Support Forum
Support Forum
Offline
I thought an issue a user reported may have been due to her network connection, but I just replicated this behavior...
Upon saving a reply, the "saving post" notice briefly appeared, then a blank white page reloaded with the URL: ...tripawds.com/?sp_ahah=post&sfnonce=6cc5d27277
Clicking back and attempting to save the reply again results in the Submit Reply button doing nothing. I cleared cache and tried again multiple times, in both Firefox and Safari with the same results.
The FF Console reports only the following when the ahah URL loads the blank page.
POST http://tripawds.com/index.php [HTTP/1.1 301 Moved Permanently 1209ms] GET http://tripawds.com/ [HTTP/1.1 200 OK 914ms]
I was able to reply to another topic, but for some reason one topic keeps throwing the blank page with the sfnonce= URL every time I attempt to reply.
No idea if these are related, but the only errors in our SF Toolbox Error Log for this morning are:
23 June 2015 8:50 am | spaErrNotice | 5461 | php
file: /simple-press/sp-control.php
line: 98
function: sp_is_forum_page
Notice | Trying to get property of non-object
23 June 2015 9:08 am | spaErrWarning | 32767 | php
file: /simple-press/sp-api/sp-api-globals.php
line: 140
function: ini_set
Warning | ini_set() has been disabled for security reasons
What does the behavior I describe suggest and how might I go about troubleshooting further or preventing it from happening any more?
Thanks in advance for any suggestions!
Simple:Press powers the Tripawds Discussion Forums.
It's better to hop on three legs than to limp on four.
The Tripawds Blogs Community is made possible by The Tripawds Foundation.
Offline
Are you up to date with SP core and plugins is forst question.
Second question is... if this is one post it suggests there might be something in the post content that is failing. Is that possible? Anything special or different about the content? Did you use an Emoji for example?
 |
YELLOW
SWORDFISH
|
Offline
Thanks for the quick reply!
WP, SF and all plugins are all current. (SP Version: 5.5.8, Build: 13000)
I've been ruling out plugin conflicts all morning, and I (and others) have been able to comment on a dozen plus other topics successfully. Content of the post is simple, no emoji or any other special characters.
I've optimized db tables and continue to get the blank page with ahah URL. Server error logs include no entried with forums/ referer. But I did notice this new warning in the SP error log...
23 June 2015 11:25 am | spaErrWarning | 3 | php
file: /simple-press/sp-api/sp-api-globals.php
line: 140
function: spHandleShutdown
Warning | ini_set() has been disabled for security reasons
Simple:Press powers the Tripawds Discussion Forums.
It's better to hop on three legs than to limp on four.
The Tripawds Blogs Community is made possible by The Tripawds Foundation.
Offline
PS: I also attempted to rebuild index for forum where the topic is posted.
I then deselected the "load javascript in footer" admin option and that made no difference.
Have tried from different computers and two different user accounts...only this topic is still throwing the blank page with ahah URL...
http://tripawds.com/forums/eat.....nutrition/
Any other "housekeeping" options recommended?
Simple:Press powers the Tripawds Discussion Forums.
It's better to hop on three legs than to limp on four.
The Tripawds Blogs Community is made possible by The Tripawds Foundation.
Offline
OK - let's talk mod_security.
It is - to put it bluntly - the bane of a developers life. It can effect a single forum post (for example) because it is looking at patterns of characters in the url. And each and every topic will have a different combination of characters.
So ye - it would be worth looking at the url for the topic post in question to try and ascertain if any portion of the url broke one of the mod_security rule sets.
|
YELLOW
SWORDFISH
|
Offline
Well... before seeing your last reply, I completely disabled mod_security for the domain, and the problem persisted.
I was finally able to reply to the topic in question only after disabling SP plugins (Auto Lining, Blog Post Linking, Post As, Captcha, and Subscriptions) AND typing in the comment instead of pasting in what I had copied. FYI: We only have Captcha enabled for guests anyway.
I now how other members reporting identical behavior on other topics, but this is clearly not all topics.
Simple:Press powers the Tripawds Discussion Forums.
It's better to hop on three legs than to limp on four.
The Tripawds Blogs Community is made possible by The Tripawds Foundation.
Offline
My gut feeling here Jim is that this is going to be environmental or something to do with post content. You do appear to be having a totally unique experience with this which is why I favour the former of the two - especially if you are now seeing random failures.
So what about this http 301 condition you are seeing? I admit this is away from my knowledge comfort zone but why is the server rejecting a pretty standard call to the index.php file? What has changed server side that might be having an effect here?
I am also a little worried about the ini_set() being 'disabled for security reasons'. Has this been a long term thing or is this recent? Leaving aside the fact that this failed call should not leave any trace in the error logs (a different and unrelated php issue), the particular ini item being set has (a) been in force for many years now and (b) was particularly put in place to overcome a WordPress shortcoming . I remember that much bit am damned if I can remember exactly that it was now after all these years. (Steve will probably remember but he is on vacation currently). But it did have something to do with posting! So can that be turned back on to see what then happens?
|
YELLOW
SWORDFISH
|
Offline
Thank you for the additional feedback.
My server manager assures me no mod_sec changes have been made recently, at least not within the last couple days when this started happening. But I did finally identify a pattern of the post failing when including certain keywords, then dug deep and found a mod_sec "pharmacy spam" rule including those words...odd how the issue persisted when disabling mod security altogether. But at least I'm on to something!
I am also a little worried about the ini_set() being ‘disabled for security reasons’.
Me too. Not knowing ini_set from tea set, I assumed it was something SP had disabled. Apparently not, and I will look into that too.
Why this all started happen suddenly has me most baffled. Thanks again!
Simple:Press powers the Tripawds Discussion Forums.
It's better to hop on three legs than to limp on four.
The Tripawds Blogs Community is made possible by The Tripawds Foundation.
Offline
I checked up on that ini_set item. The problem was that posts (and this is blog posts as well as forum posts) could be saved but would lose all their content. This was due to a WordPress issue.
Now I think, in the interim, the WP team have probably fixed this up but as I am not 100% sure we keep the call in as it is essentially harmless. If you are not having empty content issues then you are probably safe here.
|
YELLOW
SWORDFISH
|
Offline
Yellow Swordfish said
If you are not having empty content issues then you are probably safe here.
in the past we have had issues with posts not saving upon page refresh. And this new aha issue returns an empty page when trying to save. Perhaps the two are unrelated, but we haven't heard reports of the former in a while. The latter still has me baffled...
Guess I was just looking for clarification about where ini_set() is configured, and how it can be enabled since i don't know how it got disabled.
I presume "probably safe" means I could turn it back on to see if that helps our issue. Assuming it's a server level thing and not a WP or SP function, I wonder if it is in Apache, PHP, SQL or??? I can consult with my server manager once I know a bit more.
Thank you!
Simple:Press powers the Tripawds Discussion Forums.
It's better to hop on three legs than to limp on four.
The Tripawds Blogs Community is made possible by The Tripawds Foundation.
All RSS