brassman
-
Posts
17 -
Joined
-
Last visited
Posts posted by brassman
-
-
bsmither
Sorry for the late reply your very quick response.
As I recall, the most recent upgrade to .13 was not straightforward. The previous version was .11 and a couple of versions came out in quick succession so I went for .13
However this did not install smoothly for me, so I went for the email directory patch option, leaving the rest of the store intact.
I do have 2 stores, the other seems to be working although I followed the same procedure - but I'll check again.
Now CC614 is out with an instruction to upgrade I'll try that with the non-problem site to see what happens.
-
An issue has occurred upon version update 6.1.3 - although as others have noted on this forum I'm not convinced this update since I had problems with it.
I sell sheet music from a website and all the products are downloads - have been doing this with CC since Version 3.N
For security, all downloads are in a directory at the same level as public_html
I refer to them in Products/Dashboard/product name/Digital using the file path/name.ext mechanism for example /home/siteparent/filename.ext
This has worked for years without problems.
Following the update, this link is broken.
In the Product tab, every reference to the file generates an error "It has not been possible to locate the download file path/name"
Can anyone explain why this has happened and, more important, how to fix it please?
Many thanks
Brassman
-
On 18/01/2016 at 11:16 PM, Dirty Butter said:
Were you using Memcache in your previous version? What did you upgrade from? Please provide your site url.
I was not using memcache previously on CC6.0.5, and upgraded from this version to 6.0.10 in one go using the standard install. My store is pretty vanilla with no customisations, tweaks or additions. Out of the Box.
Have checked global.inc.php for CC6.0.10 and it says
$glob['cache'] = 'file'; // Cache in use can be (apc, file, memcache, memcached, xcache)
so it looks like file is the default cache mode in CC6.0.10
-
Hi Everyone
I just updated to 6.0.9 - all good apart from some code appearing at the top of every screen (admin and live site).
A quick investigation suggests that this is security related which is a bit of a worry. Can anyone advise me what to do?
Many thanks
Brassman
The errors are below:
Warning: file_exists(): open_basedir restriction in effect. File(/usr/lib/php/memcached.class.php) is not within the allowed path(s): (/home/:/usr/lib/php:/usr/local/lib/php:/tmp:/usr/local/apache/htdocs) in /home/sitename/public_html/classes/autoloader.class.php on line 89
Warning: file_exists(): open_basedir restriction in effect. File(/usr/lib/php/memcached.php) is not within the allowed path(s): (/home/:/usr/lib/php:/usr/local/lib/php:/tmp:/usr/local/apache/htdocs) in /home/sitename/public_html/classes/autoloader.class.php on line 92
Warning: file_exists(): open_basedir restriction in effect. File(/usr/lib/php/memcache.class.php) is not within the allowed path(s): (/home/:/usr/lib/php:/usr/local/lib/php:/tmp:/usr/local/apache/htdocs) in /home/sitename/public_html/classes/autoloader.class.php on line 89
Warning: file_exists(): open_basedir restriction in effect. File(/usr/lib/php/Memcache.php) is not within the allowed path(s): (/home/:/usr/lib/php:/usr/local/lib/php:/tmp:/usr/local/apache/htdocs) in /home/sitename/public_html/classes/autoloader.class.php on line 92
-
Thanks again bsmither.
So, how do we persuade abrookbanks to reconsider his decision to remove Custom Root File path in the next release? The post you point to did not provide much of an explanation.
-
We know that CC6 no longer has the ability to use a "Custom root file path" (CC5 admin, Store Settings, Stock tab). So, when you say "I have and always have had my files stored in a directory below public_html," I think you mean in a directory that is a sibling of public_html. (The folder public_html should be where CubeCart is.)
The string for the custom root file path may still be in the general Config array, put there under CC5, so there is no concern about it getting lost.
The CC6 FileManager won't use it.
Here is a summary of how CC5 did things. Again, CC6 does not use "Custom root file path".
On the other hand, as you discovered, the FileManager class file from CC5 being used instead of the CC6 class file re-enables this capability. But, the CC6 admin setting is still not visible if the custom root file path needs to be changed.
Thanks for this clarification bsmither!
However, can someone explain why the decision was made to remove the ability to use a custom root file path. In the past we have been strongly advised to use this in order to provide good security for digital downloads. Presumably, in CC6 digital downloads must now be stored in public_html (is this correct?). If this is the case, to me this introduces a security vulnerability not to mention confusion to many CC operators who like me suddenly found their stores no longer functioning post upgrade. Reconfiguring a store with many hundreds of downloads is not something I want to do.
However, it's good to hear that restoring the CC5 class provides a short term fix. How long will this work for I wonder?
Nul Points CC!
