Misread of My PHP Installation

Hi,

It detects you are running PHP as an Apache module, but it cannot detect the exact name of the module (I assume you are running CentOS ?).
You can remove all “IfModule” lines from the .htaccess and only keep the “php_value auto_prepend_file” so that it looks like this:

php_value auto_prepend_file /full/path/to/wordpress/wp-content/plugins/ninjafirewall/lib/firewall.php

Normally, it should work just with this and you should not even have to restart Apache.

Regarding the .htninja file, it must be above the website document root.

I tried what you suggest, but it still made my site inaccessible. I wonder if it might be incompatible with WP Super Cache’s htacces rules?

Hi,

Can you post here your HTTP server error log, it should contain the exact reason why it crashes.

There shouldn’t be any problem with your cache .htaccess rules, NinjaFirewall directives are for PHP only and not related to mod_rewrite or other similar modules.

You can also you download this PHP script, upload it to your WP directory, call it from your browser and paste here the output.

Okay, I should clarify: it isn’t crashing PHP or Apache, it’s just producing a white screen.

However, there are no errors in my PHP error log. Nor are there any errors in my Apache error logs, either for Apache generally or the specific server log.

I also tried your script, but that too produces a white screen. Still no error in the logs.

Remove your htaccess rules, and everything works again – except for Ninja firewall of course.

In my experience, htaccess errors don’t necessarily produce anything in the logs, but PHP errors always do. Hence it would appear to be an htaccess issue, not a PHP one.

Hi,

Most of the time, when the page is blank, if the HTTP server returns a “200 OK” code, it is due to a PHP error. If it is “5xx” or “4xx”, it is a server error.
One thing I do not understand is why the ninjacheck_php.txt gave you a blank page ? It does nothing but printing info about your PHP and WP configuration.

You are right: usually htacces problems produce 4xx or 5xx errors, but in this case there’s nothing. But there aren’t any PHP errors in the logs either!

I should clarify: ninjacheck only produced a blank page with the htaccess rule in place. I get a weird “cannot decode raw data” (NSURLErrorDomain:-1015) error without the rules (obviously Ninja firewall is disabled though).

I should also point out that I have my PHP memory set to 48MB. Is this enough?

I greatly appreciate your quick responses and perseverance in this matter.

The above error is in Safari; in Firefox, I get:

Content Encoding Error: The page you are trying to view cannot be shown because it uses an invalid or unsupported form of compression.

Hi

I made changes to the ninjacheck, can you download it and try again ? Changes include encoding description (in the <head> section).

I would recommend to increase your memory, because 48Mb is quite low for WP. Can you try 128Mb at least ?

You mentioned you had WP Super Cache installed; did it add some specific encoding rules (e.g., gzip) to the .htaccess that could mess with the output of any PHP script ?

Good news: lifting the PHP memory allowed ninjacheck to wrk.

Bad news: even after removing all other htaccess rules apart from WordPress’ own, I’m still getting a white screen with the ninjacheck rules in place, and no errors reported.

Here’s ninjacheck’s output:

NinjaFirewall (WP edition) troublershooter v1.02

========================== 8< ============================

HTTP server: Apache
PHP version: 5.3.27
PHP SAPI: APACHE2HANDLER
Loaded INI file: /usr/local/Zend/etc/php.ini
auto_prepend_file: none
user_ini.filename: .user.ini
user_ini.cache_ttl: 300
user INI: not found
PHPRC: unknown
DOCUMENT_ROOT: [URL REMOVED]
wp-config.php: found
ABSPATH: [URL REMOVED]/english/ (ABSPATH != DOCUMENT_ROOT)
WP version: 680
WP_CONTENT_DIR: [URL REMOVED]/english/wp-content

========================== 8< ============================

Hi,

Could you try to force PHP to output errors by adding this to your .htaccess file:

php_flag  log_errors on
php_value error_log  /path/to/errors.log

Just replace “/path/to/errors.log” with the location you want the log to be created (it must be writable).

Tried your suggestion – still no errors reported.

I also tried WP Debug mode. STILL no errors, even though there were plenty of completely unrelated notices from other plug-ins (nothing from NinjaFirewall or WordPress core).

So it really looks like an htaccess error, rather than a PHP error. Yet there are no 4xx or 5xx errors either. Just a blank screen.

I’m wondering if this might be a permissions issue, as I have very tight permissions on my server. Please let me know all files and directories that NinjaFirewall will try to write to.

Hi,

It writes to the /wordpress/wp-content/plugins/ninjafirewall/log/ directory (and its cache/ sub-directory).

Okay, I already made that writeable on instructions from the plug-in, so that isn’t the answer unfortunately.

Can you check your Apache configuration to ensure that it logs HTTP errors ? See https://httpd.apache.org/docs/2.2/logs.html

You can also have a look at its access log to check the HTTP code it returned when the blank page was displayed. This will be written to the log along with the HTTP request.