I see you just pushed a php upgrade which was due to a CVE for security reasons.
Now there is a problem. I have built a site which was using sessions. Before the update everything was fine. After the update I simply couldn't log in ! I cheched the logs and found nothing. Then a customer contacted me who could see session errors (permission denied) and then I found out there was a session issue now.
I checked and found out a parallels kb which describes that you change the folder of session save in the control panel and you go and create under the private folder a folder for sessions which needs to have as user permissions user:psacln.
http://kb.parallels.com/en/7056
I still don't know how many have been impacted by this. But it is very strange. Both sites were working just fine just before the update !
This makes me believe the problem was caused by the php update.
Does anybody else confirm that ? Most cms wll probably not be affected since they store their sessions in database. However there are php applications that save sessions the "old way".
I really need an update from the ASL guys.
the errors were the following
Code: Select all
[warn] [client ] mod_fcgid: stderr: PHP Warning: session_start() [<a href='function.session-start'>function.session-start</a>]: open(/var/lib/php/session/sess_hgv6ibrkf72sdfgdger, O_RDWR) failed: Permission denied (13) in /var/www/vhosts/blahhh.com/httpdocs/main.php on line 1, referer: http://www.blahhh.com/login.php
----------------------------------------------
[warn] [client ] mod_fcgid: stderr: PHP Warning: Unknown: open(/var/lib/php/session/sess_hgv6ibrkf72s6lgdfghreg, O_RDWR) failed: Permission denied (13) in Unknown on line 0, referer: http://blahhh.com/login.php
----------------------------------------------
[warn] [client ] mod_fcgid: stderr: PHP Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct (/var/lib/php/session) in Unknown on line 0, referer: http://blahhh.com/login.php
Regards