phpMyAdmin - Error Cannot start session without errors, please check errors given in

[calum69]

i saw a 2nd gm character log into my server so i changed the account and password on the account and reloaded it.

the gm loggedi n again so i knew he had access to my database, so i changed the passwords on the database and then went to log back into the database and got this message

phpMyAdmin - Error

Cannot start session without errors, please check errors given in your PHP and/or webserver log file and configure your PHP installation properly.

i cannot log into my database now what should i do?

 

[cirtaboy]

He shouldn't be able to access your database.

Access forbidden!


New XAMPP security concept:
Access to the requested object is only available from the local network.
This setting can be configured in the file "httpd-xampp.conf".

 

[Sonical]

PMA user?
Also what aac manager?

 

[Sonical]

Do you have blocked PMA user?
Also what aac manager?

 

[calum69]

im using gesiors acc and not sure about pma how would i know? im not strong with php side of things

 

[cirtaboy]

You can't even access the database, so it can't be PMA.

 

[calum69]

well im not sure of the error i tried changing the password of the database and i could still connect to it, now i can no longer connect to the database how can i reset the password to it without closing the server?

as i will have to change the password in the config etc im not sure how he got access to the gm but i changed all the info to it and he still got on so he must have known what i changed it to looking into it?

 

[calum69]

ive just restart my xampp client and it connected to the database with the password in the config but i cannot connect to it with that password....

 

[Sonical]

Small security guide
http://otland.net/f14/pot-security-warning-36593/
http://otland.net/f14/warning-everyone-whos-running-xampp-15321/
http://otland.net/f479/gesior-aac-exploits-all-versions-76074/

Also use latestnews.php which has disabled tickers

<?PHP
//######################## SHOW TICKERS AND NEWS #######################
$main_content .= '	</tr>
</table>';
if($group_id_of_acc_logged >= $config['site']['access_admin_panel']){$main_content .=  '<a href="?subtopic=forum&action=new_topic&section_id=1">Add new news</a>';}
$zapytanie = $SQL->query("SELECT `z_forum`.`post_topic`, `z_forum`.`author_guid`, `z_forum`.`post_date`, `z_forum`.`post_text`, `z_forum`.`id`, `z_forum`.`replies`, `players`.`name` FROM `z_forum`, `players` WHERE `section` = '1' AND `z_forum`.`id` = `first_post` AND `players`.`id` = `z_forum`.`author_guid` ORDER BY `post_date` DESC LIMIT 3;")->fetchAll();
foreach ($zapytanie as $row)
{
         $BB = array(
		'/\[b\](.*?)\[\/b\]/is' => '<strong>$1</strong>',
		'/\[quote\](.*?)\[\/quote\]/is' => '<table cellpadding="0" style="background-color: #c4c4c4; width: 480px; border-style: dotted; border-color: #007900; border-width: 2px"><tr><td>$1</td></tr></table>',
		'/\[u\](.*?)\[\/u\]/is' => '<u>$1</u>',
		'/\[i\](.*?)\[\/i\]/is' => '<i>$1</i>',
		'/\[url](.*?)\[\/url\]/is' => '<a href=$1>$1</a>',
		'/\[img\](.*?)\[\/img\]/is' => '<img src=$1 alt=$1 />',
		'/\[player\](.*?)\[\/player\]/is' => '<a href='.$server['ip'].'?subtopic=characters&amp;name=$1>$1</a>',
		'/\[code\](.*?)\[\/code\]/is' => '<div dir="ltr" style="margin: 0px;padding: 2px;border: 1px inset;width: 500px;height: 290px;text-align: left;overflow: auto"><code style="white-space:nowrap">$1</code></div>'
		);
		$message = preg_replace(array_keys($BB), array_values($BB), nl2br($row['post_text']));
        $main_content .= '<div class=\'NewsHeadline\'>
		<div class=\'NewsHeadlineBackground\' style=\'background-image:url('.$layout_name.'/images/news/newsheadline_background.gif)\'>
		<table border=0><tr><td><img src="'.$layout_name.'/images/news/icon_1.gif" class=\'NewsHeadlineIcon\' alt=\'\' />
		</td><td><font color="'.$layout_ini['news_title_color'].'">'.date('d.m.y H:i:s', $row['post_date']).' - <b>'.$row['post_topic'].'</b></font></td></tr></table>
		</div>
		</div>
		<table style=\'clear:both\' border=0 cellpadding=0 cellspacing=0 width=\'100%\'><tr>
		<td><img src="'.$layout_name.'/images/global/general/blank.gif" width=10 height=1 border=0 alt=\'\' /></td>';
		if($group_id_of_acc_logged >= $config['site']['access_admin_panel'])
		{
			$main_content .='<td width="100%">'.$message.'<br><h6><i>Posted by </i><font color="green">'.$row['name'].'</font></h6><p align="right"><a href="?subtopic=forum&action=remove_post&id='.$row['id'].'"><font color="red">[Delete this news]</font></a>  <a href="?subtopic=forum&action=edit_post&id='.$row['id'].'"><font color="green">[Edit this news]</font></a>      <a href="?subtopic=forum&action=show_thread&id='.$row['id'].'">Comments: '.$row['replies'].'</a></p>';
		}
		else		
		{
			$main_content .='<td width="100%">'.$message.'<br><h6><i>Posted by </i><font color="green">'.$row['name'].'</font></h6><p align="right"><a href="?subtopic=forum&action=show_thread&id='.$row['id'].'">Comments: '.$row['replies'].'</a></p>';		
		}
		$main_content .= '</td>
		<td><img src="'.$layout_name.'/images/global/general/blank.gif" width=10 height=1 border=0 alt=\'\' /></td>
		</tr></table>';
}

?>

Rep++

 

[calum69]

so i can just change these files and it shoul let me login without giving me this error

phpMyAdmin - Error Cannot start session without errors, please check errors given in

 

[Sonical]

Dunno, but it protects you against hacking at next time when someone tries to hack you.
You can also google about this error since it isn't OT error.

 

[calum69]

ok i uninstalled xampp and all folders after copying my mysql folder and htdocs. but now when i installed it all again ive lost all characters and accounts. i thought they were stored in the mysql folder?

any resolution for this?

 

[Sonical]

No if you've uninstalled your xampp and you cannot find those folders in bin, there is nothing you can do for saving your data. Also I suggest you to use Uniform server (search) instead of xampp, it is faster and much more secured.