[Plugin: Dynamic Headers] URL file-access is disabled in the server configuration in... (6 posts)

  1. JHouse
    Posted 6 years ago #


    I get this error when I try and view the page which is utilizing a Flash file:

    Warning: getimagesize() [function.getimagesize]: URL file-access is disabled in the server configuration in /home/xxxxxx/public_html/wp-content/plugins/dynamic-headers/custom-header.php on line 375

    Warning: getimagesize(http://www.xxxxxx.com/wp-content/header-images/GG_Flash_Header_v3.swf) [function.getimagesize]: failed to open stream: no suitable wrapper could be found in /home/xxxxxx/public_html/wp-content/plugins/dynamic-headers/custom-header.php on line 375

    I'm utilizing the latest plugin and install.

    Any thoughts?


  2. sergibosch
    Posted 6 years ago #

    i'm getting the exact same error. it works locally. my live build is a duplicate of my local build. what gives? (my local build has Kimili flash embed plugin...is that possibly assisting the Dynamic Headers plugin to work? i would rather not install it on my live build because i'm not using it...)



  3. sergibosch
    Posted 6 years ago #

    part II:

    Nicasio Design suggests that we contact our server and ask them to do the following:
    "you will need to speak with your server admin or hosting company and get them to enable URL file access of your server."

    here is the url where they explain that: http://nicasiodesign.com/blog/wordpress-plugins/our-first-public-wordpress-plugin-dynamic-headers/

    unfortunatelly, my server host (media temple) recommends we don't do that or we are opening ourselves up to hacks. here is what they say regarding this matter:


    let's see what Nicasio has to say...

  4. sergibosch
    Posted 6 years ago #

    great news! i heard from the plugin developers at Nicasio.

    they are rectifying this issue.

    in their own words:

    "we are aware of the issue and the getimagesize function is no longer being used on the latest version of Dynamic Headers which is to be released either late this week or next week."

  5. dcannon1
    Posted 6 years ago #

    Thanks for the feedback guys. Indeed the latest version (hopefully due out next week) addresses this issue. Many hosting companies allow url file access and the chances of exploitation from url file access are small and usually involve improperly coded php functions. That being said, we don't want to create any sort of security vulnerabilities for our plugin users and also want to ensure maximum compatibility across different hosting platforms which is why this change is one of the more important updates for Dynamic Headers 3.5

  6. sergibosch
    Posted 6 years ago #

    hi, dcannon,

    i no longer get the error message. so, it looks like your update corrected the issue. thanks!

Topic Closed

This topic has been closed to new replies.

About this Topic