Re: [EMAIL PROTECTED] multiple domain hosting
I don't know if you changed anything since your last post, but both your sites are coming up for me. http://buddistpalm.net/ http://sillumutah.com/ Currently it is 00:12 PDT for me. You might be getting odd messages on the server, but the sites are available to the internet. Jaqui Be smarter than spam. See how smart SpamGuard is at giving junk email the boot with the All-new Yahoo! Mail at http://mrd.mail.yahoo.com/try_beta?.intl=ca - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] multiple domain hosting
I don't know if you changed anything since your last post, but both your sites are coming up for me. http://buddistpalm.net/ http://sillumutah.com/ Currently it is 00:12 PDT for me. You might be getting odd messages on the server, but the sites are available to the internet. Jaqui Be smarter than spam. See how smart SpamGuard is at giving junk email the boot with the All-new Yahoo! Mail at http://mrd.mail.yahoo.com/try_beta?.intl=ca I have tried a few things but here's the issue. The site sillumutah.com or sillumutah.net are a completely different site from buddistpalm.net If you look at the virtualhost config I have 2 different directories. So what I'm trying to do is host 2 completely different sites with different source on the same box is that even possible? - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] multiple domain hosting
--- Glen Vickers <[EMAIL PROTECTED]> wrote: > I have tried a few things but here's the issue. The > site sillumutah.com or > sillumutah.net are a completely different site from > buddistpalm.net > > If you look at the virtualhost config I have 2 > different directories. So > what I'm trying to do is host 2 completely different > sites with different > source on the same box is that even possible? Yup, and both sites were showing 2 entirely different content for me. now all 3 names are showing the site under construction page. sillumutah.com and .net were showing a page of a Band earlier. buddistpalm.net was showing the under construction page. Jaqui Be smarter than spam. See how smart SpamGuard is at giving junk email the boot with the All-new Yahoo! Mail at http://mrd.mail.yahoo.com/try_beta?.intl=ca - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] multiple domain hosting
Glen Vickers <[EMAIL PROTECTED]> wrote: On 5/11/07, Glen Vickers <[EMAIL PROTECTED]> wrote: I'm having some difficulty using the virtual domain hosting on my server. I have setup the virtual domains but it doesn't seem to recognize the two domains as they come in. Here's my config. What am I missing? Since folks out on the internet can see your sites but you can't - is there a chance that your windows HOSTS file is blocking your browser seeing your virtual names - by default it only has localhost in it - you need to add the others Charles - Luggage? GPS? Comic books? Check out fitting gifts for grads at Yahoo! Search.
Re: [EMAIL PROTECTED] Apache 2.2 security concern
On Fri, 11 May 2007 23:01:12 -0500 Sam Lavitt <[EMAIL PROTECTED]> wrote: > I am wondernig if apache 2.2 has a means to prevent a user with a > site hosted on the server, from accessing another users files. That's the operating system's business. > (e.g. > I have /hosting/user1, and I don't want him to be able to run a > script to open /hosting/user2/password-file) You mean protect user2 from possible consequences of idiocy? Read up on suexec for scripts. And consider using group permissions. > I read someplace that > there was a mpm for apache 1.3 that would restrict the child threads > spawned for each request to files that could be accessed by a > specific user account, but I can find no such mpm for apache 2.2. An MPM is to 1.3 as a bicycle to a fish. -- Nick Kew Application Development with Apache - the Apache Modules Book http://www.apachetutor.org/ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
