Jump to content
TNG Community

TNGSENDEMAIL

Cory Booth

By Cory Booth
in Code Discussion

 Share

Recommended Posts

Cory Booth

Cory Booth

Posted
Posted

Since upgrading I am receiving the following error in my PHP Webserver error.log:

[01-Feb-2007 00:53:47] PHP Parse error: syntax error, unexpected ';', expecting T_VARIABLE or '$' in /home/thebooth/public_html/plugins/tngIL/tngsendmail.php(14) : eval()'d code on line 1

[01-Feb-2007 00:53:47] PHP Parse error: syntax error, unexpected ';', expecting T_VARIABLE or '$' in /home/thebooth/public_html/plugins/tngIL/tngsendmail.php(19) : eval()'d code on line 1

[01-Feb-2007 00:53:47] PHP Parse error: syntax error, unexpected ';', expecting T_VARIABLE or '$' in /home/thebooth/public_html/plugins/tngIL/tngsendmail.php(24) : eval()'d code on line 1

Any Ideas?

Link to comment
Share on other sites
Cory Booth

Cory Booth

Posted
  • Author
Posted

Since upgrading I am receiving the following error in my PHP Webserver error.log:

[01-Feb-2007 00:53:47] PHP Parse error: syntax error, unexpected ';', expecting T_VARIABLE or '$' in /home/thebooth/public_html/plugins/tngIL/tngsendmail.php(14) : eval()'d code on line 1

[01-Feb-2007 00:53:47] PHP Parse error: syntax error, unexpected ';', expecting T_VARIABLE or '$' in /home/thebooth/public_html/plugins/tngIL/tngsendmail.php(19) : eval()'d code on line 1

[01-Feb-2007 00:53:47] PHP Parse error: syntax error, unexpected ';', expecting T_VARIABLE or '$' in /home/thebooth/public_html/plugins/tngIL/tngsendmail.php(24) : eval()'d code on line 1

Any Ideas?

anyone?

Link to comment
Share on other sites
B McFadyen

B McFadyen

Posted
Posted

anyone?

Cory,

It is hard to be specific since by your tngIL path suggests you are using a CMS or other package.

However, the lines that are in error point to TNG V6 anti spam measures.

In version 6, Darrin uses session variables to transmit the random form field names from the suggest/registration form to the sendmail script. This thwarts spambots from learning how to hack our sendmail script and generate spam using our TNG sites.

There are a couple possibilities but without knowing your site I am not sure what to suggest. (It would be nice to have included you site link, I sometimes hunt them down via google etc, but don't have time to find you right now)

I would check to see if it is possible you are using the tngsendmail script from some other part of your site that has not been updated to use the proper session variables technique. (maybe older code in your CMS?)

Brian

Link to comment
Share on other sites
Cory Booth

Cory Booth

Posted
  • Author
Posted

Cory,

It is hard to be specific since by your tngIL path suggests you are using a CMS or other package.

However, the lines that are in error point to TNG V6 anti spam measures.

In version 6, Darrin uses session variables to transmit the random form field names from the suggest/registration form to the sendmail script. This thwarts spambots from learning how to hack our sendmail script and generate spam using our TNG sites.

There are a couple possibilities but without knowing your site I am not sure what to suggest. (It would be nice to have included you site link, I sometimes hunt them down via google etc, but don't have time to find you right now)

I would check to see if it is possible you are using the tngsendmail script from some other part of your site that has not been updated to use the proper session variables technique. (maybe older code in your CMS?)

Brian

Sorry about that. Actually while it's true I am using a CMS (e107 to be exact).... My TNG install is simply nested into the CMS plugin directory as a whole... While it is quit possible I missed an update, I am going to check that, I haven't had any issues from TNG with my e107 site for almost a year now, until this one...

My site: w w w . t h e b o o t h s . o r g

I would greatly appreciate any insight on this issue... thanks very much!

Link to comment
Share on other sites
B McFadyen

B McFadyen

Posted
Posted

Sorry about that. Actually while it's true I am using a CMS (e107 to be exact).... My TNG install is simply nested into the CMS plugin directory as a whole... While it is quit possible I missed an update, I am going to check that, I haven't had any issues from TNG with my e107 site for almost a year now, until this one...

My site: w w w . t h e b o o t h s . o r g

I would greatly appreciate any insight on this issue... thanks very much!

Others,

Since I replied to Cory via his site, I thought I should at least close this thread by copying my direct comments to the forum for reference for others in case they have experienced this type of issue.

---------------------------------------------

The errors you see in your log are consistent with the use of tngsendmail.php directly from a url.

If you had previously been a target of a spambot, using your site to send email via the old tngsendmail, then it is possible it is still trying to do that and does not realize it is no longer working due to the security checked session variables.

If this email arrives properly, and you have no evidence that any old pages are calling tngsendmail, then I would place my bet on an old spambot attempting a hack. In which case you can ignore it, or check the originating IP and block it via your .htaccess

----------------------------------------------

The email did arrive properly, so his site is functioning as it should. He has no evidence of old pages calling tngsendmail directly, so the most likely cause is an older spambot that was already using his site, or perhaps someone with TNG knowledge poking around...

Brian

Link to comment
Share on other sites
  • 4 weeks later...
Russellgs

Russellgs

Posted
Posted

Others,

Since I replied to Cory via his site, I thought I should at least close this thread by copying my direct comments to the forum for reference for others in case they have experienced this type of issue.

---------------------------------------------

The errors you see in your log are consistent with the use of tngsendmail.php directly from a url.

If you had previously been a target of a spambot, using your site to send email via the old tngsendmail, then it is possible it is still trying to do that and does not realize it is no longer working due to the security checked session variables.

If this email arrives properly, and you have no evidence that any old pages are calling tngsendmail, then I would place my bet on an old spambot attempting a hack. In which case you can ignore it, or check the originating IP and block it via your .htaccess

----------------------------------------------

The email did arrive properly, so his site is functioning as it should. He has no evidence of old pages calling tngsendmail directly, so the most likely cause is an older spambot that was already using his site, or perhaps someone with TNG knowledge poking around...

Brian

I don't know if this has been resolved yet. If it hasn't then look for a blank line in one of the pages that are included just before this page is rendered or something before the first 

<PHP?>

Russ

Link to comment
Share on other sites
  • 2 weeks later...
Cory Booth

Cory Booth

Posted
  • Author
Posted

OK I think I finally figured this one out...

I am using e107 with the TNG bridge TNGILv1.2...

Within TNGIL v1.2 there is a system to email an admin when a new user is created in TNG by tngILv1.2.

This is automatically done when a website member visits the TNG pages.

I turned this off and noticed I wasn't getting anymore errors...

I'd like to get this fixed but it seems the origianl caretaker of tngIL has moved onto a different platform.

Link to comment
Share on other sites
Rush

Rush

Posted
Posted

Don't know if this would work for you, but since the logins are integrated, I let e107 handle my new user email notifications.

In the e107 admin, its under Settings >> Preferences >> User registration/posting

(Third row down)

Rush

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...