No longer works with latest Concrete Update

Permalink Browser Info Environment
After I applied the latest patch security patch for Concrete (5.6.3.5), pages with force SSL stopped working and now I get

The page isn’t redirecting properly

Firefox has detected that the server is redirecting the request for this address in a way that will never complete.

This problem can sometimes be caused by disabling or refusing to accept cookies.

-----
If I roll back the update it works fine - but then obviously exposed to other security problems.

Please advise.

Type: Discussion
Status: New
plschneide
View Replies:

concrete5 Environment Information

# concrete5 Version
5.6.3.5

# concrete5 Packages
Advertisement (1.7.7), Are You A Human (1.0.1), Blog (3.1.1), Dynamic Iframe (1.61), Easy tabs (1.7.2), Encrypted E-Mail Address (1.1.3.1), Example FAQ (1.2.0), Expand / Collapse (1.2.6), Extended Form (2.7.2), Extended Google Map (3.3.4), Force SSL (2.6), Get Directions (1.0b), Iframe (1.0), Link System (1.17), Migration Tool (0.6.1), PHP block by ND (1.0), Popup (1.34), Randomizer (1.3.1), Tables (2.3.2), Ukao Menu (1.5.2), YouTube Background (2.0), YouTube Pro (1.3.9).

# concrete5 Overrides
elements/header_required.old.php, elements/header_required.bak, helpers/tiny.old.php, helpers/tiny.php, helpers/miser_support, helpers/miser.php, jobs/cgi-bin, js/merge.js, css/merge.css, libraries/view.txt, themes/AirCareColorado, themes/c5touch

# concrete5 Cache Settings
Block Cache - On
Overrides Cache - On
Full Page Caching - On - If blocks on the particular page allow it.
Full Page Cache Lifetime - Every 6 hours (default setting).

# Server Software
Apache/2.4.23 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4

# Server API
cgi-fcgi

# PHP Version
5.5.38

# PHP Extensions
bcmath, calendar, cgi-fcgi, Core, ctype, curl, date, dom, ereg, exif, fileinfo, filter, ftp, gd, hash, iconv, imap, json, libxml, mbstring, mcrypt, mysql, mysqli, mysqlnd, openssl, pcre, PDO, pdo_mysql, pdo_sqlite, Phar, posix, pspell, Reflection, session, SimpleXML, sockets, SPL, sqlite3, standard, tokenizer, xml, xmlreader, xmlwriter, zip, zlib.

# PHP Settings
max_execution_time - 30
log_errors_max_len - 1024
max_file_uploads - 20
max_input_nesting_level - 64
max_input_time - 60
max_input_vars - 1000
memory_limit - 128M
post_max_size - 120M
sql.safe_mode - Off
upload_max_filesize - 115M
mysql.max_links - Unlimited
mysql.max_persistent - Unlimited
mysqli.max_links - Unlimited
mysqli.max_persistent - Unlimited
pcre.backtrack_limit - 1000000
pcre.recursion_limit - 100000
session.cache_limiter - nocache
session.gc_maxlifetime - 7200

Browser User-Agent String

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:54.0) Gecko/20100101 Firefox/54.0

Hide Post Content

This will replace the post content with the message: "Content has been removed by an Administrator"

Hide Content

Request Refund

Click below to request a refund for License #1839004. Currently unassigned.
Created on Mar 27 2012 at 10:33 pm
.