Solved

PHP 5 Installation Problems-- Security Alert! even when cgi.force_redirect = 0

Posted on 2004-08-08
7
1,284 Views
Last Modified: 2013-12-13
Hi,

Trying to Install PHP 5 on Windows Server 2003 IIS 6. I've used the latest PHP5 installer and chosen all the correct options. PHP is installed to e:/PHP.

I receive the following:
Security Alert! The PHP CGI cannot be accessed directly.
This PHP CGI binary was compiled with force-cgi-redirect enabled. This means that a page will only be served up if the REDIRECT_STATUS CGI variable is set, e.g. via an Apache Action directive.

I've read all the posts on this which suggest that this is caused by an incorrect cgi.force_redirect = setting. I can confirm that c:/windows/php.ini has cgi.force_redirect = 0 set and machine has been rebooted. I tried ISAPI installation as well but did not get any joy whatsoever so have reverted to cgi. I even tried reinstalling PHP from the installer, but continue to receive the same error.

IIS shows, under app configuration, .php has exec path e:\PHP\php-cgi.exe and confirms php is added as a web service extension set to allowed with the same path.

Any thoughts?
0
Comment
Question by:jbreg
  • 3
  • 3
7 Comments
 
LVL 27

Expert Comment

by:Diablo84
ID: 11746605
This is an issue that i have seen come up a lot with IIS however usually the problem is fixed with cgi.force_redirect = 0

My advice is switch to Apache, a more reliable web server in my opinion. http://httpd.apache.org/download.cgi
I recommend you get version 1.3.
0
 

Author Comment

by:jbreg
ID: 11747439
Unfortunately that is simply not an option--in addition to the php requirement we have a bespoke web application tailored to IIS. There must be a solution (other than switching to PHP4) as I have another server in the same rack with the same OS with PHP4.x that works fine; everything virtually identical...
0
 
LVL 40

Expert Comment

by:RQuadling
ID: 11751555
You could try using the ZendWinEnabler?
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 

Author Comment

by:jbreg
ID: 11751694
This *should* be resolvable without resorting to third-party software, no?
0
 
LVL 40

Accepted Solution

by:
RQuadling earned 500 total points
ID: 11751798
Maybe!

But I'd hardly call Zend tools third party. Why are you not using the ISAPI module? There are a lot of benefits.

Least of all databse connection caching. Avoids (nearly) all those complicated licensing modules you need for a MS SQL server.
0
 

Author Comment

by:jbreg
ID: 11751820
i gave ISAPI a shot, following exactly the instructions on another ee posting, but couldn't even get anything to work out of that. Possibly because the instructions dealt with PHP 4, but I don't know--are there any really good step by steps for ISAPI on W2003 server with PHP 5?
0
 
LVL 40

Expert Comment

by:RQuadling
ID: 11752853
Should not be any different.

I use Sambar Server and PHP5.

Takes less than 5 minutes to get them both installed and running. Apache takes a little longer (about 8 minutes).

I've never managed to get IIS to work.

If you have a chance, try sambar (www.sambar.com) or apache.

Sambar is a VERY small server. Nothing in Windows\system32 or the registry other than the uninstall links for Add/Remove programs.

Richard
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Generating table dynamically is the most common issue faced by php developers.... So it seems there is a need of an article that explains the basic concept of generating tables dynamically. It just requires a basic knowledge of html and little maths…
Things That Drive Us Nuts Have you noticed the use of the reCaptcha feature at EE and other web sites?  It wants you to read and retype something that looks like this.Insanity!  It's not EE's fault - that's just the way reCaptcha works.  But it is …
The viewer will learn how to count occurrences of each item in an array.
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now