Nick Kew wrote: On Fri, 11 May 2007 23:01:12 -0500 Sam Lavitt <[EMAIL PROTECTED]> wrote: I am wondernig if apache 2.2 has a means to prevent a user with a site hosted on the server, from accessing another users files. That's the operating system's business. (e.g. I have /hosting/user1, and I don't want him to be able to run a script to open /hosting/user2/password-file) You mean protect user2 from possible consequences of idiocy? Read up on suexec for scripts. And consider using group permissions. I read someplace that there was a mpm for apache 1.3 that would restrict the child threads spawned for each request to files that could be accessed by a specific user account, but I can find no such mpm for apache 2.2. An MPM is to 1.3 as a bicycle to a fish. Sorry for my lack of clarity and experience, I came here looking for advice and help. Based on my research, suexec only works for SSI and CGI, so it would be pointless for providing security with php, and doing mass-hosting, php is something in pretty common use. And I am sorry, I mis-spoke, the mpm was mpm_perchild for apache 2.0, which apparently is abandoned and broken. (see http://httpd.apache.org/docs/2.0/mod/perchild.html ) I lack the programing skills that would be needed to repair it unfortunately. So is there anything that is functional, maintained, and would allow me to provide the security that would be needed, ideally apache 2.2, if not, at least 2.0? Or any other webserver which can provide the security needed? - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
--- Sam Lavitt <[EMAIL PROTECTED]> wrote: > Sorry for my lack of clarity and experience, I came > here looking for > advice and help. This we do understand :) > Based on my research, suexec only works for SSI and > CGI, so it would be > pointless for providing security with php, and doing > mass-hosting, php > is something in pretty common use. Yes, PHP is very commonly used. No, suexec does not limit it's functionality to ssl and cgi, those those are the easiest implementations. by using suexec for each site's owner and user / group permissions for access, you can stop anyone from accessing another user's files. And I am sorry, > I mis-spoke, the mpm > was mpm_perchild for apache 2.0, which apparently is > abandoned and > broken. (see > http://httpd.apache.org/docs/2.0/mod/perchild.html ) > I > lack the programing skills that would be needed to > repair it unfortunately. > > So is there anything that is functional, maintained, > and would allow me > to provide the security that would be needed, > ideally apache 2.2, if > not, at least 2.0? Or any other webserver which can > provide the > security needed? Yes, as Nick mentioned, suexec and user/group permissions are the common method for securing the site(s) from this. another option, slightly more hardware intensive is the have each hosted site running as a separate instance of apache chrooted so they do not have any access to the rst of the servers file system. Jaqui Ask a question on any topic and get answers from real people. Go to Yahoo! Answers and share what you know at http://ca.answers.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] multiple domain hosting
--- Charles Michener <[EMAIL PROTECTED]> wrote: > > Since folks out on the internet can see your sites > but you can't - is there a chance that your windows > HOSTS file is blocking your browser seeing your > virtual names - by default it only has localhost in > it - you need to add the others > > Charles > Actually, he has changed the server conf enough that now it isn't working right. I originally did get both different sites under the three names, now it's all going to one. Jaqui __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Can't set environment variable in per-birectory rewrite
Hi,
I'm trying to implement the front controller pattern for a simple PHP
site, while simultaneously leveraging mod_rewrite for some run-of-the-
mill rewriting beforehand as well. Apache 2.2.4 & PHP 5.2.2. My
simplified rules in .htaccess at present are as follows:
-
# Rewrite any requests ending with '.htm', '.html' to end with '.php'.
RewriteRule ^(.*)\.htm[l]?$ $1.php [NS]
# Verify the requested file exists, and if so end by sending the
request to our front controller.
# The front controller will be injecting the requested page into a
layout, so grab the request URI
# as it was rewritten just prior to the rewrite to the front
controller itself, and stuff it in the
# server environment variable "REWRITTEN_REQUEST_URI".
RewriteCond %{REQUEST_FILENAME} -f
RewriteRule ^(.+)$ frontcontroller.php [NS,E=REWRITTEN_REQUEST_URI:$1]
# Serve anything left directly, 404 with Apache's ErrorHandler if not
found, or the like.
-
My issue is that for a request such as "index.html"
REWRITTEN_REQUEST_URI ends up being "frontcontroller.php", not
"index.php" as I had hoped.
