• Welcome to Simple Machines Community Forum. Please login or sign up.
December 03, 2021, 08:38:32 PM

News:

Want to get involved in developing SMF, then why not lend a hand on our github!


SMF 1.0 RC1 Now Available

Started by [Unknown], August 10, 2004, 05:57:55 AM

Previous topic - Next topic

[Unknown]

If your browser crashes, it probably screws up your cookies.  Closing all browser windows, and possibly restarting, may solve the issue.

If it does not, you can try clearing your cookies, or deleting your cookies for that domain.

-[Unknown]

rascal

October 03, 2004, 07:29:26 PM #221 Last Edit: October 03, 2004, 07:33:02 PM by rascal
actually, its enough that i just quit my web browser without logging out from the forum, for it beeing impossible to log out next time i go to the forum with that browser (am using mac, have tried safari, netscape, internet explorer, opera), logged in "forever".
yes i can delete my cookie and this solves the issue, but i am confident most of my forum users cant / dont know how to/ delete the cookie.
it says:
"An Error Has Occurred!
Session verification failed. Please try logging out and back in again, and then try again. "
And it wont let me log out.
I can guess, that it has something to do with this: when i open the browser again (the second time - when i cant log out), i am assigned a new session id that does not match with the one in the cookie, and this is the reason it wont let me log out?
Now, is it possible for me to add a link in the error message (above mentioned) that, when clicked, automatically clears the cookie? How to do this?
Thanks for your help!

[Unknown]

Your browser is instructed to delete the cookie once it closes; because it does not close properly, this doesn't happen properly.

I've used Firefox for quite a while, and even had it crash (because of things I've added to it, usually...) and I've never had any problem logging out.

-[Unknown]

rascal

thanks for your quick replies.
still., this happens for all of my browsers.
i still wonder, is it possible for me to add a link in the error message (above mentioned) that, when clicked, automatically clears the cookie/session?

R3Mo

I have the same problems using IE6.0

In my case it doesn't even work when I clear out the Cookies, offline files, it just won't Log out

The only thing that does work for me is logging in on another computer.
Then i'm able to log on again using my own computer...

Really annoying  :(

R3Mo

[Unknown]


R3Mo

You mean my forum?

it's http://www.wijhelpenje.nl [nofollow] (Dutch)

Thanks for your reply!

R3Mo

[Unknown]

Seems to work fine for me.  Did you enable database driven sessions, or no?

-[Unknown]

andrea

Quote from: R3Mo on October 10, 2004, 06:18:45 PM
I have the same problems using IE6.0

In my case it doesn't even work when I clear out the Cookies, offline files, it just won't Log out

The only thing that does work for me is logging in on another computer.
Then i'm able to log on again using my own computer...

Looks like a mess with frames. Almost sure you dont have the login/logout problem when you work with the direct forum link:
http://www.wijhelpenje.nl/forum/index.php

Remark: your forum template is not browser proof. It messes up with Firefox.

Andrea Hubacher
Ex Lead Support Specialist
www.simplemachines.org

Personal Signature:
Most recent work:
10 Aqua Themes for SMF



R3Mo

I know it's a mess at the moment, but i'm working on it ;)

@[Unknown]
Yes, yesterday evening i've enabled the database driven sessions..
But using both database driven sessions, or cookies, it still gives the same error..

QuoteAlmost sure you dont have the login/logout problem when you work with the direct forum link:
http://www.wijhelpenje.nl/forum/index.php [nofollow]
I've made that index page yesterday, before yesterday the link www.wijhelpenje.nl [nofollow] went directly to /forum/index.php
And, of course, with the same problem

Thanks for your replies!

R3Mo

rascal

in file Sources/LogInOut.php i deleted "checkSession('get');" in the function "Logout()".
this solves the problem - now it is always possible to log out.

[Unknown]

Quote from: rascal on October 11, 2004, 03:31:44 PM
in file Sources/LogInOut.php i deleted "checkSession('get');" in the function "Logout()".
this solves the problem - now it is always possible to log out.

Of course, I hope you undertand that you just created a security hole.  If you're fine with that, I hope you want make eyes at us when/if someome malicious exploits it.

-[Unknown]

rascal

yes you tried to explain that it was a security hole (though i didnt really get how).
it was something about ppl being able to force-log out me.
but without this fix, that is when it could become impossible to log out - thats an even worse security hole. If, say, i sit at a library and am logged in as Admin and suddenly cant log out(!), and often library comps are protected so i cannot manage/delete cookies, then that computer is "forever" logged in with admin account on my forum, and anyone that passes by can do whatever they want with my forum.
i say: leaving an exploit that enables users to force log-out me is bad, leaving a bug that sometimes makes me unable to log out is catastrophic.

andrea

You can always force a logout by deleting all cookies. Which you anyways always should do when you surfed in the library ...

Andrea Hubacher
Ex Lead Support Specialist
www.simplemachines.org

Personal Signature:
Most recent work:
10 Aqua Themes for SMF



andrea

Why are you posting still in this topic?

RC2 is out:
http://www.simplemachines.org/community/index.php?topic=17961.0

If you have problems and still are on RC1 -> time to upgrade to RC2!

Andrea Hubacher
Ex Lead Support Specialist
www.simplemachines.org

Personal Signature:
Most recent work:
10 Aqua Themes for SMF



rascal

but i say - it is not always possible to delete cookies. and i have alot of non-computer ppl on my forum, who dont even know what a cookie is.
If i in the error message that appears (when log out is not possible) could add a link that says "try delete cookies", and if by clicking that link the cookies is automatically deleted (the forum cookies) - that would be fine.
but how to do that?

rascal

is this fixed in RC2? i doubt. the developers dont consider this as a bug

[Unknown]

Quote from: rascal on October 16, 2004, 03:18:32 PM
is this fixed in RC2? i doubt. the developers dont consider this as a bug

Rascal, you are having problems.  Please post about this issue in General English Support.  This is not something I can fix without your cooperation, which you have not been very willing to give.

This is something that can be fixed on your end, not on ours.

-[Unknown]

rascal

ok i am really sorry if i have been rude. i really want to cooperate, but i am new to this and dont know that much about the forum. i will post in general english..
but i dont understand what you mean - on my end, you mean i should change the code or do you mean i should fix my webbrowsers in some way?

andrea

Locking this thread - the last post was splitted into a separate topic which is moved into the graphics/templates support fourm.

This is not a support thread - nor is RC1 the current version.

Please all upgrade to RC2. If you have questions or problems then please don't hesitate to use our support forums.

Andrea Hubacher
Ex Lead Support Specialist
www.simplemachines.org

Personal Signature:
Most recent work:
10 Aqua Themes for SMF



Advertisement: