Koozali.org: home of the SME Server
Legacy Forums => General Discussion (Legacy) => Topic started by: Ted on May 29, 2005, 06:31:36 AM
-
Up until last night my little server was running just fine. SME 6.0 with Clam AV and SpamAssassin. Handled web pages for both my wifes domain and mine (www.aviondreams.com and www.shadowsfall.org). Well last night I got a wild hair and tried to install phpbb on it. Today I noticed that I could no longer browse to my "server-manager" nor can I access webmail. Our requlare e-mail comes through so this does not qualify as an emergency but the server is broken.
The instructions I followed are here
http://no.longer.valid/phpwiki/index.php/How%20to%20set%20up%20phpBB%202.0.0%20on%20SME%20Server%205.0%20or%205.1.2
I realize that this is a self-inflected injury but any advice as to what I broke and how to fix it would be apreaceated.
Thanks
Ted
ted@shadowsfall.org
Molon Labe
-
Ted
> The instructions I followed are here
> http://no.longer.valid/phpwiki/index.php/How%20to%20set%20up%20phpBB%202.0.0%20on%20SME%20Server%205.0%20or%205.1.2
That works OK on sme 6 for me.
Did it install OK and can you run phpBB forums now ?
phpBB-2.0.4.tar.gz is an old insecure version of phpBB though (with some MAJOR security issues), last time I looked it was up to
phpBB-2.0.15.tar.gz
Go to the phpBB website and download the latest and install it. Follow instructions on the web site re how to upgrade.
You should also upgrade php to at least 4.3.10 as it has a MAJOR security issue in it, search the forums for a howto. There is also a 4.3.11 released.
If you don't do the above upgrades IMMEDIATELY your whole server will get hacked very quickly. I'm speaking from experience.
-
No forums, no web site and no webmail. Everything seems to work I just have no ability to browse to the server-manager.
I'll look for a php upgrade on contribs and see if I can find it.
Ted
Molon Labe
-
Is there a How to on upgrading php? And for that matter is there a simple way to find out which verson my server is running?
Ted
-
Ted
to check php version
rpm -q php
php update scripts
http://mirror.contribs.org/smeserver/contribs/index.php?subdir=ergozd%2Fscripts&sortby=name
> No forums, no web site and no webmail
/etc/init.d/squid restart
> ...no ability to browse to the server-manager.
/etc/init.d/httpd-admin restart
-
Ted
> No forums, no web site and no webmail. Everything seems to work I just have no ability to browse to the server-manager.
Just checking that HOWTO, are you sure you ran the apache restart
Then rebuild httpd.conf and restart apache:
[root@e-smith httpd.conf]# /sbin/e-smith/expand-template /etc/httpd/conf/httpd.conf
[root@e-smith httpd.conf]# /etc/rc.d/rc7.d/S85httpd-e-smith restart
I'd do
/etc/init.d/httpd-e-smith restart
just to be sure
Let us know how you go
-
Re upgrading phpBB to 2.0.15, (which you should do for security reasons) the instructions are at
www.phpBB.com, but here is an abbreviated subset that I use.
Update instructions for phpBB forum software
(Installed in an ibay)
Make a backup copy of the phpBB ibay
copy config.php to a safe location eg /tmp
Unpack the zip archive
copy all the files in the archive to /phpBB/html ibay
overwrite existing files with the same name
copy config.php back to original location
do
chmod o+r config.php
chmod o+w config.php
In a browser run
http://192.168.x.x/phpBB/install/update_to_latest.php(for version 2.0.15)
delete or remove both the
/install
and
/contrib
folders
do
chmod 644 config.php
consult the install file in
/docs/install.html
-
Thanks for all the help so far. Here are the results
[root@darkover root]# rpm -q php
php-4.1.2-7.3.6es1
/etc/init.d/squid restart
Stopped and restarted squid. Did not help.
/etc/init.d/httpd-admin restart
Did not help.
[root@darkover root]# /etc/init.d/httpd-e-smith restart
Shutting down http: [ FAILED ]
Starting httpd: Syntax error on line 1224 of /etc/httpd/conf/httpd.conf:
Alias not allowed here
[ FAILED ]
Something seems to be wrong in my /etc/../httpd.conf file
Any why to find out which line is #1224 ?
Here it is. (I hate doing a dump like this)
::::::::::::::::::::
