boardom

juliagizzle · Joined: 06 May 2004 Posts: 7

why do i get this when i try to login?

Warning: Cannot modify header information - headers already sent by (output started at /home/juliagi/public_html/blog/b2config.php:356) in /home/juliagi/public_html/blog/b2login.php on line 294

Warning: Cannot modify header information - headers already sent by (output started at /home/juliagi/public_html/blog/b2config.php:356) in /home/juliagi/public_html/blog/b2login.php on line 295

Warning: Cannot modify header information - headers already sent by (output started at /home/juliagi/public_html/blog/b2config.php:356) in /home/juliagi/public_html/blog/b2login.php on line 296

Warning: Cannot modify header information - headers already sent by (output started at /home/juliagi/public_html/blog/b2config.php:356) in /home/juliagi/public_html/blog/b2login.php on line 297

Warning: Cannot modify header information - headers already sent by (output started at /home/juliagi/public_html/blog/b2config.php:356) in /home/juliagi/public_html/blog/b2login.php on line 298

and when i try to post i get this

Warning: Cannot modify header information - headers already sent by (output started at /home/juliagi/public_html/blog/b2config.php:356) in /home/juliagi/public_html/blog/b2edit.php on line 113

what can i do about this it occured after i used the smilie hack
please help

juliagizzle · Joined: 06 May 2004 Posts: 7

if it will help my b2config.php file looks like this..

<?php

/* *
* b2's config file *
* */

# Reminder: everything that starts with #, /* or // is a comment

/* Start editing */

# $siteurl is your blog's URL: for example, 'http://mydomain.com' (no trailing slash !)
# $blogfilename is the name of the default file for your blog
# $blogname is the name of your blog

$siteurl = 'http://juliagizzle.iconrate.net/blog';
$blogfilename = 'index.php';
$blogname = 'blog';
$blogdescription = 'what up with me';

# fill these only if you have a Cafelog ID,
# this enables your blog to be in the Recently Updated b2 blogs list.
# to obtain this ID, e-mail [email protected] with these details:
# name of the weblog, weblog's URL, your e-mail address, and a password
# in the future, the password will allow you to change these details online

$cafelogID = '';
$use_cafelogping = 0; # set this to 1 if you do have a Cafelog ID

# $pathserver is where you have uploaded b2: for example, 'http://mydomain.com' (no ending slash !)
# by default b2 is set to run in the folder your blog resides, same as $siteurl

$pathserver = 'http://juliagizzle.iconrate.net/blog';

# your email (obvious uh ?)
$admin_email = '[email protected]';

# set this to 0 or 1, whether you want new users to be able to post entries once they registered
$new_users_can_blog = 0;

# set this to 0 or 1, whether you want to allow users to register on your blog.
$users_can_register = 0;

# day at the start of the week: 0 for Sunday, 1 for Monday, 2 for Tuesday, etc
$start_of_week = 1;

// ** MySQL settings **

# fill with your database details
$dbname = 'juliagi_b21'; // the name of the database
$dbhost = 'localhost'; // 99% chances you won't need to change this value
$dbusername = 'juliagi_b21'; // your MySQL username
$dbpassword = 'Jr31JTEOkzbO'; // ...and password

# database tables' names (change them if you want to have multiple b2's in a single database)
$tableposts = 'b2posts';
$tableusers = 'b2users';
$tablesettings = 'b2settings';
$tablecategories = 'b2categories';
$tablecomments = 'b2comments';

// ** Post preview function **

# set this to 1 if you want to use the 'preview' function
$use_preview = 1;

// ** Spell Checker functions **

# set this to 0 to disable the spell checker, or 1 to enable it
$use_spellchecker = 1;

// ** Text formatting options **

# these options can help you format your text without using too much html
$use_bbcode = 0; // use BBCode, like bold
$use_gmcode = 0; // use GreyMatter-styles: **bold** \italic\ __underline__
$use_quicktags = 1; // buttons for HTML tags (they won't work on IE Mac yet)

# IMPORTANT! set this to 0 if you are using Chinese, Japanese, Korean,
# or other double-bytes languages
$use_htmltrans = 1;

# this could help balance your HTML code. if it gives bad results, set it to 0
$use_balanceTags = 1;

# this would convert quotes into smart/curly quotes, set it to 1 to enable it
$use_smartquotes = 0;

// ** Image upload **

# set this to 0 to disable file upload, or 1 to enable it
$use_fileupload = 0;

# enter the real path of the directory where you'll upload the pictures
# if you're unsure about what your real path is, please ask your host's support staff
# note that the directory must be writable by the webserver (ChMod 766)
# note for windows-servers users: use forwardslashes instead of backslashes
#$fileupload_realpath = '/home/your/site/b2/images';
$fileupload_realpath = '/home/juliagi/public_html/blog/images';

