Hey all, currently we are installing and preparing mediawiki within our company, but we only have got one problem. On a random notice the following happens: if you press the save button it says 'This is only a preview; changes have not yet been saved! ', but the rest of the content is disappeared. Did anyone else experiance a similar problem and did someone maybe already find a solution.
For your information, we are using * Mediawiki 1.11.0 * PHP 5.2.4 (apache2handler) * MySQL: 5.0.45-community-nt * Windows Server 2003/2000 (we tried it on both O/S)
Thanks for your time and help in advance, Tom Maaswinkel Rabobank Nederland Groep ICT, afd. Systeemrealisatie
================================================ De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt, wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. Rabobank Nederland is een handelsnaam van de Cooperatieve Centrale Raiffeisen-Boerenleenbank B.A.Rabobank Nederland staat ingeschreven bij de K.V.K. onder nr. 30046259 ================================================ The information contained in this message may be confidential and is intended to be exclusively for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. Rabobank Nederland is a trade name of Cooperatieve Centrale Raiffeisen-Boerenleenbank B.A. Rabobank Nederland is registered by the Chamber of commerce under nr. 30046259
Hi Tom,
first of all - I want to discourage you from using Windows as operating system for the wiki server. We tried it 3 month ago and there occured php errors. I think this was due the combination of the IIS weberver and php. We didn't found a solution and switched the server to linux (ubuntu lts server).
Is the php.ini value post_max_size set to 10kb or beneath? :-) Whatever, I've no idea. Sorry.
Regards! Alex
-----Ursprüngliche Nachricht----- Von: mediawiki-l-bounces@lists.wikimedia.org [mailto:mediawiki-l-bounces@lists.wikimedia.org] Im Auftrag von T.W.A.Maaswinkel@rn.rabobank.nl Gesendet: Mittwoch, 31. Oktober 2007 13:58 An: mediawiki-l@lists.wikimedia.org Betreff: [Mediawiki-l] Keep getting empty previews when submitting pages
Hey all, currently we are installing and preparing mediawiki within our company, but we only have got one problem. On a random notice the following happens: if you press the save button it says 'This is only a preview; changes have not yet been saved! ', but the rest of the content is disappeared. Did anyone else experiance a similar problem and did someone maybe already find a solution.
For your information, we are using * Mediawiki 1.11.0 * PHP 5.2.4 (apache2handler) * MySQL: 5.0.45-community-nt * Windows Server 2003/2000 (we tried it on both O/S)
Thanks for your time and help in advance, Tom Maaswinkel Rabobank Nederland Groep ICT, afd. Systeemrealisatie
================================================ De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt, wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. Rabobank Nederland is een handelsnaam van de Cooperatieve Centrale Raiffeisen-Boerenleenbank B.A.Rabobank Nederland staat ingeschreven bij de K.V.K. onder nr. 30046259 ================================================ The information contained in this message may be confidential and is intended to be exclusively for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. Rabobank Nederland is a trade name of Cooperatieve Centrale Raiffeisen-Boerenleenbank B.A. Rabobank Nederland is registered by the Chamber of commerce under nr. 30046259 _______________________________________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org http://lists.wikimedia.org/mailman/listinfo/mediawiki-l
Alexander Steffan wrote:
first of all - I want to discourage you from using Windows as operating system for the wiki server. We tried it 3 month ago and there occured php errors. I think this was due the combination of the IIS weberver and php.
I'm no big fan of Windows, but lets put the blame where it belongs.
Windows + Apache works just fine. Windows + IIS causes some people problems initially but they get it to work. Linux + anything is a big learning curve if you don't know Linux.
Choose your headaches carefully.
Mike
On 31/10/2007, T.W.A.Maaswinkel@rn.rabobank.nl T.W.A.Maaswinkel@rn.rabobank.nl wrote:
Hey all, currently we are installing and preparing mediawiki within our company, but we only have got one problem. On a random notice the following happens: if you press the save button it says 'This is only a preview; changes have not yet been saved! ', but the rest of the content is disappeared. Did anyone else experiance a similar problem and did someone maybe already find a solution.
