Support

Admin Tools

#12915 Repair & Optimise Tables: 403: Access Forbidden

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Wednesday, 11 July 2012 01:52 CDT

Tuesday, 10 July 2012 09:46 CDT

jdmorris
Mandatory information about my setup:

Have I read the related troubleshooter articles above before posting (which pages?)? Yes
Have I searched the tickets before posting? Yes
Have I read the documentation before posting (which pages?)? Yes
Joomla! version: (2.5.6)
PHP version: (5.3.14)
MySQL version: (5.1.63)
Host: (optional, but it helps us help you)
Admin Tools version: (Admin Tools Professional 2.2.9)

Description of my issue: When I execute Repair & Optimise Tables I receive this error:
403: Access Forbidden
Attempted SQL injection in REQUEST_URI

Tuesday, 10 July 2012 11:34 CDT

nicholas
This is not thrown by Admin Tools. You are using another security solution on your site and throws this error. Unfortunately I can not provide support for third party software interfering with legitimate requests issued by my components. Please consult the developer of the other security solution.

Hint: My educated guess is that the offending component is RS!Firewall which also filters back-end requests, something which is redundant, silly and completely annoying at the same time.

Nicholas K. Dionysopoulos

Lead Developer and Director

πŸ‡¬πŸ‡·Greek: native πŸ‡¬πŸ‡§English: excellent πŸ‡«πŸ‡·French: basic β€’ πŸ• My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Tuesday, 10 July 2012 23:59 CDT

jdmorris
Nicolas,

Yes I'm using RSFirewall, however I'm running these successfully together on 2 other sites, so I'm surprised to see this.

Thanks for the insight, I'll set up an exception in my RSFirewall, and advise RSJoomla of this problem.

Kind regards,

John

Wednesday, 11 July 2012 01:52 CDT

nicholas
You're welcome, John! I've seen that issue quite a few times. RS!Firewall filters back-end queries for SQL Injection, but this seems extremely redundant. If someone is not trustworthy and could launch an attack on your site they shouldn't be given back-end access in the first place. If someone breaks into the site's back-end there are far easier ways to hack your site, therefore it's way too late to filter for SQL Injection. All RS!Joomla achieves with this feature is to screw up third party extensions :(

Nicholas K. Dionysopoulos

Lead Developer and Director

πŸ‡¬πŸ‡·Greek: native πŸ‡¬πŸ‡§English: excellent πŸ‡«πŸ‡·French: basic β€’ πŸ• My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!