31. 07. 2006. | #11 |
Boris
Grand Master
Datum učlanjenja: 01.12.2005
Lokacija: Novi Sad
Poruke: 775
Hvala: 5
156 "Hvala" u 2 poruka
|
gremlini...
__________________
"It’s important to have goals when you pet. Otherwise you’re just rubbing another mammal for no reason." - Scott Adams |
01. 08. 2006. | #12 |
Ivan Dilber
Sir Write-a-Lot
|
evo sad i mene zeza Quick Edit poruke. Evo kako tacno izgleda zahtev (iz FireBug-a), da lakse debagujete:
Kôd:
POST http://www.devprotalk.com/editpost.php Poslato: do=updatepost&ajax=1&postid=15735&wysiwyg=0&message=%5BQUOTE%3Djablan%5DJa%20ne%20znam%2C%20ali%20sam%20primetio%20da%20se%20ovakve%20%22twilight%20zone%22%20stvari%20uvek%20tebi%20dešavaju...%20%3B%29%5B/QUOTE%5D%0A%0Aznao%20sam%20da%20nije%20trebalo%20da%20psujem%20onog%20vracha%20u%20Keniji...%3AD%0A%0AVerzija%20je%204.1.9-max%2C%20to%20je%20kod%20mene%20u%20lokalu%20na%20WinXP%2C%20ali%20do%20sad%20je%20lepo%20radila%2C%20prvi%20put%20jutros%20vidim%20ovako%20nesto...%20nije%20mnogo%20bitno%20jer%20na%20linux%20serveru%20sve%20sljaka%2C%20nego%20me%20zanimalo%20kako%20uopste%20moze%20da%20se%20desi%20ovako%20nesto...%0A%0AEDIT%3A%20Izgleda%20da%20se%20ipak%20ovo%20desava%20samo%20iz%20konzolnog%20mysql%20klijenta%2C%20bice%20da%20sam%20nabo%20nekakav%20dos%20bug..&postcount=4&s= Response: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>406 Not Acceptable</title> </head><body> <h1>Not Acceptable</h1> <p>An appropriate representation of the requested resource /editpost.php could not be found on this server.</p> <hr> <address>Apache Server at www.devprotalk.com Port 80</address> </body></html>
__________________
Leadership is the art of getting people to want to do what you know must be done. |
01. 08. 2006. | #13 |
Super Moderator
Invented the damn thing
Datum učlanjenja: 06.06.2005
Poruke: 2.371
Hvala: 370
701 "Hvala" u 194 poruka
|
Meni ne radi quick reply, a i sinoc me je nekoliko puta zezao onaj "ajax based" edit. Sve lepo editujem, al kad kliknem da edit dugme, jednostavno se nista ne desava. Srecom, mogao sam da odem u advanced mode, inace bi izgubio sve izmene.
|
01. 08. 2006. | #14 |
VD IT Direktora
Invented the damn thing
Datum učlanjenja: 08.06.2005
Lokacija: Beograd
Poruke: 2.118
Hvala: 503
1.307 "Hvala" u 282 poruka
|
Trebalo bi da se pogleda log tog mod_security-ja, da se vidi koje pravilo pravi problem sa AJAX zahtevima i da se isto pravilo promeni ili izbaci.
|
01. 08. 2006. | #15 |
Goran Pilipović
Sir Write-a-Lot
|
Pogledao sam jos juce audit.log i ima problem sa nekim "illegal character", samo nisam uspeo da provalim kojim posto me mrzelo da unescape-ujem stringove Zato neki put radi, neki put ne radi. Mozda ga cak zeza encoding pa se ne snalazi, probacu nesto.
Izmena (bluesman): evo meni je sada radio i quick reply, a sada probam i edit
__________________
Goran Pilipović a.k.a. Ugly Fingers Bradley f.k.a. bluesman I don't always know what I'm talking about but I know I'm right! |
01. 08. 2006. | #16 |
Nikola Denić
Sir Write-a-Lot
|
Ma ista situacija i meni se desava ... moramo da vidimo ako ima negde taj problem dokumentovan ...ako ne tu je vBulletin support
__________________
Do not ask yourself what the world needs. Ask yourself what makes you come alive, and then go do that. Because what the world needs is people who have come alive |
01. 08. 2006. | #17 |
Goran Pilipović
Sir Write-a-Lot
|
Nema to veze sa vB, znam sta je, samo da provalim koji ga to karakteri zbunjuju pa da sredim.
__________________
Goran Pilipović a.k.a. Ugly Fingers Bradley f.k.a. bluesman I don't always know what I'm talking about but I know I'm right! |
01. 08. 2006. | #18 |
Goran Pilipović
Sir Write-a-Lot
|
Nema to veze sa vB, znam šta je....
(ovo sam namerno ponovio ali sa našim slovima, dakle problem nismo imali nixa i ja jer nismo koristili šćđ... zato je i prošao zahtev.... čim sam ubacio jedno"š", opet problem. Sada sam 100%o siguran da mod security pravi problem jer detektuje karaktere koji nisu po encoding-u strane)
__________________
Goran Pilipović a.k.a. Ugly Fingers Bradley f.k.a. bluesman I don't always know what I'm talking about but I know I'm right! |
01. 08. 2006. | #19 |
Designer guy
Wrote a book
|
HA! kako si mu samo doskocio!
|
01. 08. 2006. | #20 |
Goran Pilipović
Sir Write-a-Lot
|
Da, za one koji hostuju na ovom serveru, čisto da napomenem da neće prolaziti zahtevi tipa : nekastrana.php?nesto=../../nesto drugo ... dakle uopste nece dozvoliti zahtev koji ima bilo koji / u sebi.
Treba da se provere scriptovi, narocito oni koji koriste neke CMS-ove koji imaju ovako glupave sisteme. Doduse postojale su i neke nebuloze koje smo sklonili, nije hteo da propusti bilo sta sto ima "ls", pa recimo ne moze da se uploaduje Excel file jer ima ekstenziju .xls Treba biti jako oprezan sa ovim mod_security, pa ako imate "gremline" na sajtu, na bilo kom serveru, upitajte svog hosta da li imaju mod_security Zar ovo vec nisam napisao?
__________________
Goran Pilipović a.k.a. Ugly Fingers Bradley f.k.a. bluesman I don't always know what I'm talking about but I know I'm right! |
|
|
Slične teme | ||||
Tema | Početna poruka teme | Forum | Odgovori | Poslednja poruka |
Starion; zahtevi & podela | Captain | Web aplikacije, web servisi i software | 5 | 01. 03. 2010. 13:35 |
Asinhroni upload | Ilija Studen | (X)HTML, JavaScript, DHTML, XML, CSS | 23 | 07. 12. 2007. 04:08 |
Specijalni zahtevi za softver | bluesman | e-Business | 5 | 11. 11. 2006. 04:32 |