For your information, we are using
Mediawiki 1.11.0PHP 5.2.4 (apache2handler)MySQL: 5.0.45-community-ntWindows Server 2003/2000 (we tried it on both O/S)
I'm going to guess that this is a standard PHP session.save_path misconfiguration, leading to session data loss, which *should* have been detected during installation.
Check that the value of session.save_path in PHP.ini, and make sure it's set to a valid path, to which the user IIS/Apache is running as has read/write access.
Rob Church
Hello,
I have a fundamental question: who is the owner of Localsettings.php and who is (or should be) the group for Localsettings.php? I assume both owner and group have to "rw" right to Localsettings.php.
Nelson
Computer Sciences Corporation Registered Office: 2100 East Grand Avenue, El Segundo California 90245, USA Registered in USA No: C-489-59
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
This is a PRIVATE message. If you are not the intended recipient, please delete without copying and kindly advise us by e-mail of the mistake in delivery. NOTE: Regardless of content, this e-mail shall not operate to bind CSC to any order or other contract unless pursuant to explicit written agreement or government initiative expressly permitting the use of e-mail for such purpose. ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Sorry, Localsettings.php should be LocalSettings.php. Hope nobody thought that I was nuts!
Nelson
Computer Sciences Corporation Registered Office: 2100 East Grand Avenue, El Segundo California 90245, USA Registered in USA No: C-489-59
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
This is a PRIVATE message. If you are not the intended recipient, please delete without copying and kindly advise us by e-mail of the mistake in delivery. NOTE: Regardless of content, this e-mail shall not operate to bind CSC to any order or other contract unless pursuant to explicit written agreement or government initiative expressly permitting the use of e-mail for such purpose. ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Nelson A Li/CIV/CSC@CSC Sent by: To mediawiki-l-bounc MediaWiki announcements and site es@lists.wikimedi admin list a.org mediawiki-l@lists.wikimedia.org cc
10/31/2007 10:27 Subject AM [Mediawiki-l] Localsettings.php permissions
Please respond to MediaWiki announcements and site admin list <mediawiki-l@list s.wikimedia.org>
Hello,
I have a fundamental question: who is the owner of Localsettings.php and who is (or should be) the group for Localsettings.php? I assume both owner and group have to "rw" right to Localsettings.php.
Nelson
Computer Sciences Corporation Registered Office: 2100 East Grand Avenue, El Segundo California 90245, USA Registered in USA No: C-489-59
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
This is a PRIVATE message. If you are not the intended recipient, please delete without copying and kindly advise us by e-mail of the mistake in delivery. NOTE: Regardless of content, this e-mail shall not operate to bind CSC to any order or other contract unless pursuant to explicit written agreement or government initiative expressly permitting the use of e-mail for such purpose. ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
_______________________________________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org http://lists.wikimedia.org/mailman/listinfo/mediawiki-l
I have a fundamental question: who is the owner of Localsettings.php and who is (or should be) the group for Localsettings.php? I assume both owner and group have to "rw" right to Localsettings.php.
LocalSettings.php should probably belong to your Web user and group, as presumably would all of the files for your Web site. I would recommend that you CHMOD LocalSettings.php to 600 unless your setup requires otherwise.
I would suggest, if you want maximum security, to make it so that account under which website is running has read-only permissions to all files on your website, unless it really needs to have write permissions - specifically for MediaWiki, it would need write permissions in /images directory and its children. I don't believe it needs write access anywhere else in the filesystem. If you are only medium-paranoid, you can leave file owner to account under which website is running, and change permissions to read only. If you are extra-paranoid, you can change owner to a user other then web server, give group read permissions to group that web server is in, and no permissions to anyone else. I am extra-paranoid and it works fine - I simply ftp to site with owner account to make changes to files, and I leave them readable by group that web server is in.
