system and my 2 major sites are running on 7.0. In fact I've not experience any issues with the pre-release versions of php 7.1. I would suspect it might be nginx or their …
    in PHP 7.0 Comment by dleffler October 2016
  • It looks like the code isn't really set up to work with the split credit card billing calculator. A work-around would be to create a new user account for that customer yourself (you could log off, then fill the cart and fill in the details (address…
    in Order received over the phone Comment by dleffler October 2016
  • Nope, that (Pass-thru) doesn't work since it only accepts cash and will assign the order to the admin user.
    in Order received over the phone Comment by dleffler October 2016
  • In theory, that's what the Pass-Thru billing calculator seems to have been designed for? E.g., you log on as an admin (store clerk) and create an order the regular way...but I've not fully tried it.
    in Order received over the phone Comment by dleffler October 2016
  • Have you tried using a mail client on a device to test the SMTP server settings above? (e.g., the same client used to check your email)
    in Mailfail Comment by dleffler October 2016
  • SSL and TLS are methods to encrypt the connection and have nothing to do with authentication...in most cases the encryption should be set to 'None'. Authentication on the other hand is set by entering the correct user name and password for the SMTP …
    in Mailfail Comment by dleffler October 2016
  • If the connection is timing out, perhaps your server is blocking some outbound ports to prevent it being used to spam? Also, some mail servers do NOT use port 25, but have another specific port they monitor...and/or a specific sign-in (full email ad…
    in Mailfail Comment by dleffler October 2016
  • I would think the username (and password) are an actual email account on the smtp server...above implies you entered the server address as a username? Most mail servers run without an Encrypted Connection, but you might try any of the 3 settings. Yo…
    in Mailfail Comment by dleffler October 2016
  • Well that's why simple mail fails (since it slaves off the server's mail server). You'll need access to a mail server (SMTP), it can be any domain/server, then set up the site configuration mail server settings.
    in Mailfail Comment by dleffler October 2016
  • As a note, the Exponent CMS mail subsystem was last edited on May 25th which corresponds with the v2.3.8patch2 release and we issued a total of 6 patches to v2.3.8, then v2.3.9, and most recently v2.3.9patch1 (with a patch2 on the way)
    in Mailfail Comment by dleffler September 2016
  • Is it possible the server has changed in regards to the 'sendmail' command or the php.ini file? Here's a link to some things to check if the php simplefied email is not working. In particular, look at the php.init settings section of that page and t…
    in Mailfail Comment by dleffler September 2016
  • Sorry, I missed that aspect of this post. I can duplicate the warnings, but my test system (configured for disable functions and use simplefied email) still sends the email. Is it possible there are odd/illegal characters in the 'email' field entry …
    in Mailfail Comment by dleffler September 2016
  • These are both 'warnings' about bad coding and are basically benign. * The first is already fixed in the pre-release code for patch 2 (which may become 2.4.0?). * The second is an attempt to 'escape' quotes in an argument to clean it up, but has b…
    in Mailfail Comment by dleffler September 2016
  • Use the form at http://www.exponentcms.org/exponent-bugs.htm
    in Security Vulnerability - All Exponent Versions - September 2016 (Updated) Comment by dleffler September 2016
  • There's a possibility the server timed out on updating too many tables (was this an upgrade from a much earlier version?). There is no sql script, since the system programmatically goes through every 'definition' file in every module and compares it…
    in v2.3.9 now available Comment by dleffler September 2016
  • Do you know what the merge conflict was (which file/files)? Anyway, the commands above are TWO separate actions...it has been edited.
    in v2.3.9 now available Comment by dleffler September 2016
  • Here's is an entry I was able to get things working, but it may actually turn off the features you are tyring to implement?Header set Content-Security-Policy "default-src 'self'; media-src *; img-src *; font-src *; script-src 'self' 'unsafe-inline'…
    in Content Security Policy? Comment by dleffler August 2016