Support has been upgraded!
The Support Forum is closed. Not to worry! Providing the top quality support you expect and we're known for will continue! We're not ending support, just changing where you submit requests. This will provide you with the best experience possible.
Premium Support
Have you purchased an addon for Connections such as one of our premium templates or extensions with a valid license and you need help?
Please open a Support Ticket in your user account.
Free Support
Are you using the free Connections plugin? Don't worry, you are still very important to us! We are still providing you with the same high quality support that we're known for.
Please open a new support topic in the WordPress support forums for Connections.
- This topic has 8 replies, 2 voices, and was last updated 8 years, 11 months ago by
Steven Zahm.
-
AuthorPosts
-
09/14/2014 at 7:41 pm #304023
trmash
GuestHi,
I received this error after upgrading to Connections 8.1.1 via WordPress 4.0 – not sure how class.filesystem.php didn’t get installed as it’s in your 8.1.1 zip (I downloaded and checked) – but thought I’d let you know anyway in case anyone else reports a similar problem.
I’ve manually added the missing file to the relevant folder on my server, hopefully this will rectify the fatal error issue.
Cheers.
Warning: require_once(/home/sitename/public_html/wp-content/plugins/connections/includes/class.filesystem.php) [function.require-once]: failed to open stream: No such file or directory in /home/sitename/public_html/wp-content/plugins/connections/connections.php on line 468
Fatal error: require_once() [function.require]: Failed opening required '/home/sitename/public_html/wp-content/plugins/connections/includes/class.filesystem.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home/sitename/public_html/wp-content/plugins/connections/connections.php on line 468
09/15/2014 at 3:24 am #304034trmash
GuestMe again – just wanted to update you with further information.
Unfortunately the error struck again, and class.filesystem.php (which I uploaded manually this morning) is no longer in plugins/connections/includes – despite nobody touching the site since.
Do you have any idea what might be causing this issue? Is there anything I can provide to you that might help you?
Thanks.
09/15/2014 at 9:08 am #304081Steven Zahm
Keymaster@ trmash
You might have to ask you host. The only time I’ve seen files disappear is when the host has an aggressive file scanner that will auto delete a file that it thinks is a hostile script. This is the first time, that I’m aware of, a file within Connections being targeted. You have to ask them to whitelist the file or explain why the system is deleting the file … if there is something I can adjust not to trigger it, then I will.
10/08/2014 at 7:22 pm #306458trmash
GuestHi Steven,
I have finally returned with an update from my host:
The developer is correct. I noticed that the file
“class.filesystem.php” is being quarantined by the Anti-Virus (CXS)
installed on the server.I have not added this file in the ignore list, I am afraid. The reason
behind this is, if the file is exploited then it can cause issues to
the server. Following code is used to delete file recursively.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ if ( $file->isDir()
) {@rmdir( $file->getPathname() );
} else {
@unlink( $file->getPathname() );
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~While the code is well written, being a WordPress site hacker can try
to exploit it. Considering this if you permit, I can go ahead and add
this file to the whitelist.Is there anything that can be done to address this at your end? Or do you think there is nothing to worry about if I give permission to whitelist the file at a server level?
Thanks!
10/09/2014 at 10:53 am #306595Steven Zahm
Keymaster@ trmash
Well, WordPress has a recursive delete function too. I just was not able to use it, unfortunately, at this time. I do plan on changing that, but the function I wrote suits my specific use case within Connections. It is used when deleting entries. It deletes all the entries images and any of their variations and finally deletes the entry’s image folder.
Yes, a hacker could potentially exploit this code, they could potentially exploit the function within WordPress too. I believe I have the proper precautions implemented that from happening.
I guess I could remove it and delete only images within the entry folder and then the folder itself. I’ll have to give it more thought.
10/09/2014 at 6:41 pm #306663trmash
GuestHi again,
Thanks for getting back to me on this – please don’t think that I was being critical of the plugin, I was just relaying what my host had said (and it was all a bit over my head anyway, hence the copy and paste).
For the short term I guess what I’m really asking is, if you were in my shoes – would you be comfortable white-listing the file on your server? I’m sort of leaning to yes if it’s also used in WordPress anyway, but I’m still very keen to hear your opinion.
Thanks again, I really appreciate your time on this.
10/09/2014 at 7:17 pm #306670Steven Zahm
Keymaster@ trmash
Oh, no, I certainly did not think you were being critical!
So to answer the question, yes, I’d whitelist the file.
10/10/2014 at 3:16 am #306715trmash
GuestHi Steven,
Thanks again for everything, we’ve had the file whitelisted and fingers are crossed. :)
I really appreciate the time you’ve taken and the advice provided.
Cheers!
10/10/2014 at 8:24 am #306742Steven Zahm
Keymaster@ trmash
No problem. I do have this in my issue tracker to rework.
If I have not asked and you have a moment, I would truly appreciate a review as they really do make a difference. Many thanks in advance!
https://wordpress.org/support/view/plugin-reviews/connections -
AuthorPosts
You must be logged in to reply to this topic.