Wrong (?) Forum URL's

Hangin' Around Joined: Nov 09, 2004 Posts: 32

Hi there,

I experienced the following problem :

My site's forum links are looking like this :
[ Only registered users can see links on this board! Get registered or login! ]

instead of
[ Only registered users can see links on this board! Get registered or login! ]

Is this a problem, is it danger or not?
And how i can get rid of &sid=.... ?

I browsed a couple of googletaped nuke forums,
and all of them has no this &sid....

Posted: Tue Jun 27, 2006 5:57 am

Are you running ravennuke?

Posted: Tue Jun 27, 2006 6:08 am

yes

Posted: Tue Jun 27, 2006 6:25 am

Ok, I was just asking to find out if this was in the right forum or not.

Sells PC To Pay For Divorce Joined: Posts: 5661

well that doesnt help much darklord...

Posted: Tue Jun 27, 2006 6:43 am

I seem to remember this happening to me. I couldn't figure out what was causing it and it only seemed to happen on my computer, but I wasn't using GoogleTap.

Does it do it on other computers?

I managed to fix it somehow, but I can't remember how I did it. Have you tried clearing out your Cookies and History etc.?

Posted: Tue Jun 27, 2006 6:48 am

Hi Jakec,

Yes, i clean everything, it happens to all users,
i think it has to do something with the user sessions or the append sid function.

I tried to edit a lot of nuke files to find the &sid reference,
but didn't found anything...

Posted: Tue Jun 27, 2006 6:49 am

yeah its caused by googletap but ive seen/read a few "solutions" but its very unclear whitch one works..
for some this works but is based on phpbb standalone....

Find the the function append_sid and replace it with:
in Sessions.php

Code:







function append_sid($url, $non_html_amp = false)


{


global $SID;








if ( !empty($SID) &amp;&amp; !preg_match('#sid=#', $url) &amp;&amp; !stristr( $_SERVER[&quot;HTTP_USER_AGENT&quot;] ,'bot') &amp;&amp; !stristr($_SERVER[&quot;HTTP_USER_AGENT&quot;] ,'inktomi'))


{


$url .= ( ( strpos($url, '?') != false ) ? ( ( $non_html_amp ) ? '&amp;' : '&amp;amp;' ) : '?' ) . $SID ;


}





return $url;


}

i haven't tried it...

Posted: Tue Jun 27, 2006 6:51 am

hitwalker wrote:

yeah its caused by googletap but ive seen/read a few "solutions" but its very unclear whitch one works..
for some this works but is based on phpbb standalone....

Find the the function append_sid and replace it with:
in Sessions.php

Code:







function append_sid($url, $non_html_amp = false)


{


global $SID;








if ( !empty($SID) &amp;&amp; !preg_match('#sid=#', $url) &amp;&amp; !stristr( $_SERVER[&quot;HTTP_USER_AGENT&quot;] ,'bot') &amp;&amp; !stristr($_SERVER[&quot;HTTP_USER_AGENT&quot;] ,'inktomi'))


{


$url .= ( ( strpos($url, '?') != false ) ? ( ( $non_html_amp ) ? '&amp;' : '&amp;amp;' ) : '?' ) . $SID ;


}





return $url;


}

i haven't tried it...

Thanks hitwalker,
but to which file is this function?

Posted: Tue Jun 27, 2006 6:53 am

in Sessions.php
BACKUP WHATEVER YOUR GONNA DO Smile

Posted: Tue Jun 27, 2006 6:55 am

The original instructions for GT-NExtGEn have the edits to make to sessions.php in them to stop this, for most search engines.

Is this happening only when you are browsing the forums as anonymous or when you are actually logged in, or both?

Posted: Tue Jun 27, 2006 7:03 am

Actually i made the forum only for registered users.

Anyway,
This one method Hitwalker wrote didn't worked,
but i removed this :

if ($userdata['user_level'] > 1) {
if ( !empty($SID) && !eregi('sid=', $url) )
{
if ( !empty($SID) && !eregi('sid=', $url) ) {
$url .= ( ( strpos($url, '?') != false ) ? ( ( $non_html_amp ) ? '&' : '&' ) : '?' ) . $SID;
}
}
}

From my sessions.php file and the problem has been solved.