[root@darkover conf]# cat httpd.conf |more
#------------------------------------------------------------
# DO NOT MODIFY THIS FILE! It is updated automatically by the
# SME Server software. Instead, modify the source template in
# an /etc/e-smith/templates-custom directory. For more
# information, see http://www.e-smith.org/custom/
#
# copyright (C) 1999-2003 Mitel Networks Corporation
#------------------------------------------------------------
AccessConfig /dev/null
# BindAddress: You can support virtual hosts with this option. This option
# is used to tell the server which IP address to listen to. It can either
# contain "*", an IP address, or a fully qualified Internet domain name.
# See also the VirtualHost directive.
#BindAddress *
# HostnameLookups: Log the names of clients or just their IP numbers
# e.g. www.apache.org (on) or 204.62.129.132 (off)
# The default is off because it'd be overall better for the net if people
# had to knowingly turn this feature on.
HostnameLookups off
# Port: The port the standalone listens to. For ports < 1023, you will
# need httpd to be run as root initially.
Port 80
ResourceConfig /dev/null
# ServerAdmin: Your address, where problems with the server should be
# e-mailed.
ServerAdmin admin@shadowsfall.org
# ServerRoot: The directory the server's config, error, and log files
# are kept in.
# NOTE! If you intend to place this on a NFS (or otherwise network)
# mounted filesystem then please read the LockFile documentation,
--More--
# you will save yourself a lot of trouble.
ServerRoot /etc/httpd
ServerTokens ProductOnly
# ServerType is either inetd, or standalone.
ServerType standalone
# If you are running from inetd, go to "ServerAdmin".
# If you wish httpd to run as a different user or group, you must run
# httpd as root initially and it will switch.
# User/Group: The name (or #number) of the user/group to run httpd as.
# On SCO (ODT 3) use User nouser and Group nogroup
# On HPUX you may not be able to use shared memory as nobody, and the
# suggested workaround is to create a user www and use that user.
# NOTE that some kernels refuse to setgid(Group) or semctl(IPC_SET)
# when the value of (unsigned)Group is above 60000;
# don't use Group nobody on these systems!
User www
Group www
# ErrorLog: The location of the error log file. If this does not start
# with /, ServerRoot is prepended to it.
ErrorLog /var/log/httpd/error_log.20050529011202
# LogLevel: Control the number of messages logged to the error_log.
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
LogLevel warn
# Dynamic Shared Object (DSO) Support
#
# To be able to use the functionality of a module which was built as a DSO you
# have to place corresponding LoadModule' lines at this location so the
# directives contained in it are actually available _before_ they are used.
# Please read the file README.DSO in the Apache 1.3 distribution for more
# details about the DSO mechanism and run httpd -l' for the list of already
# built-in (statically linked and thus always available) modules in your httpd
# built-in (statically linked and thus always available) modules in your httpd
# binary.
#
# Example:
# LoadModule foo_module libexec/mod_foo.so
#
# Documentation for modules is in "/home/httpd/manual/mod" in HTML format.
#LoadModule mmap_static_module modules/mod_mmap_static.so
LoadModule env_module modules/mod_env.so
LoadModule config_log_module modules/mod_log_config.so
LoadModule agent_log_module modules/mod_log_agent.so
LoadModule referer_log_module modules/mod_log_referer.so
#LoadModule mime_magic_module modules/mod_mime_magic.so
LoadModule mime_module modules/mod_mime.so
LoadModule negotiation_module modules/mod_negotiation.so
LoadModule status_module modules/mod_status.so
LoadModule info_module modules/mod_info.so
LoadModule includes_module modules/mod_include.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule dir_module modules/mod_dir.so
