Excessive hits to facileforms.frame.php

[tchocky]

My webstats show that these two files are being hit a few dozen times each day

/components/com_facileforms/components/com_facileforms/facileform.frame.php
 
/components/com_facileforms/facileforms.frame.php

I have recently upgraded to the latest version of facile forms but the hits are still occurring.

Can anyone advise me how to fix this problem?

Thanks

[fvds]

Did you follow this advice?

[tchocky]

OK I have RG_EMULATION setting is `ON` instead of `OFF` in file globals.php

Is there any way I can change it in my php file as the host doesn't want to change the server setting?

This is an excerpt of the file, can I change something here?

if (RG_EMULATION == 0) {
   // force register_globals = off
   unregisterGlobals();   
} else if (ini_get('register_globals') == 0) {
   // php.ini has register_globals = off and emulate = on
   registerGlobals();
} else {
   // php.ini has register_globals = on and emulate = on
   // just check for spoofing
   checkInputArray( $_FILES );
   checkInputArray( $_ENV );
   checkInputArray( $_GET );
   checkInputArray( $_POST );
   checkInputArray( $_COOKIE );
   checkInputArray( $_SERVER );

   if (isset( $_SESSION )) {
      checkInputArray( $_SESSION );
   }
}

[boldee]

I was under the impression if RG_EMULATION == 0 that is off, if your host has registered globals on then they are not running a secure hosting package. You cannot get hits on a non existant file as it does not exist in 1.4.6 up.

[fvds]

In stead of adjusting php.ini, which is almost impossible if you host your site with a hosting company, you can also add

Code:

php_flag register_globals off

to your .htacces file...

[tchocky]

Hi Boldee,

I've managed to sort the RG_Emulation issue and I am using version 1.4.6. About a week ago I had a look at my stats and took note of what the numbers were with my other issue. Since then I have had more hits on these two files which, as you say, do not exist as I am using v1.4.6.

However I am still getting hits to these files showing up on my stats. The form is on the home page of the site and the stats are showing up as "viewed" in the "Pages-URLs" section. It looks like this:

Viewed Entry Exit

72      31    31
56      43    43

and just to reiterate the files that are apparently being viewed are:

http://domain.co.uk/components/com_facileforms/components/com_facileforms/facileforms.frame.php
http://domain.co.uk/components/com_facileforms/com_facileforms/facileforms.frame.php

I've noticed that the path to the files do not have "www" at the start while my livesite is set to include the "www"

I can't find the files on my server. Does anyone have any idea why this is happening?

I'm also going to raise the issue with my host.

Cheers

[facile]

Independent if you can find that file or not on your server, you *MUST* upgrade to 1.4.7 or your server is vulnerable.

Please read the security announcement on the frontpage.