Nooku Framework has problems with the Suhosin patch.
[error] [client 192.168.3.2] ALERT - Include filename
('tmpl:///var/www/joomla/components/com_foo/views/people/tmpl/default.php')
is an URL that is not allowed (attacker '192.168.3.2',
file '/var/www/joomla/plugins/system/koowa/view/abstract.php', line 418)
To fix this add the following to your php.ini file if you are using suhosin :
suhosin.executor.include.whitelist = tmpl://, file://
Remember that you likely need to add this to a php.ini file in your joomla root folder, and your /administrator/ folder.
And some .ini users might need to also add session.save_path = /tmp.
If the user can't use .ini configuration files, here's how to do it by .htaccess
php_value suhosin.executor.include.whitelist tmpl://, file://
1 comments:
Post a Comment