Hi,
Problem description:
After activating the jSecure plugin, the administrator page was still accessible the normal way.
Using jSecure 1.0.9 on Joomla 1.5.15.
Reason:
The server variable SCRIPT_NAME contains the path "/cgi-bin/php".
So the plugin was parsing the wrong path for the correct jSecure key.....
Solution:
I changed the statement in the jsecure.php file and it solved the problem for me
.
// Original statement
// if((preg_match("/administrator\/*index.?\.php$/i", $_SERVER['SCRIPT_NAME']))) {
// New statement
if((preg_match("/administrator\/*index.?\.php$/i", $_SERVER['PHP_SELF']))) {
Not sure if it can be fixed in a different way, but I thought it was worth sharing.
Cheers,
Sander - NL
