update.php
setyadi - March 27, 2008 - 05:46
Hi guys,
I just upgraded the drupal from 5.3 to 6.1 version. Everything goes well.
But I found this in my adminster are :
Access to update.php Not protected
The update.php script is accessible to everyone without authentication check, which is a security risk. You must change the $update_free_access value in your settings.php back to FALSE.
Truely, I'm bilnd in HTML Tags procedur.
Can someone tell me, what i have to do to fix this problem?
Thanks before.
I've seen this before. Are
I've seen this before. Are you on a site where your service provider upgrades Drupal for you? If so, when they installed the 6.1 version of drupal, they probably set your access value in settings.php to TRUE in order to simplify their work (in other words, they needed to run update.php without being logged in as user1), but neglected to reset the values when their work was done. If that's the case, you can either 1) write to them and ask them to reset the file, or 2) you can find your settings.php file (public_html/sites/default/), then find the line that says $update_free_access and replace the TRUE with FALSE.
Here are some more details on dealing with this:
http://drupal.org/node/237554
Can't change
Hi, femrich
I've found the target to change it. But funny, it cannot change the value from TRUE to FALSE. There is no 'save' option in file menu, when I have chaged it. So, when I back to check it, the value still the same as before, TRUE.
But, it's okey, because their work done.
Anyway, thank alot for your helping.
Solving Problem
Hi, femrich
The problem was been solved. The easy way, ask my web hosting to fix it, and they did it, so simple.
Now, there is no php problem detected anymore.
Bye