|-转 Apache 报错 PHP error AH00052 Segmentation fault 11
[core:notice] [pid 2037:tid 139683909299072] AH00052: child pid 1095041 exit signal Segmentation fault (11)|| Asked 1 year, 8 months ago Modified 1 year, 6 months ago Viewed 4k times|| I saw comments about PHP and PHP-FPM being different in versions. ,一种说法是PHP和PHP-FPM的版本不一致。20220419
I'm working on my local Mac Catalina environment with PHP 7.4.8 with apache installed. There is the PHP 7.3 version that got installed with Catalina which I haven't removed. I overwritten apache config in httpd.conf to point the PHP version to the 7.4 that got installed with brew. I am trying to upload a vendor bill using the Netsuite SDK but keep getting this error in the apache error log:
[Wed Aug 05 11:43:30.001427 2020] [core:notice] [pid 7195] AH00052: child pid 25656 exit signal Segmentation fault (11)
[Wed Aug 05 11:43:30.002166 2020] [core:notice] [pid 7195] AH00052: child pid 25655 exit signal Segmentation fault (11)
[Wed Aug 05 11:43:30.002207 2020] [core:notice] [pid 7195] AH00052: child pid 25654 exit signal Segmentation fault (11)
[Wed Aug 05 11:43:30.002236 2020] [core:notice] [pid 7195] AH00052: child pid 25526 exit signal Segmentation fault (11)
[Wed Aug 05 11:43:31.003428 2020] [core:notice] [pid 7195] AH00052: child pid 33510 exit signal Segmentation fault (11)
[Wed Aug 05 11:43:32.003629 2020] [core:notice] [pid 7195] AH00052: child pid 33511 exit signal Segmentation fault (11)
The bill works (I dump out the object) until I try to send it up to Netsuite and then I get a "This page isn't working" with AH00052 in the apache error logs. I can send up a Credit memo just fine but Vendor Bill just isn't working so it's just this. Things I've tried:
UPDATE
I increased the output_buffering to 8192M, 8192, Off and -1. Thanks to this forum
I tried to turn off output_buffering.
I saw that my terminal and phpinfo were displaying two different versions. Got that updated in apache to point to the new PHP version.
Tried turning off memory limit too.
I saw comments about PHP and PHP-FPM being different in versions. When I run -v on both php and fpm, it shows the same version. I don't have any other super fancy packages installed. I have a Wordpress site also installed locally just fine so apache is working. It's just something that's causing this error. I got m
I've spent days on debugging this. I appreciate any feedback. I've attached a pic of what phpinfo spits out. Attached is a pic of the phpinfo();
php
apache
php-7
Share
Improve this question
Follow
edited Aug 5, 2020 at 20:13
asked Aug 5, 2020 at 19:07
user avatar
cbloss793
1,49544 gold badges2121 silver badges2929 bronze badges...
...|-转 阻止用户从url访问JSON文件
我在Drupal7中有一个站点。在站点上运行安全扫描时,我遇到了一个威胁,说“一个已知的敏感文件被发现发布在一个可公开访问的web目录中。根据文件的不同,它可能会泄露用户凭据和配置数据等敏感数据。”例如,我可以访问/sites/all/libraries/colorbox/package.json,我需要阻止用户从urls访问类似的文件。我的.htaccess文件中有以下代码,但它不能阻止json文件访问:
<FilesMatch "\.(engine|inc|info|install|make|module|profile|test|po|sh|.*sql|theme|tpl(\.php)?|xtmpl)(~|\.sw[op]|\.bak|\.orig|\.save)?$|^(\..*|Entries.*|Repository|Root|Tag|Template|composer\.(json|lock))$|^#.*#$|\.php(~|\.sw[op]|\.bak|\.orig\.save)$"> Order allow,deny </FilesMatch>
上面的代码运行良好。我犯了一个错误,没有为json文件添加"package“前缀。所以.htaccess中的代码应该是: ...
|-转 找网站后台方法大全,怎么查找网站后台?
在渗透中,有时通过注入等方法拿到了后台账号和密码,却找不到后台,导致非常的尴尬,这篇文章介绍自己常用的查找后台方法,当然,有攻就有防,还会介绍几种让人找不到后台的方法。
万变不离其宗,后台的位置主要分以下几种情况。
一、后台常见位置
1、在网站根目录下
例如admin.php,manage.php等文件,后台管理地址直接存放在根目录,比如常见的论坛程序discuz后台地址就是admin.php
2、在非根目录下
这种情况最为常见,最常见的后台地址无非是/admin,/manage,还有织梦系统的默认后台地址/dede
3、旁站
将网站和后台分离开,使用不同的端口,比如地址:http://www.xf1433.com:1433/admin,
4、使用二级域名
普通小网站通常不会这么讲究,但是对于大型网站来说,分离主要是为了方便管理,例如后台为:http://admin.xf1433.com
5、其他服务器
无处可寻的后台,完全与网站分离开,ip地址不同,域名也不同
二、如何查找网站后台
1、字典暴力破解
所有的找后台工具无非是一个原理,用大量的后台字典,生成大量的后台网站,再通过http请求,假如状态码是200,则后台地址正确。常见的后台扫描工具有:御剑、wwwscan、kali、以及其他目录扫描工具。
2、爬虫全站扫描
使用我们的黑客神器Burpsuite中的蜘蛛爬虫功能,或者其他爬虫工具,对全站文件路径进行扫描,了解到全站路径后可以百度查查相关路径,搞不好能知道cms系统,然后再下载相关cms,看看默认后台路径,即使找不到后台,也可以找找cms的相关漏洞。
3、搜索引擎利用
搜索引擎收录网站页面对于网站来说是件好事,但是如果收录到后台地址,那就不开心了,小风用指令百度搜一下,就能发现很多个网站的后台。
如果要针对某个网站在百度或谷歌搜索后台怎么搜呢?用这个指令,site:http://xf1433.com后台管理,site加个冒号后面加个网站则会显示百度收录此网站的全部页面,后面再加后台管理,则是找出此网站带有与后台管理相关的页面,这样能找出后台也就不意外了,当然你不用搜小风教程网的,我都这么写了自己还犯这种错误那不是很尴尬。...
