Support

Admin Tools

#28021 Issues with Installatron

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by on Thursday, 27 July 2017 17:17 CDT

Monday, 26 June 2017 07:39 CDT

xtech86
Hello,

Is there away to allow certain named files? Basically installatron inserts a temporary file into the web root i.e.:

deleteme.cha6s3cw.php

When performing any user actions.

IF I could add a wildcard type set with:

deleteme.*.php

since where * is randomly generated per Installatron task.

to the web root to allow these PHP files to be run this would solve the issues with Installatron.

Many thanks
Tony

Monday, 26 June 2017 09:57 CDT

tampe125
Hello,

what do you want to do with such file? You want to delete it, backup it, scan it etc etc?

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Tuesday, 27 June 2017 01:19 CDT

xtech86
To allow access to the file directly. By default the htacess blocks access and only allows us to set individual files. But we don't know the full filename. Only that it begins with deleteme.

Tuesday, 27 June 2017 01:57 CDT

nicholas
This is a bit dicey. If you give any file matching a pattern direct access it's possible for someone to abuse this to hack you. If you have no choice you can add the following to the "Custom .htaccess rules at the top of the file" (mind you, don't use the one for the bottom of the file, it won't work).

RewriteRule ^deleteme\.(.*)\.php$ - [L]


This tells Apache if the URL matches deleteme.*.php do not process any more rules, just run the file. Remember that the RewriteRule is a Regular Expression, hence the need to escape the dots with a backslash and add the ^ and $ (start of string and end of string matchers). The dash following the RegEx means "No action" and the [L] after that means "this is the last rule for this match, don't try to process any other rules".

I hope that helps!

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Thursday, 27 July 2017 17:17 CDT

System Task
system
This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.
Edited by on 2017-07-27 17:17 CDT

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!