My rewrite log is below. As I understand it the issue is the two
phase processing mod_rewrite must do for per-directory context rules
as described here: . Despite my hopes the nosubreq flag doesn't seem
to apply in this special case, and so my variable is being
overwritten with the undesired value from the second pass.
I tried a using a conditional rewrite that wouldn't match for the
second "frontcontroller.php" pass:
RewriteCond %{REQUEST_FILENAME} !frontcontroller.php
RewriteRule ^(.+)$ - [E=REWRITTEN_REQUEST_URI:$1]
The variable set according to the logs, and was not overwritten on
the second pass, but it wasn't available to my PHP script. I'm
assuming that implies that first pass really is a "fake" one,
environment variables set in it are only scoped private to the first
pass itself?
To get to my question is there any way to capture the rewritten URI
part way through the first pass?
A workaround would be to not do the .htm[l] to .php rewriting and the
like in Apache, but instead handle it all in my PHP front controller,
but I'd rather leverage the existing functionality than duplicate it
from scratch. Moving the rewriting to the per-server context is also
very undesirable as it prevents use of the pattern by those who don't
have access to the server config.
Thanks,
Ian
[rid#18d0450/initial] (3) [perdir /mydocroot/] strip per-dir prefix: /
mydocroot/index.html -> index.html
[rid#18d0450/initial] (3) [perdir /mydocroot/] applying pattern '^(.*)
\.htm[l]?$' to uri 'index.html'
[rid#18d0450/initial] (2) [perdir /mydocroot/] rewrite 'index.html' -
> 'index.php'
[rid#18d0450/initial] (3) [perdir /mydocroot/] add per-dir prefix:
index.php -> /mydocroot/index.php
[rid#18d0450/initial] (3) [perdir /mydocroot/] strip per-dir prefix: /
mydocroot/index.php -> index.php
[rid#18d0450/initial] (3) [perdir /mydocroot/] applying pattern '^(.+)
$' to uri 'index.php'
[rid#18d0450/initial] (4) [perdir /mydocroot/] RewriteCond: input='/
mydocroot/index.php' pattern='-f' => matched
[rid#18d0450/initial] (2) [perdir /mydocroot/] rewrite 'index.php' ->
'frontcontroller.php'
[rid#18d0450/initial] (5) setting env variable
'REWRITTEN_REQUEST_URI' to 'index.php'
[rid#18d0450/initial] (3) [perdir /mydocroot/] add per-dir prefix:
frontcontroller.php -> /mydocroot/frontcontroller.php
[rid#18d0450/initial] (2) [perdir /mydocroot/] strip document_root
prefix: /mydocroot/frontcontroller.php -> /frontcontroller.php
[rid#18d0450/initial] (1) [perdir /mydocroot/] internal redirect
with /frontcontroller.php [INTERNAL REDIRECT]
[rid#18bd758/initial/redir#1] (3) [perdir /mydocroot/] strip per-dir
prefix: /mydocroot/frontcontroller.php -> frontcontroller.php
[rid#18bd758/initial/redir#1] (3) [perdir /mydocroot/] applying
pattern '^(.*)\.htm[l]?$' to uri 'frontcontroller.php'
[rid#18bd758/initial/redir#1] (3) [perdir /mydocroot/] strip per-dir
prefix: /mydocroot/frontcontroller.php -> frontcontroller.php
[rid#18bd758/initial/redir#1] (3) [perdir /mydocroot/] applying
pattern '^(.+)$' to uri 'frontcontroller.php'
[rid#18bd758/initial/redir#1] (4) [perdir /mydocroot/] RewriteCond:
input='/mydocroot/frontcontroller.php' pattern='-f' => matched
[rid#18bd758/initial/redir#1] (2) [perdir /mydocroot/] rewrite
'frontcontroller.php' -> 'frontcontroller.php'
[rid#18bd758/initial/redir#1] (5) setting env variable
'REWRITTEN_REQUEST_URI' to 'frontcontroller.php'
[rid#18bd758/initial/redir#1] (3) [perdir /mydocroot/] add per-dir
prefix: frontcontroller.php -> /mydocroot/frontcontroller.php
[rid#18bd758/initial/redir#1] (1) [perdir /mydocroot/] initial URL
equal rewritten URL: /mydocroot/frontcontroller.php [IGNORING REWRITE]
-
The official User-To-User su
Re: [EMAIL PROTECTED] Apache 2.2 security concern