LoadModule cgi_module modules/mod_cgi.so
LoadModule asis_module modules/mod_asis.so
LoadModule asis_module modules/mod_asis.so
LoadModule imap_module modules/mod_imap.so
LoadModule action_module modules/mod_actions.so
#LoadModule speling_module modules/mod_speling.so
LoadModule userdir_module modules/mod_userdir.so
LoadModule proxy_module modules/libproxy.so
LoadModule alias_module modules/mod_alias.so
LoadModule rewrite_module modules/mod_rewrite.so
LoadModule access_module modules/mod_access.so
LoadModule auth_module modules/mod_auth.so
LoadModule anon_auth_module modules/mod_auth_anon.so
#LoadModule dbm_auth_module modules/mod_auth_dbm.so
LoadModule db_auth_module modules/mod_auth_db.so
LoadModule digest_module modules/mod_digest.so
#LoadModule cern_meta_module modules/mod_cern_meta.so
LoadModule expires_module modules/mod_expires.so
LoadModule headers_module modules/mod_headers.so
LoadModule usertrack_module modules/mod_usertrack.so
#LoadModule example_module modules/mod_example.so
#LoadModule unique_id_module modules/mod_unique_id.so
LoadModule setenvif_module modules/mod_setenvif.so
# Extra Modules
#LoadModule php_module modules/mod_php.so
#LoadModule php3_module modules/libphp3.so
#LoadModule perl_module modules/libperl.so
LoadModule external_auth_module modules/mod_auth_external.so
LoadModule php4_module /usr/lib/apache/libphp4.so
LoadModule ssl_module /usr/lib/apache/libssl.so
# Reconstruction of the complete module list from all available modules
# (static and shared ones) to achieve correct module execution order.
# [WHENEVER YOU CHANGE THE LOADMODULE SECTION ABOVE UPDATE THIS, TOO]
ClearModuleList
#AddModule mod_mmap_static.c
AddModule mod_env.c
AddModule mod_log_config.c
AddModule mod_log_agent.c
AddModule mod_log_referer.c
#AddModule mod_mime_magic.c
AddModule mod_mime.c
AddModule mod_negotiation.c
AddModule mod_status.c
AddModule mod_info.c
AddModule mod_include.c
AddModule mod_autoindex.c
AddModule mod_dir.c
AddModule mod_cgi.c
AddModule mod_asis.c
AddModule mod_imap.c
AddModule mod_actions.c
#AddModule mod_speling.c
AddModule mod_userdir.c
AddModule mod_proxy.c
AddModule mod_alias.c
AddModule mod_rewrite.c
AddModule mod_access.c
AddModule mod_auth.c
AddModule mod_auth_anon.c
#AddModule mod_auth_dbm.c
AddModule mod_auth_db.c
AddModule mod_auth_external.c
AddModule mod_digest.c
#AddModule mod_cern_meta.c
AddModule mod_expires.c
AddModule mod_headers.c
AddModule mod_usertrack.c
#AddModule mod_example.c
#AddModule mod_unique_id.c
AddModule mod_so.c
AddModule mod_setenvif.c
# Extra Modules
#AddModule mod_php.c
#AddModule mod_php3.c
#AddModule mod_perl.c
AddModule mod_php4.c
AddModule mod_ssl.c
AddExternalAuth pwauth /usr/lib/apache/pwauth
SetExternalAuthMethod pwauth pipe
Listen 0.0.0.0:80
##########################################################
## SSL Global Context Configuration
##
## All SSL configuration in this context applies both to
## the main server and all SSL-enabled virtual hosts
## (unless overridden by virtual hosts)
##
<IfModule mod_ssl.c>
Listen 0.0.0.0:443
SSLEngine off
SSLCertificateFile /home/e-smith/ssl.crt/darkover.shadowsfall.org.crt
SSLCertificateKeyFile /home/e-smith/ssl.key/darkover.shadowsfall.org.key
SSLPassPhraseDialog builtin
SSLSessionCache dbm:state/ssl_scache
SSLSessionCacheTimeout 300
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 fo
rce-response-1.0
SSLMutex file:state/ssl_mutex
SSLRandomSeed startup file:/dev/urandom 512
SSLRandomSeed connect builtin
SSLLog /var/log/httpd/ssl_engine_log.20050529011202
SSLLogLevel info
SSLProtocol all
</IfModule>
#
# END OF SSL GLOBAL CONTEXT CONFIGURATION
#############################################
# The LockFile directive sets the path to the lockfile used when Apache
# is compiled with either USE_FCNTL_SERIALIZED_ACCEPT or
# USE_FLOCK_SERIALIZED_ACCEPT. This directive should normally be left at
# its default value. The main reason for changing it is if the logs
# directory is NFS mounted, since the lockfile MUST BE STORED ON A LOCAL
# DISK. The PID of the main server process is automatically appended to
# the filename.
#
#LockFile /var/lock/httpd.lock
# PidFile: The file the server should log its pid to
PidFile /var/run/httpd.pid
# ScoreBoardFile: File used to store internal server process information.
# Not all architectures require this. But if yours does (you'll know because
# this file is created when you run Apache) then you *must* ensure that
# no two invocations of Apache share the same scoreboard file.
ScoreBoardFile /var/run/httpd.scoreboard
# CacheNegotiatedDocs: By default, Apache sends Pragma: no-cache with each
# document that was negotiated on the basis of content. This asks proxy
# servers not to cache the document. Uncommenting the following line disables
# this behavior, and proxies will be allowed to cache the documents.
#CacheNegotiatedDocs
# UseCanonicalName: (new for 1.3) With this setting turned on, whenever
# Apache needs to construct a self-referencing URL (a url that refers back
# to the server the response is coming from) it will use ServerName and
# Port to form a "canonical" name. With this setting off, Apache will
# use the hostname:port that the client supplied, when possible. This
# also affects SERVER_NAME and SERVER_PORT in CGIs.
UseCanonicalName off
# The following directives define some format nicknames for use with
# a CustomLog directive (see below).
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combine
d
LogFormat "%h %l %u %t \"%r\" %>s %b" common
LogFormat "%v %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" comb
ined_virtual
LogFormat "%{Referer}i -> %U" referer
LogFormat "%{User-agent}i" agent
