ConfirmedI still find this error in
I just posted another thread on this - I apologize for the duplication. (Maybe a MOD can merge these?)
I am experiencing the exact same issue. It took a while, but I finally got through to the dedicated server support line.
From what they told me, at some point last night, they upgraded the MySQL (or something, he was kind of nonspecific). There was supposed to be an email notification detailing the changes that need to be made, but it was never sent. There is a massive ticket being worked on right now, and I was advised to wait for an email.
1&1 broke something, and it is affecting all dedicated server customers.
Important note: Database maintenance
Tonight, 9 May 2012 from 5.30 to 6.30 pm EST, we will perform maintenance on our databases systems.
- During this time, it will be temporarily impossible to log in to our protected customer zones (e.g. 1&1 Control Panel).
- 1&1 eShop customers: During this time, payment transactions cannot be executed in your shop. We have already informed you of this by e-mail and in the "Message Board" in your 1&1 Control Panel.
Not affected by this measure:
- The availability of your website or your server
Of course, we will finish the maintenance as quickly as possible in order to minimize the downtime.
After the maintenance, all systems will be available to you as usual.
We apologize for any inconvenience.
(2012-05-09)
IncredibleI contact 1 & 1 requires that the developer has put xenforo update the script
It's impossible.but how to change it in the administration panel
Yes, I've read this.we inform you that an update...
PHP 5.3.12/5.4.2 do not fix all variations of the CGI issues described in CVE-2012-1823. It has also come to our attention that some sites use an insecure cgiwrapper script to run PHP. These scripts will use $* instead of "$@" to pass parameters to php-cgi which causes a number of issues. Again, people using mod_php or php-fpm are not affected.
One way to address these CGI issues is to reject the request if the query string contains a '-' and no '='. It can be done using Apache's mod_rewrite like this:
RewriteCond %{QUERY_STRING} ^[^=]*$
RewriteCond %{QUERY_STRING} %2d|\- [NC]
RewriteRule .? - [F,L]
Note that this will block otherwise safe requests like ?top-40 so if you have query parameters that look like that, adjust your regex accordingly.
I sent an email to 1&1 Technical Support, explaining the issue.Hey how to fix your problem ?
We use essential cookies to make this site work, and optional cookies to enhance your experience.