On Sat, 12 May 2007 05:00:24 -0400 (EDT) Jaqui Greenlees <[EMAIL PROTECTED]> wrote: > > pointless for providing security with php, and doing security with php is an oxymoron ... > > mass-hosting, php > > is something in pretty common use. > Yes, PHP is very commonly used. > No, suexec does not limit it's functionality to ssl > and cgi, those those are the easiest implementations. suexec is an option for that. The other solution that seems to be getting popular is fastcgi. > > was mpm_perchild for apache 2.0, which apparently is > > abandoned and > > broken. (see Yeah, but there are third-party alternatives (metux, peruser) if you insist on an MPM. But the real purpose of the MPM architecture is to enable Apache to be optimised for different platforms. The perchild family addresses a different problem, and will inevitably sacrifice the performance of an optimal MPM. > > I > > lack the programing skills that would be needed to > > repair it unfortunately. Seems noone at apache wants it enough to fix it. And noone outside apache wants it enough to sponsor someone to fix it. Except of course for those third-party options. -- Nick Kew Application Development with Apache - the Apache Modules Book http://www.apachetutor.org/ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
> >Sam Lavitt <[EMAIL PROTECTED]> wrote: > > > > > > > >>I am wondernig if apache 2.2 has a means to prevent a user with a > >>site hosted on the server, from accessing another users files. Sam - This might be a possible solution: http://www.telana.com/peruser.php I haven't used it, and the author doesn't consider it ready for prime-time, but it may be worth while for you to take a look at. R. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
Based on my research, suexec only works for SSI and CGI, so it would be pointless for providing security with php, and doing mass- hosting, php is something in pretty common use. And I am sorry, I mis-spoke, the mpm was mpm_perchild for apache 2.0, which apparently is abandoned and broken. (see http://httpd.apache.org/ docs/2.0/mod/perchild.html ) I lack the programing skills that would be needed to repair it unfortunately. You can use PHP as a CGI + FastCGI + Suexec to accomplish this. Obviously its not as efficient as using mod_php however it will allow to even create per use instances of custom php verisons, php modules and configs. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Apache as a frontend for OGo not working from LAN
Hello everyone,
I've installed OpenGroupWare on a Suse 10.2 box.
Before that I installed Cyrus, Apache2.2.3 and Postfix. The mailflow is
working just fine, Apache is working just fine.
After installing OGo I can run OGo perfectly on the server by executing
http://localhost/OpenGroupware/
My problem lies in accessing OGo from any location on the LAN with
Apache working as frontend. I can access the document root of Apache
just fine (http://webserver/ works), but when I redirect the browser to:
http://webserver/OpenGroupWare I'm getting a 404, Not Found error
message...
As far as I can conclude this has something to do with my Apache
configuration but I'm out of clues at the moment. I hope someone can
help me look into the correct direction.
Amongst others a file with the following text was added to the conf.d directory
of /etc/apache2
# configuration needed to access the OGo webui
#
# explicitly allow access
Order allow,deny
Allow from all
# required aliases
AliasMatch
^/OpenGroupware([0-9a-zA-Z]{1})([0-9a-zA-Z]{1,})\.woa/WebServerResources/(.*)
/usr/local/share/opengroupware.org-$1.$2/www/$3
Alias /ArticleImages /var/lib/opengroupware.org/news
#
# hook up
SetAppPort 2
SetHandler ngobjweb-adaptor
I think either the AliasMatch or the LocationMatch isn't working and this only from the LAN part,
locally from the server it's working perfectly.
