Thread

I always try to keep clients away from Godaddy shared servers, but sometimes it’s just not possible. So, this morning I tried moving an EE site from dev to production on their Godaddy shared hosting.

As of now, /system/codeigniter/system/core/Security.php is not allowed on Godaddy. It is marked as dangerous Malware and when you try to upload it your account is flagged as trying to install Malware.

I’m just baffled. I thought maybe my version had been compromised so I downloaded the latest EE and uploaded security.php file from there and it was deleted and rejected right away. Why is this file being marked as Malware? Is there any hope to getting this setup to work on Godaddy or is this just a dead end issue?

It’s just the Godaddy way. I just got off the phone with them regarding an SSL cert. It turns out that you can’t order an SSL cert for a subdomain unless you pay extra. All my customer needs is a basic cert for a single subdomain, but because it’s not the primary domain it will cost over $50 more. What really sucks is that I had this customer on decent hosting, but he moved to Godaddy because he forgot to pay his bill with the other host, and then got mad when the host shut his website down. Duh!

The best solution is that when a customer mentions they have Godaddy hosting to tell them that it won’t work for what they need. They trust you, and in general they know nothing about hosting, so just switch them to another host and breathe again.

I take it you’ve tried renaming the file, then uploading it and renaming it back?

Or, is the contents of the file that are flagging it do you think?

Today I had to install Wordpress in a subdirectory of a client’s hosting account on Godaddy. I normally use an installer script that I wrote, but as expected it didn’t work on Godaddy. So then I just uploaded WP via FTP, which is slow. All of the Wordpress files shows “malware detected” in the FTP log. They were successfully uploaded, so I’m not sure what was going on. Godaddy is shit hosting.

@WinkingFrog:  This must be new, since I uploaded a directory with Security.php a while back, and it was never deleted.

Now, when I tried to duplicate that folder, Security.php is automatically deleted.  I thought it was just me, and I tried it multiple times, and even renamed the file, and it still didn’t work.

I figured out that GoDaddy must be reading the contents of the files, since I stripped away ALL of the comments in the Security.php file, and reuploaded it… and it worked!! To my surprise (well, not really) and dismay.

Anyway, hope this will save some people the hours of misery I had in trying to find a solution.

Definitely a bummer that Godaddy is such a pain.  What I ended up having to do is go through the cpanel, create a new file through there called Security.php in the ‘Core’ folder and copy the contents into that file through Cpanel.  Worked for me. 

Cheers!