Also, the way MediaWiki works, you never (at least off the top of my head) need direct access to any .php files other then index.php. All other files are used with includes or requires. Many of them have something like this as first lines in the file:
if ( !defined( 'MEDIAWIKI' ) ) { die( "This file is part of MediaWiki, it is not a valid entry point" ); }
This effectively prevents them from being used without having been called from index.php. Not the most robust security mechanism, so you might want to deny web access files ending with .php except for index.php through settings on your web server.
Marko
On 10/31/07, Emufarmers Sangly emufarmers@gmail.com wrote:
I have a fundamental question: who is the owner of Localsettings.php and who is (or should be) the group for Localsettings.php? I assume both owner and group have to "rw" right to Localsettings.php.
LocalSettings.php should probably belong to your Web user and group, as presumably would all of the files for your Web site. I would recommend that you CHMOD LocalSettings.php to 600 unless your setup requires otherwise.
Hello,
Thank you for the clarification. I was busy preparing for a demo for last couple of weeks and now am back working on wiki again. It surely feels good to talk to people who are knowledgeable.
Nelson
Computer Sciences Corporation Registered Office: 2100 East Grand Avenue, El Segundo California 90245, USA Registered in USA No: C-489-59
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
This is a PRIVATE message. If you are not the intended recipient, please delete without copying and kindly advise us by e-mail of the mistake in delivery. NOTE: Regardless of content, this e-mail shall not operate to bind CSC to any order or other contract unless pursuant to explicit written agreement or government initiative expressly permitting the use of e-mail for such purpose. ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
"Marko Milisavljevic" <marko@cognistudi To o.com> "MediaWiki announcements and site Sent by: admin list" mediawiki-l-bounc mediawiki-l@lists.wikimedia.org es@lists.wikimedi cc a.org Subject Re: [Mediawiki-l] Localsettings.php 10/31/2007 04:35 permissions PM
Please respond to MediaWiki announcements and site admin list <mediawiki-l@list s.wikimedia.org>
I would suggest, if you want maximum security, to make it so that account under which website is running has read-only permissions to all files on your website, unless it really needs to have write permissions - specifically for MediaWiki, it would need write permissions in /images directory and its children. I don't believe it needs write access anywhere else in the filesystem. If you are only medium-paranoid, you can leave file owner to account under which website is running, and change permissions to read only. If you are extra-paranoid, you can change owner to a user other then web server, give group read permissions to group that web server is in, and no permissions to anyone else. I am extra-paranoid and it works fine - I simply ftp to site with owner account to make changes to files, and I leave them readable by group that web server is in.
Also, the way MediaWiki works, you never (at least off the top of my head) need direct access to any .php files other then index.php. All other files are used with includes or requires. Many of them have something like this as first lines in the file:
if ( !defined( 'MEDIAWIKI' ) ) { die( "This file is part of MediaWiki, it is not a valid entry point" ); }
This effectively prevents them from being used without having been called from index.php. Not the most robust security mechanism, so you might want to deny web access files ending with .php except for index.php through settings on your web server.
Marko
On 10/31/07, Emufarmers Sangly emufarmers@gmail.com wrote:
I have a fundamental question: who is the owner of Localsettings.php
and
who is (or should be) the group for Localsettings.php? I assume both owner and group have to "rw" right to Localsettings.php.
LocalSettings.php should probably belong to your Web user and group, as presumably would all of the files for your Web site. I would recommend that you CHMOD LocalSettings.php to 600 unless your setup requires otherwise.
_______________________________________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org http://lists.wikimedia.org/mailman/listinfo/mediawiki-l
NAL> I don't believe it needs write access anywhere else in the NAL> filesystem.
Until one discovers e.g., http://bugzilla.wikimedia.org/show_bug.cgi?id=11654 Use database instead of filesystem for updateSearchIndex.php position record
mediawiki-l@lists.wikimedia.org