# The location of the access logfile (Common Logfile Format).
# If this does not start with /, ServerRoot is prepended to it.
# CustomLog logs/access_log common
CustomLog /var/log/httpd/access_log.20050529011202 combined_virtual
# If you would like to have an agent and referer logfile uncomment the
# following directives.
#CustomLog logs/referer_log referer
#CustomLog logs/agent_log agent
# If you prefer a single logfile with access, agent and referer information
# (Combined Logfile Format) you can use the following directive.
#CustomLog logs/access_log combined
# KeepAlive: Whether or not to allow persistent connections (more than
# one request per connection). Set to "Off" to deactivate.
KeepAlive On
# MaxKeepAliveRequests: The maximum number of requests to allow
# during a persistent connection. Set to 0 to allow an unlimited amount.
# We reccomend you leave this number high, for maximum performance.
MaxKeepAliveRequests 100
# KeepAliveTimeout: Number of seconds to wait for the next request
KeepAliveTimeout 15
# Limit on total number of servers running, i.e., limit on the number
# of clients who can simultaneously connect --- if this limit is ever
# reached, clients will be LOCKED OUT, so it should NOT BE SET TOO LOW.
# It is intended mainly as a brake to keep a runaway server from taking
# Unix with it as it spirals down...
MaxClients 150
# MaxRequestsPerChild: the number of requests each child process is
# allowed to process before the child dies.
# The child will exit so as to avoid problems after prolonged use when
# Apache (and maybe the libraries it uses) leak. On most systems, this
# isn't really needed, but a few (such as Solaris) do have notable leaks
# in the libraries.
MaxRequestsPerChild 100
# Proxy Server directives. Uncomment the following line to
# enable the proxy server:
#ProxyRequests On
# ServerName allows you to set a host name which is sent back to clients for
# your server if it's different than the one the program would get (i.e. use
# "www" instead of the host's real name).
#
# Note: You cannot just invent host names and hope they work. The name you
# define here must be a valid DNS name for your host. If you don't understand
# this, ask your network administrator.
ServerName www.shadowsfall.org
# Server-pool size regulation. Rather than making you guess how many
# server processes you need, Apache dynamically adapts to the load it
# sees --- that is, it tries to maintain enough server processes to
# handle the current load, plus a few spare servers to handle transient
# load spikes (e.g., multiple simultaneous requests from a single
# Netscape browser).
# It does this by periodically checking how many servers are waiting
# for a request. If there are fewer than MinSpareServers, it creates
# a new spare. If there are more than MaxSpareServers, some of the
# spares die off. These values are probably OK for most sites ---
MinSpareServers 8
MaxSpareServers 20
# Number of servers to start --- should be a reasonable ballpark figure.
StartServers 10
# Timeout: The number of seconds before receives and sends time out
Timeout 300
# DefaultIcon is which icon to show for files which do not have an icon
# explicitly set.
DefaultIcon /icons/unknown.gif
# DirectoryIndex: Name of the file or files to use as a pre-written HTML
# directory index. Separate multiple entries with spaces.
DirectoryIndex index.htm index.html index.shtml index.cgi
DirectoryIndex index.htm index.html index.shtml index.cgi index.php index.php3 i
ndex.phtml
# DocumentRoot: The directory out of which you will serve your
# documents. By default, all requests are taken from this directory, but
# symbolic links and aliases may be used to point to other locations.
DocumentRoot /home/e-smith/files/ibays/Primary/html
# FancyIndexing is whether you want fancy directory indexing or standard
FancyIndexing on
# UserDir: The name of the directory which is appended onto a user's home
# directory if a ~user request is recieved.
# UserDir public_html
# AddIcon tells the server which icon to show for different files or filename
# extensions
AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
# AccessFileName: The name of the file to look for in each directory
# for access control information.
AccessFileName .htaccess
# AddDescription allows you to place a short description after a file in
# server-generated indexes.
# Format: AddDescription "description" filename
AddIconByType (TXT,/icons/text.gif) text/*
AddIconByType (IMG,/icons/image2.gif) image/*
AddIconByType (SND,/icons/sound2.gif) audio/*
AddIconByType (VID,/icons/movie.gif) video/*
# DefaultType is the default MIME type for documents which the server
# cannot find the type of from filename extensions.
DefaultType text/plain
# IndexIgnore is a set of filenames which directory indexing should ignore
# Format: IndexIgnore name1 name2...
IndexIgnore .??* *~ *# HEADER* README* RCS
# TypesConfig describes where the mime.types file (or equivalent) is
# to be found.
TypesConfig /etc/mime.types
# AddEncoding allows you to have certain browsers (Mosaic/X 2.1+) uncompress
# information on the fly. Note: Not all browsers support this.
AddEncoding x-compress Z
AddEncoding x-gzip gz
AddIcon /icons/binary.gif .bin .exe
AddIcon /icons/binhex.gif .hqx
AddIcon /icons/tar.gif .tar
AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
AddIcon /icons/a.gif .ps .ai .eps
AddIcon /icons/layout.gif .html .shtml .htm .pdf
AddIcon /icons/text.gif .txt
AddIcon /icons/text.gif .txt
AddIcon /icons/c.gif .c
AddIcon /icons/p.gif .pl .py
AddIcon /icons/f.gif .for
AddIcon /icons/dvi.gif .dvi
AddIcon /icons/uuencoded.gif .uu
AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
AddIcon /icons/tex.gif .tex
AddIcon /icons/bomb.gif core
AddIcon /icons/back.gif ..
