Is it safe if comment out CSRF TOKEN? | Fix Application Error: [0204]
02-23-2018, 08:22 PM
(This post was last modified: 02-23-2018, 08:25 PM by Hadhill.)
Hello.
I just installed sentora for my centos 7 vps, installation is successful but when i try to login panel and i got message
"Application Error: [0204] - The form you attempted to submit had an invalid token!"
Fresh Re-installing sentora didn't work for me. Then i found the solution from here (just retake from archive.org) thanks dave Ozoalor from braintem.
Here is the tutorial
That is work for me, but is it safe?
I just installed sentora for my centos 7 vps, installation is successful but when i try to login panel and i got message
"Application Error: [0204] - The form you attempted to submit had an invalid token!"
Fresh Re-installing sentora didn't work for me. Then i found the solution from here (just retake from archive.org) thanks dave Ozoalor from braintem.
Here is the tutorial
Quote:1. Search csfr.class.php
Code:find / -name "csfr.class.php"
2. Open csfr.class.php (sentora directory= /etc/sentora/panel/dryden/runtime/csfr.class.php) with text editor and Comment out everything in the protect() function like this: Be careful not to comment out the function itself. Just comment out all what is inside.
PHP Code:static function Protect() {
/*
if (isset($_POST['csfr_token']) && ($_POST['csfr_token'] == $_SESSION['zpcsfr'])) {
self::Tokeniser();
return true;
}
$error_html = "<style type=\"text/css\"><!--
.dbwarning {
font-family: Verdana, Geneva, sans-serif;
font-size: 14px;
color: #C00;
background-color: #FCC;
padding: 30px;
border: 1px solid #C00;
}
p {
font-size: 12px;
color: Custom Vhost entries problem - Not working;
}
</style>
<div class=\"dbwarning\"><strong>Application Error:</strong> [0204] - The form you attempted to submit had an invalid token!</p></div>";
die($error_html);
*/
}
That is work for me, but is it safe?
