Apache :: Basic Auth User Not Logged In Common Log File
Jul 18, 2013
I use Basic Auth to limit access to a web site. This seems to work ok. I noticed though in the logs that the logged in user is not logged:
80.....188 - - [16/Jul/2013:09:56:29 +0200] "GET ..." 200 1844 "...." " ...
I would expect the second - to be replaced by the logged in user. The doc says, the user is logged if the document is protected. I do protect the whole directory using directory match. Without log in I fail to retrieve the document in question.
View 4 Replies
ADVERTISEMENT
Jun 27, 2007
Our web developer is logging in as root through SSH but log files do not show a record. We are getting the normal email notification but last & last -a does not show that they have logged in. Anyone seen this before?
View 7 Replies
View Related
Jun 29, 2007
I want to use something like PHPBB forums and using one MySQL user and database. Just wondering, what are common user permissions I should set for the user? I want to try to minimize any permissions that can cause big risk to the server security.
Here is a full list of permissions I can grant to the user (via Webmin):
-Select table data
-Insert table data
-Update table data
-Delete table data
-Create tables
-Drop tables
-Grant privileges
-Reference operations
-Manage indexes
-Alter tables
-Create temp tables
-Lock tables
View 3 Replies
View Related
Jun 12, 2009
is it possible to set Auth .htpasswd if a specific file and not the directory. example admin access [url]and a Auth User/Pass window appears. I need for /sec/ to be unprotected for image loading so a complete directory protection is not an option.
View 3 Replies
View Related
Sep 12, 2013
I would like to do do following using basic authentication:
1. non authenticated users have access to the index page: [URL] .....
2. there are other pages, e.g: [URL] .... but these would require basic auth
3. if users are not authenticated they would be redirected to [URL] .... otherwise authenticated users would have access to [URL] .... or anything else under that domain
View 1 Replies
View Related
Jul 19, 2014
I'm trying to configure Apache logs to split logs files for every virtual host on the server
for example: {site1 .com} => copy access_log to /home/site1/public_html/logs {site2 .com} => copy access_log to /home/site2/public_html/logs .. {site3 .com} => copy access_log to /home/site3/public_html/logs
i want to also to make sure is the logs files updated in the real time
operating system is CentOs6, with Apache and cPanel
View 1 Replies
View Related
Oct 28, 2007
What are the ./configure parameters commonly used for Apache (2.2) and PHP (5.2) installations on web hosting servers?
View 5 Replies
View Related
Feb 10, 2015
I'm build Plesk Panel for Linux and Presence Builder, I don't want my user can upload their website to hosting via File Manager. How can I do it...
View 2 Replies
View Related
Apr 10, 2014
I'm trying to get exception from auth (.htpasswd ) for one specific URL, but seems, that it does not work with my Rewriting rules. Disabling RewriteEngine solving auth problem. My .htaccess:
Code:
SetEnv APPLICATION_ENV development
# Rewrite
RewriteEngine On
RewriteBase /
# ZEND
RewriteCond %{REQUEST_FILENAME} -s [OR]
RewriteCond %{REQUEST_FILENAME} -l [OR]
RewriteCond %{REQUEST_FILENAME} -d
[Code] .....
View 1 Replies
View Related
Feb 17, 2007
Anyone using SSH key authentication only, instead of password authentication only for server connections?
Reason I ask is, cPanel are now recommending it as opposed to password connections, as it should defeat / prevent brute-force attacks.
View 7 Replies
View Related
Feb 16, 2007
How do you set user premissions on a file on a server or database?
View 3 Replies
View Related
Jul 7, 2007
I just check server logs today and found this:
Seems like someone else logged in to my server via FTP.
Since i only limited my IP to login to server Via FTP, SSH... using APF
But now, beside my IP, there's a few of connections from different IPs.
- Does that mean they logged in?
- What is the localhost login there?