AddIcon /icons/hand.right.gif README
AddIcon /icons/folder.gif ^^DIRECTORY^^
AddIcon /icons/blank.gif ^^BLANKICON^^
<IfModule mod_php4.c>
AddIcon /icons/php4.gif .php3 .php4 .php .phtml
AddIcon /icons/phps.gif .phps
</IfModule>
# AddLanguage allows you to specify the language of a document. You can
# then use content negotiation to give a browser a file in a language
# it can understand. Note that the suffix does not have to be the same
# as the language keyword --- those with documents in Polish (whose
# net-standard language code is pl) may wish to use "AddLanguage pl .po"
# to avoid the ambiguity with the common suffix for perl scripts.
AddLanguage en .en
AddLanguage fr .fr
AddLanguage de .de
AddLanguage da .da
AddLanguage el .el
AddLanguage it .it
# LanguagePriority allows you to give precedence to some languages
# in case of a tie during content negotiation.
# Just list the languages in decreasing order of preference.
LanguagePriority en fr de
# AddType allows you to tweak mime.types without actually editing it, or to
# make certain files to be certain types.
# Format: AddType type/subtype ext1
# For example, the PHP3 module (not part of the Apache distribution)
# will typically use:
#AddType application/x-httpd-php3 .php3
#AddType application/x-httpd-php3-source .phps
# The following is for PHP/FI (PHP2):
#AddType application/x-httpd-php .phtml
# Fix up default type for .exe files.
AddType application/octet-stream .exe
# Add type for Netscape proxy autoconfiguration
AddType application/x-ns-proxy-autoconfig .pac
AddType image/png .png
# Fix up default type for .rpm files.
AddType application/octet-stream .rpm
# To use server-parsed HTML files
AddType text/html .shtml
AddType application/x-pkcs7-crl .crl
AddType application/x-x509-ca-cert .crt
# The following directives disable keepalives and HTTP header flushes.
# The first directive disables it for Netscape 2.x and browsers which
# spoof it. There are known problems with these.
# The second directive is for Microsoft Internet Explorer 4.0b2
# which has a broken HTTP/1.1 implementation and does not properly
# support keepalive when it is used on 301 or 302 (redirect) responses.
BrowserMatch "Mozilla/2" nokeepalive
BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
# The following directive disables HTTP/1.1 responses to browsers which
# are in violation of the HTTP/1.0 spec by not being able to grok a
# basic 1.1 response.
BrowserMatch "RealPlayer 4\.0" force-response-1.0
BrowserMatch "Java/1\.0" force-response-1.0
BrowserMatch "JDK/1\.0" force-response-1.0
# AddHandler allows you to map certain file extensions to "handlers",
# actions unrelated to filetype. These can be either built into the server
# or added with the Action command (see below)
# Format: AddHandler action-name ext1
# To use CGI scripts:
AddHandler cgi-script .cgi
AddHandler server-parsed .shtml
# If you wish to use server-parsed imagemap files, use
AddHandler imap-file map
NameVirtualHost 0.0.0.0:80
NameVirtualHost 0.0.0.0:443
# The following lines prevent .htaccess files from being viewed by
# Web clients. Since .htaccess files often contain authorization
# information, access is disallowed for security reasons. Comment
# these lines out if you want Web visitors to see the contents of
# .htaccess files. If you change the AccessFileName directive above,
# be sure to make the corresponding changes here.
#
# Also, folks tend to use names such as .htpasswd for password
# files, so this will protect those as well.
#
<Files ~ "^\.ht">
Order allow,deny
Deny from all
</Files>
<VirtualHost 0.0.0.0:80>
ServerName www.shadowsfall.org
ServerAlias shadowsfall.org darkover.shadowsfall.org
DocumentRoot /home/e-smith/files/ibays/Primary/html
ScriptAlias /cgi-bin /home/e-smith/files/ibays/Primary/cgi-bin
Alias /files /home/e-smith/files/ibays/Primary/files
# aviondreams ibay (Monika's Web site)
ScriptAlias /aviondreams/cgi-bin /home/e-smith/files/ibays/aviondreams/cgi-b
in
Alias /aviondreams/files /home/e-smith/files/ibays/aviondreams/files
Alias /aviondreams /home/e-smith/files/ibays/aviondreams/html
# newrpm ibay (Downloaded RPM's)
ScriptAlias /newrpm/cgi-bin /home/e-smith/files/ibays/newrpm/cgi-bin
Alias /newrpm/files /home/e-smith/files/ibays/newrpm/files
Alias /newrpm /home/e-smith/files/ibays/newrpm/html
# monikas ibay (Monika's Storage)
ScriptAlias /monikas/cgi-bin /home/e-smith/files/ibays/monikas/cgi-bin
Alias /monikas/files /home/e-smith/files/ibays/monikas/files
Alias /monikas /home/e-smith/files/ibays/monikas/html
# teds-storage ibay (Backup and storage for Ted)
ScriptAlias /teds-storage/cgi-bin /home/e-smith/files/ibays/teds-storage/cgi
-bin
Alias /teds-storage/files /home/e-smith/files/ibays/teds-storage/fil
es
Alias /teds-storage /home/e-smith/files/ibays/teds-storage/html
# skipping SSL directives
# skipping ProxyPass directives
Alias /webmail /home/httpd/html/horde/imp
Alias /horde /home/httpd/html/horde
# alias for Apache icons
Alias /icons/ /var/www/icons/
# Alias for server resources
Alias /server-resources/ /home/e-smith/files/server-resources/
</VirtualHost>
<VirtualHost 0.0.0.0:443>
ServerName www.shadowsfall.org
ServerAlias shadowsfall.org darkover.shadowsfall.org
DocumentRoot /home/e-smith/files/ibays/Primary/html
ScriptAlias /cgi-bin /home/e-smith/files/ibays/Primary/cgi-bin
Alias /files /home/e-smith/files/ibays/Primary/files
# aviondreams ibay (Monika's Web site)
ScriptAlias /aviondreams/cgi-bin /home/e-smith/files/ibays/aviondreams/cgi-b
in
Alias /aviondreams/files /home/e-smith/files/ibays/aviondreams/files
Alias /aviondreams /home/e-smith/files/ibays/aviondreams/html
# newrpm ibay (Downloaded RPM's)
ScriptAlias /newrpm/cgi-bin /home/e-smith/files/ibays/newrpm/cgi-bin
Alias /newrpm/files /home/e-smith/files/ibays/newrpm/files
Alias /newrpm /home/e-smith/files/ibays/newrpm/html
# monikas ibay (Monika's Storage)
ScriptAlias /monikas/cgi-bin /home/e-smith/files/ibays/monikas/cgi-bin
