andyelle1 Posted August 7, 2010 Posted August 7, 2010 When I try to login to my admin I get this message: Warning: This server is requesting that your username and password be sent in an insecure manner (basic authentication without a secure connection). How do I login?
artful Posted August 7, 2010 Posted August 7, 2010 When I try to login to my admin I get this message: Warning: This server is requesting that your username and password be sent in an insecure manner (basic authentication without a secure connection). How do I login? Looks as if in your admin/includes/configure.php you have put an https: whereas you do not have an SSL connection. Try changing it back to http and see of it passes.
andyelle1 Posted August 7, 2010 Author Posted August 7, 2010 There is a line in configure.php define('HTTPS_CATALOG_SERVER', 'https://stylemobiles.com');
andyelle1 Posted August 7, 2010 Author Posted August 7, 2010 I just changed the line and I still cannot login
germ Posted August 7, 2010 Posted August 7, 2010 The server is just warning you that the admin isn't using SSL and anything you type into the login box can be intercepted by "packet sniffers". Mine does the same thing if I try admin access with a http URL (instead of https ) If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
andyelle1 Posted August 7, 2010 Author Posted August 7, 2010 I have tried loging in with a https url and I still cannot login as the url is invalid
germ Posted August 7, 2010 Posted August 7, 2010 As far as I can tell the site has no SSL cert installed so a SSL URL is like a screendoor on a submarine - useless. :-" If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
andyelle1 Posted August 7, 2010 Author Posted August 7, 2010 I have only had this problem since today and I have not changed any part of my site for a few months
germ Posted August 7, 2010 Posted August 7, 2010 Normally your hosts cPanel has a place you can examine/alter .htaccess files I'd use that and see what's up. If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
andyelle1 Posted August 8, 2010 Author Posted August 8, 2010 I have found this file in my admin .htaccess2 # $Id: .htaccess,v 1.1 2003/06/20 00:18:30 hpdl Exp $ # # This is used with Apache WebServers # # For this to work, you must include the parameter 'Options' to # the AllowOverride configuration # # Example: # # <Directory "/usr/local/apache/htdocs"> # AllowOverride Options # </Directory> # # 'All' with also work. (This configuration is in the # apache/conf/httpd.conf file) # The following makes adjustments to the SSL protocol for Internet # Explorer browsers <IfModule mod_setenvif.c> <IfDefine SSL> SetEnvIf User-Agent ".*MSIE.*" \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 </IfDefine> </IfModule> # Fix certain PHP values #<IfModule mod_php4.c> # php_value session.use_trans_sid 0 # php_value register_globals 1 #</IfModule> Is there somting I need to do to it to get rid of my problem with loggin in
germ Posted August 8, 2010 Posted August 8, 2010 That's not what contains the info. You should have a file simply name .htaccess in the admin folder. When you find the correct file it should have a line that looks like this: AuthUserFile /path/to/password/file/here/service.pwd That is the path and name of the file that contains the authorized usernames/passwords. The usernames are just plain text. The passwords are encrypted. If you can't do like I suggested in my last post and find the contents of the existing password file you'll need to either make a totally new one or add to the existing one. Personally I'd go with the "totall new" approach as it's possible the existing one has been compromised (that would be why you can't login). If you g00gle the term .htpasswd Generator you'll find many hits. I can't recommend any of them as I haven't tried any of them. If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
Recommended Posts
Archived
This topic is now archived and is closed to further replies.