# enter the URL of that directory (it's used to generate the links to the pictures)
$fileupload_url = 'http://juliagizzle.iconrate.net/blog/images';

# accepted file types, you can add to that list if you want
# note: add a space before and after each file type
# example: $fileupload_allowedtypes = ' jpg gif png ';
$fileupload_allowedtypes = ' jpg gif png ';

# by default, most servers limit the size of uploads to 2048 KB
# if you want to set it to a lower value, here it is (you cannot set a higher value)
$fileupload_maxk = '96';

# you may not want all users to upload pictures/files, so you can set a minimum level for this
$fileupload_minlevel = '1';

# ...or you may authorize only some users. enter their logins here, separated by spaces
# if you leave that variable blank, all users who have the minimum level are authorized to upload
# note: add a space before and after each login name
# example: $fileupload_allowedusers = ' barbara anne ';
$fileupload_allowedusers = '';

// ** RSS syndication options **

# these options are used by b2rdf.php (1.0), b2rss.php (0.92), and b2rss2.php (2.0)
# note: if you don't want to syndicate your news, you can delete these files

# number of last posts to syndicate
$posts_per_rss = 10;

# the language of your blog ( see this: http://backend.userland.com/stories/storyReader$16 )
$rss_language = 'en';

# for b2rss.php: allow encoded HTML in <description> tag? 1=yes, 0=no
$rss_encoded_html = 0;

# length (in words) of excerpts in the RSS feed? 0=unlimited
# note: in b2rss.php, this will be set to 0 if you use encoded HTML
$rss_excerpt_length = 50;

// ** Weblogs.com ping **

# set this to 1 if you want your site to be listed on http://weblogs.com when you add a new post
$use_weblogsping = 0;

// ** Blo.gs ping **

# set this to 1 if you want your site to be listed on http://blo.gs when you add a new post
$use_blodotgsping = 0;

# if you ping blo.gs, this is the URL that will be sent to it (enter your blog's URL):
$blodotgsping_url = 'http://juliagizzle.iconrate.net/blog';

// ** Trackback / PingBack **

# set this to 0 or 1, whether you want to allow your posts to be trackback'able or not
# note: setting it to zero would also disable sending trackbacks
$use_trackback = 0;

# set this to 0 or 1, whether you want to allow your posts to be pingback'able or not
# note: setting it to zero would also disable sending pingbacks
$use_pingback = 0;

// ** Comments options **

# set this to 1 to require e-mail and name, or 0 to allow comments without e-mail/name
$require_name_email = 0;

# here is a list of the tags that are allowed in the comments.
# you can add tags to the list, just add them in the string,
# add only the opening tag: for example, only '<a>' instead of '<a href=""></a>'

$comment_allowed_tags = '<b><i><u><strong><em><code><blockquote><p><br><strike><a>';

# set this to 1 to let every author be notified about comments on their posts
$comments_notify = 0;

// ** Smilies options **

# set this to 1 to enable smiley conversion in posts
# (note: this makes smiley conversion in ALL posts)
$use_smilies = 1;

# the directory where your smilies are (no trailing slash)
$smilies_directory = '/blog/b2-img/smilies';

# here's the conversion table, you can modify it if you know what you're doing
$b2smiliestrans = array(
' Smile

' => 'icon_smile.gif',
' Very Happy

' => 'icon_biggrin.gif',
' Very Happy

' => 'icon_biggrin.gif',
' Smile

' => 'icon_smile.gif',
' Smile

' => 'icon_smile.gif',
' Sad

' => 'icon_sad.gif',
' Sad

' => 'icon_sad.gif',
' Sad

' => 'icon_sad.gif',
'' => 'icon_surprised.gif',
'' => 'icon_surprised.gif',
'' => 'icon_surprised.gif',
'' => 'icon_eek.gif',
'' => 'icon_eek.gif',
'' => 'icon_eek.gif',
'' => 'icon_confused.gif',
'' => 'icon_confused.gif',
'' => 'icon_confused.gif',
' Cool

' => 'icon_cool.gif',
' Cool

' => 'icon_cool.gif',
'' => 'icon_lol.gif',
'' => 'icon_mad.gif',
'' => 'icon_mad.gif',
'' => 'icon_mad.gif',
' Razz