Alias /monikas/files /home/e-smith/files/ibays/monikas/files
Alias /monikas /home/e-smith/files/ibays/monikas/html
# teds-storage ibay (Backup and storage for Ted)
ScriptAlias /teds-storage/cgi-bin /home/e-smith/files/ibays/teds-storage/cgi
-bin
Alias /teds-storage/files /home/e-smith/files/ibays/teds-storage/fil
es
Alias /teds-storage /home/e-smith/files/ibays/teds-storage/html
# SSL Directives
SSLEngine on
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /server-brand http://127.0.0.1:980/server-brand/
<Location /server-brand>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /e-smith-brand http://127.0.0.1:980/e-smith-brand/
<Location /e-smith-brand>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /e-smith-common http://127.0.0.1:980/server-common/
<Location /e-smith-common>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /server-common http://127.0.0.1:980/server-common/
<Location /server-common>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /common http://127.0.0.1:980/common/
<Location /common>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /e-smith-manager http://127.0.0.1:980/e-smith-manager/
<Location /e-smith-manager>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /server-manager http://127.0.0.1:980/server-manager/
<Location /server-manager>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /e-smith-password http://127.0.0.1:980/user-password/
<Location /e-smith-password>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /user-password http://127.0.0.1:980/user-password/
<Location /user-password>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
Alias /webmail /home/httpd/html/horde/imp
Alias /horde /home/httpd/html/horde
# alias for Apache icons
Alias /icons/ /var/www/icons/
# Alias for server resources
Alias /server-resources/ /home/e-smith/files/server-resources/
</VirtualHost>
<VirtualHost 0.0.0.0:80>
ServerName www.aviondreams.com
ServerAlias aviondreams.com darkover.aviondreams.com
DocumentRoot /home/e-smith/files/ibays/aviondreams/html
ScriptAlias /cgi-bin /home/e-smith/files/ibays/aviondreams/cgi-bin
Alias /files /home/e-smith/files/ibays/aviondreams/files
# skipping SSL directives
# skipping ProxyPass directives
Alias /webmail /home/httpd/html/horde/imp
Alias /horde /home/httpd/html/horde
# alias for Apache icons
Alias /icons/ /var/www/icons/
# Alias for server resources
Alias /server-resources/ /home/e-smith/files/server-resources/
</VirtualHost>
<VirtualHost 0.0.0.0:443>
ServerName www.aviondreams.com
ServerAlias aviondreams.com darkover.aviondreams.com
DocumentRoot /home/e-smith/files/ibays/aviondreams/html
ScriptAlias /cgi-bin /home/e-smith/files/ibays/aviondreams/cgi-bin
Alias /files /home/e-smith/files/ibays/aviondreams/files
# SSL Directives
SSLEngine on
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /server-brand http://127.0.0.1:980/server-brand/
<Location /server-brand>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /e-smith-brand http://127.0.0.1:980/e-smith-brand/
<Location /e-smith-brand>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /e-smith-common http://127.0.0.1:980/server-common/
<Location /e-smith-common>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /server-common http://127.0.0.1:980/server-common/
<Location /server-common>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /common http://127.0.0.1:980/common/
<Location /common>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /e-smith-manager http://127.0.0.1:980/e-smith-manager/
<Location /e-smith-manager>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /server-manager http://127.0.0.1:980/server-manager/
<Location /server-manager>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
# ProxyPass executes a module which relays requests to another server
# We use it to allow transparent access to the admin instance of the
# web server.
ProxyPass /e-smith-password http://127.0.0.1:980/user-password/
<Location /e-smith-password>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /user-password http://127.0.0.1:980/user-password/
<Location /user-password>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
Alias /webmail /home/httpd/html/horde/imp
Alias /horde /home/httpd/html/horde
# alias for Apache icons
Alias /icons/ /var/www/icons/
# Alias for server resources
Alias /server-resources/ /home/e-smith/files/server-resources/
</VirtualHost>
# First, we configure the "default" to be a very restrictive set of
# permissions.
<Directory />
Options None
AllowOverride All
order deny,allow
deny from all
allow from none
</Directory>
# Horde specific configuration files.
<Directory /home/httpd/html/horde>
Options Indexes Includes FollowSymLinks
AllowOverride None
order allow,deny
allow from all
AddType application/x-httpd-php .php .php3
php_value include_path '.:/usr/share/pear'
# php_value auto_prepend_file /home/httpd/horde-phplib/prepend.php3
php_flag magic_quotes_gpc off
php_flag track_vars on
</Directory>
<Directory /home/httpd/html/horde/config>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/lib>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/locale>
order deny,allow
deny from all
</Directory>
# IMP specific access configuration
<Directory /home/httpd/html/horde/imp/config>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/imp/lib>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/imp/locale>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/imp/templates>
order deny,allow
deny from all
</Directory>
# Server resources access configuration
<Directory /home/e-smith/files/server-resources>
Options +Indexes
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Directory>
# IMP specific access configuration
<Directory /home/httpd/html/horde/turba/config>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/turba/lib>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/turba/locale>