Quote:
--------------------- Connections (secure-log) Begin
------------------------
Connections:
Service ftp [Connection(s) per day]:
My IP---> xx.xx.xxx.75
(CPE001xxxxxx-CM0011axxxxxxxx.cpe.net.cable.rogers.com): 4 Time(s)
125.234.3.44 (125.234.3.44.adsl.viettel.vn): 5 Time(s)
125.234.7.126: 1 Time(s)
125.234.13.160 (125.234.13.160.adsl.viettel.vn): 6 Time(s)
125.235.214.42 (dynamic-adsl-hni.vietel.com.vn): 2 Time(s)
222.252.35.156 (localhost): 7 Time(s)
222.252.91.206 (localhost): 11 Time(s)
222.253.167.25 (localhost): 6 Time(s)
222.254.76.7: 4 Time(s)
222.254.82.115: 8 Time(s)
Total Connections: 54
Service smtp [Connection(s) per day]:
24.110.34.203 (user-0c6s8mb.cable.mindspring.com): 1 Time(s)
65.28.34.116 (CPE-65-28-34-116.kc.res.rr.com): 1 Time(s)
72.184.44.3 (cpe-72-184-44-3.tampabay.res.rr.com): 1 Time(s)
74.67.7.155 (cpe-74-67-7-155.nycap.res.rr.com): 1 Time(s)
77.200.254.128 (128.254.200-77.rev.gaoland.net): 1 Time(s)
85.100.236.104 (dsl.dynamic85100236104.ttnet.net.tr): 1 Time(s)
86.129.186.224
(host86-129-186-224.range86-129.btcentralplus.com): 1 Time(s)
87.69.20.83 (87.69.20.83.cable.012.net.il): 1 Time(s)
132.248.77.252: 1 Time(s)
196.206.107.57 (adsl196-57-107-206-196.adsl196-4.iam.net.ma): 1
Time(s)
201.40.68.18 (201-40-68-18.mganm300.ipd.brasiltelecom.net.br): 1
Time(s)
207.63.250.11 (border.unit5.org): 1 Time(s)
211.208.200.2: 1 Time(s)
216.167.219.22 (216-167-219-22.chaska.net): 1 Time(s)
218.85.56.241
(241.56.85.218.broad.fz.fj.dynamic.163data.com.cn): 8 Time(s)
Total Connections: 22
---------------------- Connections (secure-log) End
-------------------------
View 0 Replies
View Related
Apr 19, 2009
How can pervent users ro run scripts start with #!/usr/bin/perl in anywhere.
Its a big security issue for run shell.
View 13 Replies
View Related
Mar 22, 2008
is there a way to stop the quota.user files from being created? They're taking up a lot of diskspace.
View 3 Replies
View Related
Oct 10, 2014
i manage linux apache webserver with a few wordpress blogs and from time to time i see someone inject a malicious .php file into wp-content/uploads/2014/10/ directory.
i think its some bad plugin or theme, but these is more blogs, i ugrade, update, WP, but
how can i setup some monitor to tell me which php file (or even line in php file) injected that malicious .php ? I have linux root access so i can setup anything
View 3 Replies
View Related
Jan 19, 2015
We have a website under httpdocs/. We can change/delete files with a ftp user : "ftpold". All is ok. We must create another ftp access for another company which can access only to httpdocs directory (not to logs/, error_docs/...).
So we have create a ftp access in Plesk. But with this ftp connexion, we can not update/delete files ou update rights.
So we decide to change rights on the files/directories under httpdocs with the new ftp access :
httpdocs# chown -R ftpnewsacln *
The is no errors but the files:directories are always with the old ftp user :
httpdocs# ls -l
ftpold psacln ... libs/
ftpold pscln ... index.php
Why ? How can i create another ftp access ?
View 3 Replies
View Related
Sep 20, 2007
Am running FreeBSD and MySQL. How do i check the login history for MySQL?
View 2 Replies
View Related
Mar 20, 2008
For some odd reason, when I run: chmod 4755 /usr/bin/crontab
in ssh, it still does not change it to 4755. It's like I don't have permission to change it, ans I'm logged in as root.