' => 'icon_razz.gif',
' Razz

' => 'icon_razz.gif',
'' => 'icon_redface.gif',
'' => 'icon_cry.gif',
'' => 'icon_evil.gif',
'' => 'icon_twisted.gif',
'' => 'icon_rolleyes.gif',
'' => 'icon_wink.gif',
'' => 'icon_wink.gif',
'' => 'icon_wink.gif',
'' => 'icon_exclaim.gif',
'

' => 'icon_question.gif',
' Idea

' => 'icon_idea.gif',
'' => 'icon_arrow.gif',
' Neutral

' => 'icon_neutral.gif',
' Neutral

' => 'icon_neutral.gif',
' Mr. Green

' => 'icon_mrgreen.gif',
':good:' => 'angel.gif',
);

# the weekdays and the months.. translate them if necessary

$weekday[0]='Sunday';
$weekday[1]='Monday';
$weekday[2]='Tuesday';
$weekday[3]='Wednesday';
$weekday[4]='Thursday';
$weekday[5]='Friday';
$weekday[6]='Saturday';

# the months, translate them if necessary - note: this isn't active everywhere yet
$month['01']='January';
$month['02']='February';
$month['03']='March';
$month['04']='April';
$month['05']='May';
$month['06']='June';
$month['07']='July';
$month['08']='August';
$month['09']='September';
$month['10']='October';
$month['11']='November';
$month['12']='December';

# $b2inc is where the included b2 files are: that's generally the directory b2-include,
# so you shouldn't have to change that setting
$b2inc = './b2-include';

// ** Querystring Configuration ** (don't change if you don't know what you're doing)

$querystring_start = '?';
$querystring_equal = '=';
$querystring_separator = '&';

// ** Configuration for b2mail.php ** (skip this if you don't intend to blog via email)

# mailserver settings
$mailserver_url = '';
$mailserver_login = '';
$mailserver_pass = '';
$mailserver_port = 110;

# by default posts will have this category
$default_category = 1;

# subject prefix
$subjectprefix = 'blog:';

# body terminator string (starting from this string, everything will be ignored, including this string)
$bodyterminator = "___";

# set this to 1 to run in test mode
$thisisforfunonly = 0;

### Special Configuration for some phone email services

# some mobile phone email services will send identical subject & content on the same line
# if you use such a service, set $use_phoneemail to 1, and indicate a separator string
# when you compose your message, you'll type your subject then the separator string
# then you type your login:password, then the separator, then content

$use_phoneemail = 0;
$phoneemail_separator = ':::';

/* Stop editing */

$HTTP_HOST=getenv('HTTP_HOST'); /* domain name */
$REMOTE_ADDR=getenv('REMOTE_ADDR'); /* visitor's IP */
$HTTP_USER_AGENT=getenv('HTTP_USER_AGENT'); /* visitor's browser */

$server = $dbhost;
$loginsql = $dbusername;
$passsql = $dbpassword;
$path = $pathserver;
$base = $dbname;

?>

and my b2login.php file looks like this

<?php

require('./b2config.php');
require_once($b2inc.'/b2template.functions.php');
require_once($b2inc.'/b2functions.php');
require_once($b2inc.'/b2vars.php');

if (!function_exists('add_magic_quotes')) {
function add_magic_quotes($array) {
foreach ($array as $k => $v) {
if (is_array($v)) {
$array[$k] = add_magic_quotes($v);
} else {
$array[$k] = addslashes($v);
}
}
return $array;
}
}

if (!get_magic_quotes_gpc()) {
$HTTP_GET_VARS = add_magic_quotes($HTTP_GET_VARS);
$HTTP_POST_VARS = add_magic_quotes($HTTP_POST_VARS);
$HTTP_COOKIE_VARS = add_magic_quotes($HTTP_COOKIE_VARS);
}

$b2varstoreset = array('action','mode','error','text','popupurl','popuptitle');

for ($i = 0; $i < count($b2varstoreset); $i = $i + 1) {
$b2var = $b2varstoreset[$i];
if (!isset($$b2var)) {
if (empty($HTTP_POST_VARS["$b2var"])) {
if (empty($HTTP_GET_VARS["$b2var"])) {
$$b2var = '';
} else {
$$b2var = $HTTP_GET_VARS["$b2var"];
}
} else {
$$b2var = $HTTP_POST_VARS["$b2var"];
}
}
}

