Serendipity 1.1: Login/Session Cookie Bug in Windows IIS

Found a bug? Tell us!!
Post Reply
ltomlin
Regular
Posts: 10
Joined: Tue Mar 13, 2007 1:43 pm

Serendipity 1.1: Login/Session Cookie Bug in Windows IIS

Post by ltomlin »

Following our conversation

I have a development server currently Powered by Serendipity 1.1.2, PHP 5.2.1, IIS and Windows Server 2000 SP4, and I am having the same problem. I thought this problem was fix in version 1.1.1, I have reviewed all the fixes recommended here and on the forum http://board.s9y.org/viewtopic.php?t=8205, so far no success. Guys let us join hands togather. Please let me have your comments or suggestions. Much appretiated
#4 Leroy Tomlin (Homepage) on 2007-03-13 12:22 (Reply)
Hi Leroy!

Please come to the forums, where we will try to help you.

Do PHP sessions generally work on your server, have you made sure of that with another application that requires cookies? Like phpMyAdmin with "cookie" authentication? Please reply on the forums.

To be it sounds as if it's a server issue, not with S9y - the bug that had been there should really be fixed. :)

Best regards,
Garvin
#4.1 Garvin on 2007-03-13 12:52 (Reply)

In my humblest of opinion I think it may definately be a problem with Serendipity, simply because I am currently running another PHP Application (Powered by phpBB 2.0.22 © 2001 phpBB Group) on the same machine and it is working fine (I can login to their admin system and use it without any problems)

Thanks for your response it was very quick!
Top
garvinhicking
Core Developer
Posts: 30022
Joined: Tue Sep 16, 2003 9:45 pm
Location: Cologne, Germany
Contact:
Contact garvinhicking

Re: Serendipity 1.1: Login/Session Cookie Bug in Windows IIS

Post by garvinhicking »

Hi!

Thanks for coming here! :)
In my humblest of opinion I think it may definately be a problem with Serendipity, simply because I am currently running another PHP Application (Powered by phpBB 2.0.22 © 2001 phpBB Group) on the same machine and it is working fine (I can login to their admin system and use it without any problems)
phpBB uses a different login system which propagates the Sesison ID through the URL as a fallback.

Serendipity does not do that, it relies on Cookie sessions because of security implications.

Can you show me the output of your phpinfo() script, or at least your PHP (php.ini) settings for the cookie.* variables?

Also please tell me how you configured the URL ("Base URL") as well as the HTTP path in your serendipity installation. This might be related to cookie problems (some browser do not accept cookies from "localhost" for example)

Best regards,
Garvin
# Garvin Hicking (s9y Developer)
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/
Top
garvinhicking
Core Developer
Posts: 30022
Joined: Tue Sep 16, 2003 9:45 pm
Location: Cologne, Germany
Contact:
Contact garvinhicking

Re: Serendipity 1.1: Login/Session Cookie Bug in Windows IIS

Post by garvinhicking »

Hi!

In your reply from: http://board.s9y.org/viewtopic.php?p=52032#52032

Your "session.save_path" looks odd:

Code: Select all

C:\DOCUME~1\ADMINI~1.000\LOCALS~1\Temp\php\session C:\DOCUME~1\ADMINI~1.000\LOCALS~1\Temp\php\session
It might be that the php.ini file has troubles with the forward slashes.

Could you check in the mentioned directory if when you login to your s9y installation, if files are added to this directory?

If yes, then the search for a problem goes on.

If no, then try to enter a path like "C:/Temp/" instead in your php.ini, and make sure that directory is writable for your IIS user.

Best regards,
Garvin
# Garvin Hicking (s9y Developer)
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/
Top
Post Reply

Return to “Bugs”