The access.log file from Apache shows only this:
192.168.1.70 - - [10/May/2007:21:37:46 +0200] "GET /OpenGroupWare
HTTP/1.1" 404 1077 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; nl;
rv:1.8.1.3) Gecko/20070309 Firefox/2.0.0.3 Mnenhy/0.7.5.666"
The error.log from Apache shows only this:
[Thu May 10 21:37:46 2007] [error] [client 192.168.1.70] File does not
exist: /srv/www/htdocs/OpenGroupWare
I'm out of clues at the moment, maybe someone reading this can point me into
the correct direction.
Thanks for your help!
Best regards,
Marco van Eck
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Apache Service auto-enabling itself on Windows
I am seeing weird behaving for Apache running on windows. We have 2 servers, and due to maintanence, I have one of the servers' Apache service disabled. The problem is that it auto-enables itself (or something auto enables it) pretty much once a day. It seems to be initiated by the user SYSTEM, and happens at random times of the day (so I don't think it's a scheduled task or anything). What could be doing this? Could it be the Service Monitor somehow? Here is what appears in the even log: Date: 5/12/2007 Source: Service Control Manager Time: 6:03:02 AM Category: None Type: Information Event ID: 7040 User: NT AUTHORITY/SYSTEM Computer: IMAGE1 The start type of the Apache2 service was changed from disabled to auto start. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Russ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
Sam Lavitt did speak thusly: Based on my research, suexec only works for SSI and CGI, so it would be pointless for providing security with php, and doing mass-hosting, php is something in pretty common use. And I am sorry, I mis-spoke, the mpm was mpm_perchild for apache 2.0, which apparently is abandoned and broken. (see http://httpd.apache.org/docs/2.0/mod/perchild.html ) I lack the programing skills that would be needed to repair it unfortunately. So is there anything that is functional, maintained, and would allow me to provide the security that would be needed, ideally apache 2.2, if not, at least 2.0? Or any other webserver which can provide the security needed? End original message. - PHP provides for this directly. There is a restrict_base_dir setting that can be applied to each virtual host that prevents users from accessing anything outside of the specified directory tree. Go to http://www.php.net/ and check the docs for more info. Dragon ~~~ Venimus, Saltavimus, Bibimus (et naribus canium capti sumus) ~~~ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
Jaqui Greenlees did speak thusly: Yes, as Nick mentioned, suexec and user/group permissions are the common method for securing the site(s) from this. another option, slightly more hardware intensive is the have each hosted site running as a separate instance of apache chrooted so they do not have any access to the rst of the servers file system. End original message. - That approach is absolutely unnecessary and overly complicated. As I said in my previous reply to this thread, PHP provides such a mechanism that is very easy to use. Dragon ~~~ Venimus, Saltavimus, Bibimus (et naribus canium capti sumus) ~~~ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
On 5/12/07, Dragon <[EMAIL PROTECTED]> wrote: PHP provides for this directly. There is a restrict_base_dir setting that can be applied to each virtual host that prevents users from accessing anything outside of the specified directory tree. Unless you happen to be using a library that accesses files on its own and therefore doesn't obey this restriction. Now go count how many libraries are plugged into your php install and see if you can verify the security of each one. It is my understanding that the base_dir and safe_mode restrictions in php are widely known to be unreliable and, in fact, will be removed in future versions. In general, running any apache module with different permissions per request is not technically feasible. This is because the process is the fundamental unit of permission control in unix and apache modules run in the same process as the server. To get real security, you need to put things that run under different permissions in different processes.There are lots of ways to do this, most already suggested in this thread: suexec, fastcgi, etc. You can also run multiple pools of apache processes with different permissions: http://wiki.apache.org/httpd/Recipes/Different_UserIDs_Using_Reverse_Proxy Of course, that will only work for a small number of different userids. If you need to run with hundreds or more vhosts, then php as a CGI under suexec (or similar suid tool) is probably the best solution. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache as a frontend for OGo not working from LAN
On 5/12/07, Marco van Eck <[EMAIL PROTECTED]> wrote:
My problem lies in accessing OGo from any location on the LAN with
Apache working as frontend. I can access the document root of Apache
just fine (http://webserver/ works), but when I redirect the browser to:
http://webserver/OpenGroupWare I'm getting a 404, Not Found error
message...
