Still running 3.5.4, I'm afraid.
When attempting to follow a Google search link into our board, or follow a direct link to a thread on our board in an email (or maybe some other ways of entering the board), starting on Nov 27 users sometimes get this error:
Unable to add cookies, header already sent.
File: /home/tugbbsc/public_html/forums/includes/cron/session.php
Line: 31
I have found I get this if I am logged off the board (i.e. cookies removed) at the time, but I don't get it when I'm logged in. Other administrators have reported they can get the error when logged in too.
session.php is pretty cryptic, but near as I can figure, it does the following:
We have made NO changes to the board for many weeks prior to this, so I'm suspicious there may be some configuration change made by our server folks, or some other external variable, that may be responsible.
Can anybody tell me exactly what that script does, in the hope that it will give us some direction for our troubleshooting?
Any suggestions as to something our server folks or other external infludence could have done to affect this?
When attempting to follow a Google search link into our board, or follow a direct link to a thread on our board in an email (or maybe some other ways of entering the board), starting on Nov 27 users sometimes get this error:
Unable to add cookies, header already sent.
File: /home/tugbbsc/public_html/forums/includes/cron/session.php
Line: 31
I have found I get this if I am logged off the board (i.e. cookies removed) at the time, but I don't get it when I'm logged in. Other administrators have reported they can get the error when logged in too.
session.php is pretty cryptic, but near as I can figure, it does the following:
- Checks to see if there is a HTTP_REFERER header that indicates the user is coming in from one of the common search engines, and if so:
- Builds a string "base64_decode", and
- Line 31, referenced by the error message, echoes this string plus a long string of code which is then base64 decoded. I've run this string through an online base64 decoder and it appears that this outputs a javascript. The lack of formatting and whitespace, and the cryptic variable and functions names used, make it difficult to interpret, and I haven't figured out what this script does yet, but based on the error message it appears to have something to do with cookies.
We have made NO changes to the board for many weeks prior to this, so I'm suspicious there may be some configuration change made by our server folks, or some other external variable, that may be responsible.
Can anybody tell me exactly what that script does, in the hope that it will give us some direction for our troubleshooting?
Any suggestions as to something our server folks or other external infludence could have done to affect this?
Comment