Apache Cannot Get Docroot Information
suexec generating errors. It is not save to store web pages in the home directory. Since Apache does not use the SUEXEC mechanism for other files, there is no reason to risk mixing CGI scripts and data. cannot get docroot information (/var/www) Any ideas? his comment is here
Obviouslsy as I have an access/permissions issue now suexec isn't the issue so guessing something in my config is not letting me get to the user account via http://mydomain/~andrew1 (which incidentally Before the actual run of the script, SuExec logs the execution to suexec.log (if not changed during build). I have been playing with this for past few hours. You are currently viewing LQ as a guest. http://www.gossamer-threads.com/lists/apache/users/297517
Chroot The normal suexec adds decent security by running all scripts with user privileges but this doesn't protect world writable directories and files. To unsubscribe, e-mail: users-unsubscribe [at] httpd " from the digest: users-digest-unsubscribe [at] httpd For additional commands, e-mail: users-help [at] httpd Index | Next | Previous | Print Thread | View Gallen Switzerland or Christchurch, New Zealand Age: 31 Posts: 712 Hallo Quote: I set up a website in my home directory Do you use apache?
That also modifies allowable docroots, using this file: cat /etc/apache2/suexec/www-data
# The first two lines contain the suexec document root and the suexec userdir
# suffix. Contact Gossamer Threads Web Applications & Managed Hosting Powered by Gossamer Threads Inc. The ISPsystem company guarantees that all the questions posted on this forum will be considered by the company’s specialists, however it does not take any responsibility to the User for providing Follow-Ups: Re: Solved: Re: Is this an Apache feature or a bug?-ans From: Michael Schwendt References: Re: Is this an Apache feature or a bug?-ans From: A.
Now that it is working I will dig around and see if I can convert back to your method. Each user then needs a copy of the script (although the contents may be exactly the same), since SUEXEC changes to the owner of the script. Quote: Originally Posted by andrew111 500 internal server error Make sure your PHP script begins with the necessary shebang line: Code: #!/usr/bin/php5-cgi For testing purposes, I often use this small scriptlet: I can't explain what happened but now works after apache restart.
I've created a virtual host and logged into its account using SFTP, then created a php file with phpinfo() in it. FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc. For example, try running this command: ls -la /home/USERNAME When you do that -- are the owner of all the files and directories (with the exception of "..") owned by your Hence suexec fails.
With CGI scripts, the MPM does not matter. (It may matter to the fastcgi module, though.) Each of the CGIs is run as a separate process, so there are no threading http://forum.ispsystem.com/showthread.php?t=910 The default is USERDIR_SUFFIX="public_html". Next, enabled suexec again and still the same error about command not in docroot. Blogs Recent Entries Best Entries Best Blogs Blog List Search Blogs Home Forums HCL Reviews Tutorials Articles Register Search Search Forums Advanced Search Search Tags Search LQ Wiki Search Tutorials/Articles Search
andrew111 View Public Profile View LQ Blog View Review Entries View HCL Entries Find More Posts by andrew111 05-25-2011, 09:41 PM #2 Nominal Animal Senior Member Registered: Dec 2010 this content Odd. Nominal Animal View Public Profile View LQ Blog View Review Entries View HCL Entries Find More Posts by Nominal Animal View Blog Thread Tools Show Printable Version Email this Page Thread Tools 01-27-2010, 05:04 PM #1 jeffm Junior Member Join Date: Jan 2010 Posts: 7 cannot get docroot information (/var/www) Running apache 2 on ubuntu 8.04 with fastcgi, getting
You can either change the global values or on a per-user basis. Log in or register to post comments #5 Fri, 01/27/2012 - 13:58 (Reply to #4) laurenced No, it says "your system is ready for use by Virtualmin." Log in or register I have had a friend with a bit more knowledge than me take a look and he has got it working so everything is all go. weblink This I am trying to do.
User Menu: imabuzz View Public Profile Send a private message to imabuzz Visit imabuzz's homepage! User Menu: jeffm View Public Profile Send a private message to jeffm Find More Posts by jeffm 01-27-2010, 06:37 PM #2 slava ISPsystem team Join Date: May 2008 Please do not cross post - forum policy permits only one thread at a time per topic.
By executing the script directly with mod_cgi Executing the script through mod_cgi but using a wrapper application - SuExec So SuExec was developed to address one of the main security issues
I havn't as yet implemented the last part of your instructions as guessing I should get this working first. So I think I am back to suexec setup however now know that the config you gave for userdir seems great, and have the file permission directory structure all good and We worked to solve these issues and add a separation between users. For added security, let's limit allowed files to those that end with .php It is possible to map one or more directories to the same URL addresses, but it is rarely
This way we have information about every process executed on the machine and we simply have to read the logs and calculate the statistics. This should help avoid the situation where the PHP CGI interpreter decides to parse a totally different file. Apache will select the first UserDir that exists; it won't look any deeper Apache (www-data) needs execute permission to /home/andrew1, /home/andrew1/public_html/, and each subdirectory: Code: drwxr-x--x andrew1:agroup /home/andrew1/ drwxr-x--x andrew1:agroup /home/andrew1/public_html/ check over here And I have it open in front of me now and am running down the list. 1.
This is a variant of the configuration most people use with PHP. Am more than happy to let you loose with my root user password if you like (though I know most people would say not to do this) - there is nothing Click Here to receive this Complete Guide absolutely free. Nominal Animal View Public Profile View LQ Blog View Review Entries View HCL Entries Find More Posts by Nominal Animal View Blog 05-26-2011, 12:17 AM #3 andrew111 LQ Newbie
If apache2-suexec-custom package is used instead of apache2-suexec, the second line in /etc/apache2/suexec/www-data must be public_html (Otherwise you need to adjust the configuration below accordingly.) Only allow this for specific users, andrew111 View Public Profile View LQ Blog View Review Entries View HCL Entries Find More Posts by andrew111 05-26-2011, 10:04 PM #4 Nominal Animal Senior Member Registered: Dec 2010 Register Lost Password? CMD line test su - nobody -s /bin/bash -c 'export PHPHANDLER="/usr/bin/php";cd /home/USER/public_html;/usr/local/apache/bin/suexec 503 500 i.php' USER should be replaced by some existing username on the machine 503 should be replaced with