/* connecting the db */
$connexion = @mysql_connect($server,$loginsql,$passsql) or die("Can't connect to the database<br>".mysql_error());
mysql_select_db("$base");

switch($action) {

case "logout":

setcookie("cafeloguser");
setcookie("cafelogpass");
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
header("Cache-Control: no-cache, must-revalidate"); // for HTTP/1.1
header("Pragma: no-cache");
if ($is_IIS) {
header("Refresh: 0;url=b2login.php");
} else {
header("Location: b2login.php");
}
exit();

break;

case "login":

if(!empty($HTTP_POST_VARS)) {
$log = $HTTP_POST_VARS["log"];
$pwd = $HTTP_POST_VARS["pwd"];
$redirect_to = $HTTP_POST_VARS["redirect_to"];
}

function login() {
global $server,$loginsql,$passsql,$base,$log,$pwd,$error,$user_ID;
global $tableusers, $pass_is_md5;
$user_login=$log;
$password=$pwd;
if (!$user_login) {
$error="<b>ERROR</b>: the login field is empty";
return false;
}

if (!$password) {
$error="<b>ERROR</b>: the password field is empty";
return false;
}

if (substr($password,0,4)=="md5:") {
$pass_is_md5 = 1;
$password = substr($password,4,strlen($password));
$query = " SELECT ID, user_login, user_pass FROM $tableusers WHERE user_login = '$user_login' AND MD5(user_pass) = '$password' ";
} else {
$pass_is_md5 = 0;
$query = " SELECT ID, user_login, user_pass FROM $tableusers WHERE user_login = '$user_login' AND user_pass = '$password' ";
}
$result = mysql_query($query) or die("Incorrect Login/Password request: ".mysql_error());

$lines = mysql_num_rows($result);
if ($lines<1) {
$error="<b>ERROR</b>: wrong login or password";
$pwd="";
return false;
} else {
$res=mysql_fetch_row($result);
$user_ID=$res[0];
if (($pass_is_md5==0 && $res[1]==$user_login && $res[2]==$password) || ($pass_is_md5==1 && $res[1]==$user_login && md5($res[2])==$password)) {
return true;
} else {
$error="<b>ERROR</b>: wrong login or password";
$pwd="";
return false;
}
}
}

if (!login()) {
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
header("Cache-Control: no-cache, must-revalidate");
header("Pragma: no-cache");
if ($is_IIS) {
header("Refresh: 0;url=b2login.php");
} else {
header("Location: b2login.php");
}
exit();
} else {
$user_login=$log;
$user_pass=$pwd;
setcookie("cafeloguser",$user_login,time()+31536000);
if ($pass_is_md5) {
setcookie("cafelogpass",$user_pass,time()+31536000);
} else {
setcookie("cafelogpass",md5($user_pass),time()+31536000);
}
if (empty($HTTP_COOKIE_VARS["cafelogblogid"])) {
setcookie("cafelogblogid","1",time()+31536000);
}
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
header("Cache-Control: no-cache, must-revalidate");
header("Pragma: no-cache");

switch($mode) {
case "bookmarklet":
$location="b2bookmarklet.php?text=$text&popupurl=$popupurl&popuptitle=$popuptitle";
break;
case "sidebar":
$location="sidebar.php?text=$text&popupurl=$popupurl&popuptitle=$popuptitle";
break;
case "profile":
$location="profile.php?text=$text&popupurl=$popupurl&popuptitle=$popuptitle";
break;
default:
$location="$redirect_to";
break;
}

if ($is_IIS) {
header("Refresh: 0;url=$location");
} else {
header("Location: $location");
}
}

break;

case "lostpassword":

?><html>
<head>
<title>b2 > Lost password ?</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<link rel="stylesheet" href="<?php echo $b2inc; ?>/b2.css" type="text/css">
<style type="text/css">

</style>
</head>
<body bgcolor="#ffffff" text="#000000" link="#cccccc" vlink="#cccccc" alink="#ff0000">

<table width="100%" height="100%">
<td align="center" valign="middle">

<table width="200" height="200" style="border: 1px solid #cccccc;" cellpadding="0" cellspacing="0">

<tr height="50">
<td height="50" width="50">
<a href="http://cafelog.com" target="_blank"><img src="b2-img/b2minilogo.png" border="0" alt="visit b2's homepage" /></a>
</td>
<td align="right" valign="top"> </td>
</tr>

<tr height="150"><td align="right" valign="bottom" height="150" colspan="2">

<p align="center" style="color: #b0b0b0">Type your login here and click OK. You will receive an email with your password.</p>
<?php
if ($error) echo "<div align=\"right\" style=\"padding:4px;\"><font color=\"#FF0000\">$error</font><br /> </div>";
?>

<form name="" action="b2login.php" method="post">
<input type="hidden" name="action" value="retrievepassword" />
<table width="100" style="background-color: #ffffff">
<tr><td align="right">login</td>
<td><input type="text" name="user_login" value="" size="8" /> </td></tr>
<tr><td> </td>
<td><input type="submit" name="Submit2" value="OK" class="search"> </td></tr>
</table>