order deny,allow
deny from all
</Directory>
<Directory /home/httpd/html/horde/turba/templates>
order deny,allow
deny from all
</Directory>
# Note that from this point forward you must specifically allow
# particular features to be enabled - so if something's not working as
# you might expect, make sure that you have specifically enabled it
# below.
#------------------------------------------------------------
# primary directories
#------------------------------------------------------------
<Directory /etc/e-smith/web/common>
AllowOverride None
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/primary/html>
Options Indexes Includes
Options +Includes
AddType application/x-httpd-php .php .php3 .phtml
AllowOverride All
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/manager/html>
Options Indexes Includes ExecCGI
AllowOverride None
AllowOverride None
order deny,allow
deny from all
allow from all
</Directory>
<Directory /var/www/icons>
Options Indexes Includes
AllowOverride None
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/primary/cgi-bin>
Options ExecCGI
AllowOverride All
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/manager/cgi-bin>
Options ExecCGI
AllowOverride None
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/primary/files>
AllowOverride All
ForceType application/octet-stream
order deny,allow
deny from all
allow from all
</Directory>
#------------------------------------------------------------
# Information bay directories
#------------------------------------------------------------
#------------------------------------------------------------
# aviondreams ibay directories (Monika's Web site)
#------------------------------------------------------------
<Directory /home/e-smith/files/ibays/aviondreams/html>
Options Indexes
<FilesMatch "\.(php|php3|phtml)$">
order deny,allow
Deny from all
</FilesMatch>
Options +IncludesNOEXEC
AllowOverride All
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/ibays/aviondreams/cgi-bin>
AllowOverride All
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/ibays/aviondreams/files>
AllowOverride All
ForceType application/octet-stream
order deny,allow
deny from all
allow from all
</Directory>
#------------------------------------------------------------
# Primary ibay directories (Primary i-bay)
#------------------------------------------------------------
<Directory /home/e-smith/files/ibays/Primary/html>
Options Indexes
Options +Includes
AllowOverride All
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/ibays/Primary/cgi-bin>
Options ExecCGI
AllowOverride All
order deny,allow
deny from all
allow from all
</Directory>
<Directory /home/e-smith/files/ibays/Primary/files>
AllowOverride All
ForceType application/octet-stream
order deny,allow
deny from all
allow from all
</Directory>
ProxyPass /server-brand http://127.0.0.1:980/server-brand/
<Location /server-brand>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /e-smith-brand http://127.0.0.1:980/e-smith-brand/
<Location /e-smith-brand>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /e-smith-common http://127.0.0.1:980/server-common/
<Location /e-smith-common>
order deny,allow
deny from all
allow from all
</Location>
ProxyPass /server-common http://127.0.0.1:980/server-common/
<Location /server-common>
order deny,allow
deny from all
allow from all
</Location>
ProxyPass /common http://127.0.0.1:980/common/
<Location /common>
order deny,allow
deny from all
allow from all
</Location>
ProxyPass /e-smith-manager http://127.0.0.1:980/e-smith-manager/
<Location /e-smith-manager>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /server-manager http://127.0.0.1:980/server-manager/
<Location /server-manager>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)0/255.255.255.0
</Location>
ProxyPass /e-smith-password http://127.0.0.1:980/user-password/
<Location /e-smith-password>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)/255.255.255.0
</Location>
ProxyPass /user-password http://127.0.0.1:980/user-password/
<Location /user-password>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)/255.255.255.0
</Location>
ProxyPass /e-smith-user http://127.0.0.1:980/e-smith-user/
<Location /e-smith-user>
RequireSSL on
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)/255.255.255.0
</Location>
ProxyPass /user-manager http://127.0.0.1:980/user-manager/
<Location /user-manager>
RequireSSL on
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)/255.255.255.0
</Location>
<Directory /home/e-smith/files/ibays/Primary/html>
AddType application/x-httpd-php .php .php3 .phtml
AddType application/x-httpd-php-source .phps
php_admin_value open_basedir /home/e-smith/files/ibays/Primary
</Directory>
# phpBB2 - website
#-------------------------------------------
# Declare HTML directory
Alias /forum /opt/phpBB2
<Directory /opt/phpBB2>
AddType application/x-httpd-php .php .php3 .phtml
Options Indexes +Includes FollowSymLinks
order deny,allow
deny from all
allow from all
# phpBB2 - website
#-------------------------------------------
# Declare HTML directory
Alias /forum /opt/phpBB2
<Directory /opt/phpBB2>
AddType application/x-httpd-php .php .php3 .phtml
Options Indexes +Includes FollowSymLinks
order deny,allow
deny from all
allow from all
</Directory>
Alias /wpad.dat /etc/httpd/conf/proxy/proxy.pac
<Location /wpad.dat>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)/255.255.255.0
</Location>
Alias /proxy.pac /etc/httpd/conf/proxy/proxy.pac
<Location /proxy.pac>
order deny,allow
deny from all
allow from 127.0.0.1 (MY IP)/255.255.255.0
</Location>
-
Hey Ted,
it looks like you have a duplicated entry near the end of httpd.conf pertaining to phpBB2.
the section between the phpBB2 "brackets" looks proper
# phpBB2 - website
#-------------------------------------------
blah
blah
blah
etc.