I've read some threads here on the forum and none really come to an issue where when they run that chmod 4755 /usr/bin/crontab it still doesn't chmod it.
So is there a way to check if it is chmodded to 4755 as I use CSF Exploerer to check if it is chmod'd to 4755, and it just stays at 755.
View 6 Replies
View Related
Sep 17, 2014
i have plesk 11.5.3 on Linux centOS 6, I created a ftp user on a domain folder, I need to deny this user to read a specific file .php, how can I do?
View 7 Replies
View Related
Apr 20, 2014
Can't get it working, I want to set up a cron job for a domain user, but seems that there's a problem to find the php executable. The command is:
Code:
/usr/bin/php/ -f /var/www/vhosts/thedomain.com/httpdocs/test.php
But the report says
-: /usr/bin/php/: No such file or directoryClick to expand...
View 3 Replies
View Related
Feb 26, 2015
I'm running Plesk 12.0.18 Update #36 on CentOS 6.6 and when I log in, after just a minute of inactivity or so I get logged out.
The period of inactivity is set to 60 minutes, so that shouldn't be the problem.
View 7 Replies
View Related
May 20, 2009
Why do most VPS servers have CentOS as the default/most common OS for linux?
View 14 Replies
View Related
Jan 24, 2008
What are the common scams or abuse, that beginning resellers need to be weary of? and how do you reduce exposure to these problems?
View 2 Replies
View Related
Feb 19, 2015
On our instance (Plesk 12 / Debian) I am logged out within 1 or 2 minutes quite often while working on config of the primary website (admin access). The session idle time is set to the 30 min default, and the problem isn't to do with changing IP addresses - the multiple sessions visible all have the same IP address.
This happens so constantly it is difficult do any real work. Where is the logic of session creation and termination? What do we need to look at to deal with this problem? We have root access.
View 10 Replies
View Related
Nov 2, 2009
I am writing an article about managed colocation (what it is, what are the benefits, how is it different from other hosting options, etc.).
What are some common questions you get from your customers regarding your managed colocation or managed services?
Do they see the value right away? Why are the hesitant? Is it clear to them which aspect of their server is under the control of the hosting company and which is still their responsibility?
View 12 Replies
View Related
Aug 6, 2007
I want to have a static server for my website which runs on the same machine as the dynamic server. I have read on the internet that port 8080 is a good alternative port to use.
Is common enough that it will work in all cases like port 80? And that it won't be blocked by firewalls and so on since it's not a service port (port < 1024).
View 5 Replies
View Related
Jul 9, 2007
Is it common for 10-15$+/month to provide only 1 database?
View 12 Replies
View Related
Jun 2, 2007
The most common hosting platform is linux correct?
View 9 Replies
View Related
Jul 22, 2008
I just installed mod_security and would like to test some common attack to see if it's blocking it
I tried passing "cmd=uname -a" as parameter to a .php, but it didn't block it
any other test I can try?
I'm using almost all rules from gotroot
View 8 Replies
View Related
Sep 9, 2007
After install yum on my centOS 4.4 VPS, I ran yum update and got this error:
Error: Missing Dependency: glibc-common = 2.3.4-2.25 is needed by package glibc-dummy-centos-4
When I tried to install glibc-common, I got this error:
error: Failed dependencies:
glibc-common = 2.3.4-2.25 is needed by (installed) glibc-2.3.4-2.25.i686
glibc-common = 2.3.4-2.25 is needed by (installed) glibc-dummy-centos-4-2.3.4-2.25.swsoft.i386
When trying to install these other things, I get more dependency errors. I noticed that glibc-dummy-centos-4-2.3.4-2.25.swsoft.i386 was mentioned. I'm not sure what this is, but it's by SwSoft? Is this something I have to contact my provider about? Thanks.
View 12 Replies
View Related
Apr 10, 2008
Is data theft common in dedicated industry? such as source code theft, especially in fully managed hosting situation?
View 14 Replies
View Related