AliasMatch
^/OpenGroupware([0-9a-zA-Z]{1})([0-9a-zA-Z]{1,})\.woa/WebServerResources/(.*)
/usr/local/share/opengroupware.org-$1.$2/www/$3
This alias does not match requests for http://webserver/OpenGroupWare.
It requires a request for something like
http://webserver/OpengGroupware10a.woa/WebServerResources/
Joshua.
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Can't set environment variable in per-birectory rewrite
On 5/12/07, Ian Brandt <[EMAIL PROTECTED]> wrote: RewriteRule ^(.+)$ frontcontroller.php [NS,E=REWRITTEN_REQUEST_URI:$1] I hate dealing with per-directory rewrites myself. Too darn complex. I don't know the exact problem here, but I can suggest a more typical way to get around this: Simple use something like RewriteRule ^(.+)$ frontcontroller.php/$1 [NS,E=REWRITTEN_REQUEST_URI:$1] or RewriteRule ^(.+)$ frontcontroller.php?Rewritten_request_uri=$1 [QSA] Then adjust your frontcontroller.php to get the info from PATH_INFO or QUERY_STRING. The first one might require setting AllowPathInfo On in httpd.conf. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] multiple domain hosting
-Original Message- From: Jaqui Greenlees [mailto:[EMAIL PROTECTED] Sent: Saturday, May 12, 2007 3:02 AM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] multiple domain hosting --- Charles Michener <[EMAIL PROTECTED]> wrote: > > Since folks out on the internet can see your sites > but you can't - is there a chance that your windows > HOSTS file is blocking your browser seeing your > virtual names - by default it only has localhost in > it - you need to add the others > > Charles > Actually, he has changed the server conf enough that now it isn't working right. I originally did get both different sites under the three names, now it's all going to one. Jaqui --- The only thing I changed was the server name from the IP address to the host name. When you said it was working earlier I changed it back. So is it all going to 1 site still? Cuz that was my initial problem. I'll check the host file again as well. I had put all three domains in there and in resolv.conf it has them as well so it should recognize em. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] multiple domain hosting
--- Glen Vickers <[EMAIL PROTECTED]> wrote: > The only thing I changed was the server name from > the IP address to the host > name. > > When you said it was working earlier I changed it > back. So is it all going > to 1 site still? Cuz that was my initial problem. > I'll check the host file > again as well. I had put all three domains in there > and in resolv.conf it > has them as well so it should recognize em. > Yup, both are showing. The Bill Smith site in it's entirety and the other the under construction page. both domain names are coming up and the browser window is clearly identifying both sites in the title bar of the window. Jaqui Be smarter than spam. See how smart SpamGuard is at giving junk email the boot with the All-new Yahoo! Mail at http://mrd.mail.yahoo.com/try_beta?.intl=ca - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] multiple domain hosting
-Original Message- From: Jaqui Greenlees [mailto:[EMAIL PROTECTED] Sent: Saturday, May 12, 2007 1:04 PM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] multiple domain hosting --- Glen Vickers <[EMAIL PROTECTED]> wrote: > The only thing I changed was the server name from > the IP address to the host > name. > > When you said it was working earlier I changed it > back. So is it all going > to 1 site still? Cuz that was my initial problem. > I'll check the host file > again as well. I had put all three domains in there > and in resolv.conf it > has them as well so it should recognize em. > Yup, both are showing. The Bill Smith site in it's entirety and the other the under construction page. both domain names are coming up and the browser window is clearly identifying both sites in the title bar of the window. Jaqui --- Awesome just what I wanted to hear, I've been trying out this proxy site and it doesn't seem to want to difrentiate the two. Gonna have to go to the library. It's the DSL modems router type that doesn't allow me to view from home even if I put my name server in my tcp stack can't wait to replace it. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Is posible do that using my SERVER APACHE!!