Posted: Tue Jun 27, 2006 7:05 am

Well, I am no phpBB expert, so cannot tell you what the impact of doing that is... Hopefully none.

Posted: Tue Jun 27, 2006 7:10 am

im surely not gonna recommend thats the right way...

but after editing the sessions.php as written in the gt file i end up with ..

Parse error: syntax error, unexpected $end in /home/public_html/includes/sessions.php on line 965

but weird cause thats the php closing tag..

Posted: Tue Jun 27, 2006 7:32 am

i tried a few so called solutions but non of them work,and yes Isaiah...taking out the few lines you posted does indeed solve the problem but uncertain is what the effect would be in general..

Posted: Tue Jun 27, 2006 7:39 am

Yes, correct.

I will leave it like this for now,
let's hope that there will not be any problem.

Thanks for driving me to edit the correct file!

Posted: Tue Jun 27, 2006 7:56 am

no prob...
but member susann spend a lot of time diggin into this problem so i send a pm to her..
see what she found ...

Posted: Tue Jun 27, 2006 8:30 am

if ($userdata['user_level'] > 1) {
if ( !empty($SID) && !eregi('sid=', $url) )
{
if ( !empty($SID) && !eregi('sid=', $url) ) {
$url .= ( ( strpos($url, '?') != false ) ? ( ( $non_html_amp ) ? '&' : '&' ) : '?' ) . $SID;
}
}
}

if im reading this correctly, this is the problem, what it seems to do is add the sid part into the url and direct u to the correct post, It seems to strip or verify that it is the correct url.
I dont know enough about the coding to change it to verify that it the url is correct with googletap installed.
Hopefully this is not a security issue.

Hitwalker, I asked because it didnt seem to be directly caused by a ravennuke code and I searched for a solution as I'm sure others did and could find a lot of responses but could offer no solution as it seems that I could not find one that was definitley as solution, so instead of running in circles, I stopped there and was trying to allow someone with more knowledge on this issue to post with somethin more valuable then a list of possible solutions.
Glad you and the others were able to help.

Posted: Tue Jun 27, 2006 10:47 am

Well, there are different ways to get rid of the sid. I´m using a solution based on several different posts from nukecops.com for Nuke 6.5.
[ Only registered users can see links on this board! Get registered or login! ]

This modified sessions.php doesn´t work for RavenNuke and phpBB 2.0.21. but I´hope and believe that Montego is able to give the code to mask or remove the SIDs from the official GT RavenNuke version. Still there i no official GT RN version out. Smile

If you like to check your site just use the spider simulator and choose google:
[ Only registered users can see links on this board! Get registered or login! ]

[ Only registered users can see links on this board! Get registered or login! ]

Posted: Tue Jun 27, 2006 3:37 pm

well its not that clear susann...
as far as i could find out everybody agrees on one thing....
the sid su..s and can realy harm your site...
so question is,any valid way know to remove it...

Posted: Tue Jun 27, 2006 4:10 pm

Sure, but you better ask Raven, djmaze or Montego and it´s a difference to remove the sids or just mask them for bots.
I haven´t tried this because my Raven Nuke website isn´t google tapped.

Posted: Tue Jun 27, 2006 4:16 pm

well i doubt if anyone knows it ....
otherwise we would have a clear answer to it....lol

Posted: Tue Jun 27, 2006 8:50 pm

Yeah, I don't know for certain either. I have worked into the RN2.10.00 release a "ShortLinks" type code based mostly off the GT-NExtGEn concept, but really struggled with the sessions.php code they provided. I think that portion will need some follow-on work.

I'll get to it eventually, but I just did not get the feeling like it was still an issue with the later phpBB versions. Like I said, more research is forthcoming, but not quickly...

Posted: Wed Jun 28, 2006 3:56 am

i dont mind waiting,but im curious to know if there's realy a negative thing about removing the few lines like Isaiah did ....

Posted: Wed Jun 28, 2006 5:59 am

Without serious testing, I dont know either. phpBB to me is a "tangled web" that needs to be "unraveled" before I can feel confident in anything I say about the sid. Sorry.