</form>

</td>
</tr>
</table>
</td>
</tr>
</table>

</body>
</html>
<?php

break;

case "retrievepassword":

$user_login = $HTTP_POST_VARS["user_login"];
$user_data = get_userdatabylogin($user_login);
$user_email = $user_data["user_email"];
$user_pass = $user_data["user_pass"];

$message = "Login: $user_login\r\n";
$message .= "Password: $user_pass\r\n";

$m = mail($user_email, "your weblog's login/password", $message);

if ($m == false) {
echo "<p>The email could not be sent.<br />\n";
echo "Possible reason: your host may have disabled the mail() function...</p>";
die();
} else {
echo "<p>The email was sent successfully to $user_login's email address.<br />\n";
echo "<a href=\"b2login.php\">Click here to login !</a></p>";
die();
}

break;

default:

if((!empty($HTTP_COOKIE_VARS["cafeloguser"])) && (!empty($HTTP_COOKIE_VARS["cafelogpass"]))) {
$user_login = $HTTP_COOKIE_VARS["cafeloguser"];
$user_pass_md5 = $HTTP_COOKIE_VARS["cafelogpass"];
}

function checklogin() {
global $server,$loginsql,$passsql,$base;
global $user_login,$user_pass_md5,$user_ID;

$userdata = get_userdatabylogin($user_login);

if ($user_pass_md5 != md5($userdata["user_pass"])) {
return false;
} else {
return true;
}
}

if ( !(checklogin()) ) {
if (!empty($HTTP_COOKIE_VARS["cafeloguser"])) {
$error="Error: wrong login/password"; //, or your session has expired.";
}
} else {
header("Expires: Wed, 5 Jun 1979 23:41:00 GMT"); /* private joke: this is my birthdate - though officially it's on the 6th, since I'm GMT+1 Smile

*/
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT"); /* different all the time */
header("Cache-Control: no-cache, must-revalidate"); /* to cope with HTTP/1.1 */
header("Pragma: no-cache");
header("Location: b2edit.php");
exit();
}
?><html>
<head>
<title>b2 > Login form</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<link rel="stylesheet" href="<?php echo $b2inc; ?>/b2.css" type="text/css">
<style type="text/css">

</style>
</head>
<body bgcolor="#ffffff" text="#000000" link="#cccccc" vlink="#cccccc" alink="#ff0000">

<table width="100%" height="100%">
<td align="center" valign="middle">

<table width="200" height="200" style="border: 1px solid #cccccc;" cellpadding="0" cellspacing="0">

<tr height="50">
<td height="50" width="50">
<a href="http://cafelog.com" target="_blank"><img src="b2-img/b2minilogo.png" border="0" alt="visit b2's homepage" /></a>
</td>
<td align="right" valign="top">
<a href="b2register.php" class="b2menutop">register ?</a><br />
<a href="b2login.php?action=lostpassword" class="b2menutop">lost your password ?</a>
</td>
</tr>

<tr height="150"><td align="right" valign="bottom" height="150" colspan="2">

<?php
if ($error) echo "<div align=\"right\" style=\"padding:4px;\"><font color=\"#FF0000\">$error</font><br /> </div>";
?>

<form name="" action="b2login.php" method="post">
<?php if ($mode=="bookmarklet") { ?>
<input type="hidden" name="mode" value="<?php echo $mode ?>" />
<input type="hidden" name="text" value="<?php echo $text ?>" />
<input type="hidden" name="popupurl" value="<?php echo $popupurl ?>" />
<input type="hidden" name="popuptitle" value="<?php echo $popuptitle ?>" />
<?php } ?>
<input type="hidden" name="redirect_to" value="b2edit.php" />
<input type="hidden" name="action" value="login" />
<table width="100" style="background-color: #ffffff">
<tr><td align="right">login</td>
<td><input type="text" name="log" value="" size="8" />   </td></tr>
<tr><td align="right">password</td>
<td><input type="password" name="pwd" value="" size="8" />   </td></tr>
<tr><td> </td>
<td><input type="submit" name="Submit2" value="OK" class="search">   </td></tr>
</table>

</form>

</td>
</tr>
</table>
</td>
</tr>
</table>

</body>
</html>
<?php

break;
}

?>

Sigg3 · Joined: 03 Jul 2003 Posts: 294 Location: Oslo, Norway

I'll look into it..

... uhm.. and if that really is your db pwd, CHANGE IT NOW! Geez.. It's like opening your wallet containing thousand dollar bills to passerbys.
_________________
Sigg3 dot net - because you're worth it!

stevem · Joined: 15 Mar 2003 Posts: 143