# phpBB2 - website
#-------------------------------------------
But right after that, the phpBB2 directory is declared again, this doesn't look proper.
You could try commenting out these lines below accordingly:
# Declare HTML directory
# Alias /forum /opt/phpBB2
# <Directory /opt/phpBB2>
# AddType application/x-httpd-php .php .php3 .phtml
# Options Indexes +Includes FollowSymLinks
# order deny,allow
# deny from all
# allow from all
# </Directory>
Leave the section between the "phpBB2 - website" brackets alone.
Then restart the httpd:
/etc/init.d/httpd-e-smith restart
And see if you can access your server.
Hope this helps
Joe
-
Ok I tried rem'ing out that section. Now my error has moved from line 1224 to line 1232.
Here is the relevent section.
::::::::::
# phpBB2 - website
#-------------------------------------------
# Declare HTML directory
Alias /forum /opt/phpBB2
<Directory /opt/phpBB2>
AddType application/x-httpd-php .php .php3 .phtml
Options Indexes +Includes FollowSymLinks
order deny,allow
deny from all
allow from all
# phpBB2 - website
#-------------------------------------------
# Declare HTML directory
#Alias /forum /opt/phpBB2
#<Directory /opt/phpBB2>
#AddType application/x-httpd-php .php .php3 .phtml
#Options Indexes +Includes FollowSymLinks
#order deny,allow
#deny from all
#allow from all
#</Directory>
Alias /wpad.dat /etc/httpd/conf/proxy/proxy.pac
<Location /wpad.dat>
order deny,allow
deny from all
allow from 127.0.0.1 10.10.11.0/255.255.255.0
</Location>
Alias /proxy.pac /etc/httpd/conf/proxy/proxy.pac
<Location /wpad.dat>
order deny,allow
deny from all
allow from 127.0.0.1 10.10.11.0/255.255.255.0
</Location>
:::::::::::::::
Looks to me like it is hitting this line
Alias /wpad.dat /etc/httpd/conf/proxy/proxy.pac
and then I notice this line comming up.
Alias /wpad.dat /etc/httpd/conf/proxy/proxy.pac
Not wanting to Rem in haste and repent in leasure I thought I would ask what those two lines are trying to do and should I rem them?
Thanks
Ted
Molon Labe
-
Hey Ted,
I am sorry I didn't notice that on my previous post.
Inside the phpBB2 section add this line in:
</Directory>
It should look like this when you are done:
# phpBB2 - website
#-------------------------------------------
# Declare HTML directory
Alias /forum /opt/phpBB2
<Directory /opt/phpBB2>
AddType application/x-httpd-php .php .php3 .phtml
Options Indexes +Includes FollowSymLinks
order deny,allow
deny from all
allow from all
</Directory><-----add this line
# phpBB2 - website
#-------------------------------------------
Hope this helps
Joe
Ooops forgot, restart the webserver after making the changes:
/etc/init.d/httpd-e-smith restart
-
That did it. I can now access both my wifes and my website as well as the server-manager.
Two things. I think I'll play a little less with this server at least until I get its replacement up and running.
Als I had to restart the web server twice
::::
/etc/init.d/httpd-e-smith restart
::::
The first time it gave an error
Shutting down http: [ FAILED ]
Starting httpd: [ OK ]
[root@darkover root]#
The second time it worked and now (for now) all seems well.
Thanks again
Ted
Molon Labe
http://www.thefiringline.com/HCI/molon_labe.htm
-
Hey Ted,
glad to here we solved the problem.
One foot-note to this, you will most likely lose the changes you made the next time you do a console-save or maybe even a reboot!
I would do a search for working with custom-templates, httpd.conf etc...
You will probably need to make a fragment with the "phpBB2 section" in the httpd.conf, and place it in the etc/e-smith/templates-custom/etc/httpd/conf/httpd.conf
This will allow your customization to survive a reboot or console-save.
Good luck
Joe
Oh by the way, Definition: gun control- the ability for one to hit the intended target!
-
Ted
Check the fragment 93phpBB to see if it contains the correct details, amend as required and re-expand the template as per the howto.
PS You should upgrade phpBB & php to be sure you won't get hacked !!
[root@e-smith /root]# mkdir -p /etc/e-smith/templates-custom/etc/httpd/conf/httpd.conf
[root@e-smith /root]# cd /etc/e-smith/templates-custom/etc/httpd/conf/httpd.conf
[root@e-smith httpd.conf]# pico 93phpBB
Enter the following into this file:
#-------------------------------------------
# phpBB 2.0.4
#-------------------------------------------
Alias /phpBB2 /opt/phpBB2
<Directory /opt/phpBB2>
AddType application/x-httpd-php .php .php3 .phtml
Options Indexes +Includes FollowSymLinks
order deny,allow
deny from all
allow from all
</Directory>
<Files /opt/phpBB2/config.php>
order deny,allow
deny from all
</Files>
#------------------------------------------
Then rebuild httpd.conf and restart apache:
[root@e-smith httpd.conf]# /sbin/e-smith/expand-template /etc/httpd/conf/httpd.conf
[root@e-smith httpd.conf]# /etc/rc.d/rc7.d/S85httpd-e-smith restart