"Evil Code" error?

David Miller justdave at syndicomm.com
Wed Jul 9 00:51:12 UTC 2003


On 7/8/2003 3:32 PM -0700, Jon Wilmoth wrote:

> We've been experiencing problems with our Bugzilla server (disk space
> and other) and finally had to reboot the machine.  I'm now seeing the
> following message in the apache error_log:
>
> Evil code attempted to write 'insert into logincookies (userid,ipaddr)
> values (131, '204.238.150.136')' to the shadow database at
> /usr/local/lib/perl5/5.6.1/CGI
> /Carp.pm line 301.
>
> This sounds bad...how concerned should I be?

Um, basically something broke if you got that.  Hard to be more specific.
That error is actually generated by Bugzilla though.  It's in the SendSQL
sub, which in 2.16.3 is in globals.pl.  The error message is generated if
the current database is the shadow database and something tries to do a
database write (which is only allowed on the primary database, not the
shadow).  Most of the shadow database concept went away in 2.17.x in favor
of database replication.
-- 
Dave Miller      Project Leader, Bugzilla Bug Tracking System
http://www.justdave.net/             http://www.bugzilla.org/



More information about the developers mailing list