the method connect it's FORBIDEN ok thx anyway Krist van Besien <[EMAIL PROTECTED]> escribió: On 5/11/07, Pitoniso Rikito Rikin wrote: > In my network the only port avaible is the 80 and 21 You could also just run your ssh daemon on port 21 then, you know... Krist -- [EMAIL PROTECTED] Bremgarten b. Bern, Switzerland -- A: It reverses the normal flow of conversation. Q: What's wrong with top-posting? A: Top-posting. Q: What's the biggest scourge on plain text email discussions? - The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - LLama Gratis a cualquier PC del Mundo. Llamadas a fijos y móviles desde 1 céntimo por minuto. http://es.voice.yahoo.com
Re: [EMAIL PROTECTED] Apache 2.2 security concern
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sat, 12 May 2007, Dragon wrote: PHP provides for this directly. There is a restrict_base_dir setting that can be applied to each virtual host that prevents users from accessing anything outside of the specified directory tree. Correct, everybody should be using this in a shared hosting environment, and also to tighten the reins furher should use disable_functions The one I use and has given us no complaints except for some lame program that wants to know the system uptime stats, which has nothing to do with a user anyway, even if it only wants it for the load, again, nothing to do with user, if the load gets high (above 5 on 15 min avge) we have alarms to let us know. disable_functions = exec, shell_exec, system, virtual, show_source, readfile, passthru, escapeshellcmd, popen, pclose, phpinfo - -- Cheers Res Vote for your favourite MTA at http://polls.ausics.net/v3.php -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGRj6fsWhAmSIQh7MRAumRAKCf4eW3oY4sGAfEP0xewn/fZgGR8ACfaJuC KQyQOYmGKCWvUUNNKQ1Dk9w= =0tLW -END PGP SIGNATURE- - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2 security concern
Res wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sat, 12 May 2007, Dragon wrote: PHP provides for this directly. There is a restrict_base_dir setting that can be applied to each virtual host that prevents users from accessing anything outside of the specified directory tree. Correct, everybody should be using this in a shared hosting environment, and also to tighten the reins furher should use disable_functions The one I use and has given us no complaints except for some lame program that wants to know the system uptime stats, which has nothing to do with a user anyway, even if it only wants it for the load, again, nothing to do with user, if the load gets high (above 5 on 15 min avge) we have alarms to let us know. disable_functions = exec, shell_exec, system, virtual, show_source, readfile, passthru, escapeshellcmd, popen, pclose, phpinfo - -- Cheers Res Vote for your favourite MTA at http://polls.ausics.net/v3.php -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGRj6fsWhAmSIQh7MRAumRAKCf4eW3oY4sGAfEP0xewn/fZgGR8ACfaJuC KQyQOYmGKCWvUUNNKQ1Dk9w= =0tLW -END PGP SIGNATURE- - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Would it be a wise idea to combine suEXEC with restrictions such as that applied to php directly(and how could one go about that?) - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Resolve issue
Hey Glen, On May 12, 2007, at 9:39 PM, Glen Vickers wrote: Someone please tell me what I’m missing. I need to get paid! lol That's great, can we have some too? lol Heres my resolv.conf search buddistpalm.net search sillumutah.com search sillumutah.net nameserver 192.168.1.10 nameserver 198.60.22.2 (ISP name server) Are these two in agreement over the zone data? Do you have your own definitions for those domains in your own DNS, or does it just query the root servers for that like (I assume) your ISP's DNS would? From here: [EMAIL PROTECTED] sctemme $ dig a buddistpalm.net. <..