-
Like Darth I'm experiencing identical problems with broken digital downloads, as well as links from the home page creating 500 errors (are these errors related?).
My site is running a vanilla version 6.0.4 with all in 1 shipping and paypal modules. I'm selling sheet music for download. No customisation whatsoever.
Reading through this thread, it's good to see the excellent support from bsmither (as usual) but at present until there is some assurance of an effective fix, I'm not keen on editing the source files. Have been a user since v3 and sadly my recollections are that download functionality seems to have been inadequately tested on some releases. (Regression testing anyone?)
Is this download bug a feature of this version, has anyone else noticed it? Will there be another CC release to fix it?
-
David
As far as I can tell the newsletter function is broken.
Whilst it is possible to create and save newsletters, the following does not work:
1. send test email
2. send newsletter
The system does report "newsletter sent" but nothing is in fact transmitted.
Yet another major bug in this buggy issue I fear. The question is, has it been reported, and are we going to get a promise of a fix?
John
-
Today I upgraded from CC3 to 5.1.0
I can't get digital downloads to work securely.
To protect downloads, they need to be in a file above /public_html
But there seems to be no way to point to such a file, let alone create it, from within CC5.1.0.
Yes, it's possible to create a download folder in the /files directory BELOW /public_html but that is completely vulnerable, so no use whatsoever. Why on earth did CC decide to implement it that way with such a well known issue is a mystery.
The documentation on downloads for CC3 (which mentions the vulnerability) was no use because the interface has changed so radically.
Not yet got onto whether the downloads product order/fulfilment cycle works OK, from a couple of other comments there seem to be some snags there too.
Anyone?
Brassman
-
Hi
I just installed v3.0.18 and when trying to install got the following error:
Warning: Failed opening 'config.inc.php' for inclusion (include_path='') in /home/sites/site76/web/store/language/en/lang.inc.php on line 2976
Installed anyway, got loads errors and decided to delete everything, drop all the database tables and re-install. Same result.
Then fiddled with permissions and got no joy.
This is not "working out of the box" like previous installs I have done.
What is the reason for this and how can I overcome it?
Oh yes- my webserver is running PHP 4.1.2 and MySQL 3.23.54
Thanks
Brassman
-
Hi everyone!
I'm having a problem using images to advertise categories and products.
Some upload, some don't. And I can't tell why.
Also, if I try to use (or more often, re-use) and image that I have already uploaded, I get the following error:
Fatal error: Call to undefined function: imagegif() in /home/mysite.com/cubecart/classes/gd.inc.php on line 308
Is this a feature or a fault?
Can anyone help me on this?
-
There is a third-party mod for this, difficult to find with a search, if you would like to know more about it please send a PM requesting info. This feature is not part of the standard software at this point.
Many thanks Mark. Managed to find it without bothering you! This is just what I was looking for.
-
Greetings!
Thanks to the help on this forum I have now installed CC, got digital downloads working, and even got the email notification to fly straight and level. Not bad. It was all going so well, until....I tried to combine downloads with options.
I can't work out how to make CC deliver different download files when the customer selects product options.
Let me explain a bit more. Say I'm selling tickets, where I want them to be delivered to the customer as files that they print out and bring along to the show to gain admission. Or even a flight
There are Standard Tickets at £10, and Concession Tickets at £8, and Child Tickets at £5. I set these up as Options, with the appropriate prices. But I can only deliver the SAME file from the download, since the download file associated with the Product, and not the Option! So if I want to deliver different downloads with, say, a blue ticket for an adult, a green one for ... I can't.
Can anyone help me out with this, or is it a "feature which will be fixed in a later issue?".
Thanks in anticipation.
Brassman
-
I would like to have some simple instructions on how to set up security using .htaccess, particularly for digital goods.
Several posts on this forum recommend that downloads are not held within the root directory, but elsewhere. This is indeed good practice as far as I can tell. The only problem is that not all ISP (including mine) allow access to anywhere other than the root directory.
Therefore, I need a way to secure my digital goods and .htaccess appears to be a way to do it. But is it adequate, and how should it be set up properly?
As a newcomer to this subject, doubtless there are many important aspects to understand and I am hopeful that some knowledgeable expert (you know who you are!) can provide an idiot's guide.
A set of instructions like this would save me (and I daresay many other people) hours fiddling around, or even better, protect the community from naughty people out there in electron-land.
Cheers
-
As a noob I would also like to know the answer to this question.
Having used a rather old store (Elite Weaver) for some time, which featured instant delivery.
Review of LBOP plug in
in Technical Help
Posted
This new Lloyds Bank payment gateway plugin looks interesting and offers a potential solution for my needs.
Before I experiment, has anyone been there before, and have they written a review? Haven't been able to find one yet.