> ;; ANSWER SECTION: buddistpalm.net.3582IN CNAME shaolin.buddistpalm.net. shaolin.buddistpalm.net. 3582 IN A 199.104.125.190 <..> [EMAIL PROTECTED] sctemme $ dig a sillumutah.com <..> ;; ANSWER SECTION: sillumutah.com. 3600IN CNAME shaolin.sillumutah.com. shaolin.sillumutah.com. 3600IN A 199.104.125.190 <..> sillumutah.net does not resolve. Here’s my hosts file 192.168.1.10 shaolin buddistpalm.net sillumutah.com sillumutah.net localhost.localdomain localhost What has precedence on your client machine? Seems to work OK from here, if Sil Lum Utah is indeed a club of serious looking dudes in pajamas sporting hardware, and the other one has Tigger holding up an Under Construction sign. Your Apache config looks good, although you didn't have to post the whole thing. The two VirtualHost declarations mean that all requests with a corresponding Host: header end up at the respective vhost, and requests that don't have a (matching) Host: header tend to land at the top one. How the client got to your server is really between it and the DNS, or it and /etc/hosts if that has precedence. Apache has nothing to do with that, it just responds to whatever arrives on its doorstep, according to how the incoming requests express their destination (using the Host: header). S. -- Sander Temme [EMAIL PROTECTED] PGP FP: 51B4 8727 466A 0BC3 69F4 B7B8 B2BE BC40 1529 24AF smime.p7s Description: S/MIME cryptographic signature
RE: [EMAIL PROTECTED] Resolve issue
Hey Glen, On May 12, 2007, at 9:39 PM, Glen Vickers wrote: > Someone please tell me what I'm missing. I need to get paid! lol That's great, can we have some too? lol > Heres my resolv.conf > > > > search buddistpalm.net > > search sillumutah.com > > search sillumutah.net > > nameserver 192.168.1.10 > > nameserver 198.60.22.2 (ISP name server) Are these two in agreement over the zone data? Do you have your own definitions for those domains in your own DNS, or does it just query the root servers for that like (I assume) your ISP's DNS would? From here: [EMAIL PROTECTED] sctemme $ dig a buddistpalm.net. <..> ;; ANSWER SECTION: buddistpalm.net.3582IN CNAME shaolin.buddistpalm.net. shaolin.buddistpalm.net. 3582 IN A 199.104.125.190 <..> [EMAIL PROTECTED] sctemme $ dig a sillumutah.com <..> ;; ANSWER SECTION: sillumutah.com. 3600IN CNAME shaolin.sillumutah.com. shaolin.sillumutah.com. 3600IN A 199.104.125.190 <..> sillumutah.net does not resolve. > Here's my hosts file > > > > 192.168.1.10 shaolin buddistpalm.net sillumutah.com > sillumutah.net localhost.localdomain localhost What has precedence on your client machine? Seems to work OK from here, if Sil Lum Utah is indeed a club of serious looking dudes in pajamas sporting hardware, and the other one has Tigger holding up an Under Construction sign. Your Apache config looks good, although you didn't have to post the whole thing. The two VirtualHost declarations mean that all requests with a corresponding Host: header end up at the respective vhost, and requests that don't have a (matching) Host: header tend to land at the top one. How the client got to your server is really between it and the DNS, or it and /etc/hosts if that has precedence. Apache has nothing to do with that, it just responds to whatever arrives on its doorstep, according to how the incoming requests express their destination (using the Host: header). S. -- Sander Temme [EMAIL PROTECTED] PGP FP: 51B4 8727 466A 0BC3 69F4 B7B8 B2BE BC40 1529 24AF Thanks for that. I know that hosts has precedence for now. And yes I have the zone data up on my machine correctly. The .net not resolving is a host issue with the source I bought the domain at. I'm not too worried about that part yet. So why is it that you guys get the proper content on the sillumutah.com and everyone around here that I've tried through including the proxy I've tried don't get the site? I'm not sure why that is. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
