I have this command to change "user" ownerships from "owner" to "owner2".
find ./ -user owner -exec chown owner2 {} ;
Is there a similar command for GROUP ownership or even better, a combined command?
APache is running under the "nobody" user/group as default in CPanel servers
as a suggestion I should change it to another user/group to improve security!
But in CPanel servers its hard to do that because you must edit some scripts and files to prevent the backing to nobody when running some scripts such
PHP Code:
/scripts/chownpublichtmls/scripts/enablefileprotect
or when create a new account
Some sites says "the secret of changing the user/group is in the UID/GID of nobody < 100 !"
so I found a solution :
1 - delete the user/goup nobody
2 - recreate it with GID/UID > 30000
3 - run /scripts/chownpublichtmls
so the question is that solution improve security or i should change the user/group to another one! like "www"?
Most popular way of downloading these scripts is to use "wget" comman
when we need to change the command wget in our server for download some destructive script and run it through some server side program such as PHP or PERL ...
now i try to start this session by this command ...
PHP Code:
pico /usr/bin/wget
it's show me like this!
PHP Code:
?ELF^A^A^A^@^@^@^@^@^@^@^@^@^B^@^C^@^A^@^@^@^�¡^D^H4^@^@^@ u^C^@^@^@^@^@4^@ ^@^H^@(^@^[^@^Z^@^F^@^@^@4^@^@^@4^�^D^H4^�^D^H^$^@^@^@^ط^@^@^@^Û^@^@^@c^@^@^@C^@^@^@^@^@^@^@^@^@^@^@^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@$^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^^@^@^@ ^@^@$^@^@^@Pا^G^H^@^@^@^@^Q^@ø�^É^D^@^@^@^@^@^@Æ^@^@^@^R^@^@^@^È^E^@^@^@^@^@^@v^@^@^@^R^@^@^@Û^A^@^@^@^@^@^@&^@^@^@^R^@^@^@^O^E^@$^@I^F^@^@^@^@^@^@<^@^@^@^R^@^@^@^A^E^@^@^@^@^@^@~^A^@^@^R^@^@^@ص^G^@^@^@^@^@^@1^@^@^@^R^@^@^@ñ^@^@^@^@^@^@^@ð^C^@^@^R^@^@^@r$^@^@^@^R^@^@^@A^G^@^@^@^@^@^@M^@^@^@^R^@^@^@^ص^D^@^@^@^@^@^@E^@^@^@^R^@^@^@�^D^@^@^@^@^@^@=^A^@^@^R^@^@^@Ç^@^@^@^@^@^@^@J^@^$^@ش^D^@^@^@^@^@^@'^@^@^@^R^@^@^@y^D^@^@^@^@^@^@^Z^A^@^@^R^@^@^@^_^F^@^@^@^@^
now how can i change this command ? or change anything in this file ( wget ) ...
I can't seem to remember, but what's that command or file used in Linux so that you can view/adjust the number of open files and others in the system?
View 3 Replies View RelatedIs there a command i can type into the ssh console to stop a current transfer that i started wit the wget command?
the file im wgeting always stuffs up at 51% but then the server just retries and starts again, its done it 3 times so far and i just want to completely cancle the process if possible....
Is there a way to do so in cpanel using ip deny manager?
View 4 Replies View Relatedi have a main server that is connected online & now live with a static IP address. at the local network, i have 6 other PCs running apache that is connected to the main server.
since i can only effort for 1 IP now, how can i have the local connected servers to be viewable from the internet as well like some normal web URLs?
in a domain environment, how do I enable users to be able to access the Desktop properties and allow them to change their wallpapers. I know it should be a simple one but I'm still looking through policies but can't find what can be. By default/ after some group policy changes, all users are denied from accesing this properties window.
View 4 Replies View RelatedI'm making an account for my friend, and I just want him to have access to /var/www/hishomedirectory/
I want him to be able to do anything in that directory (rename files, delete, copy, move, upload, etc..), but not able to use apt-get or play with settings. Not a superuser either.
After some yum updates last night one user and group called xfs were created on my dedicated server. Does anyone know what this group/user is used for?
View 0 Replies View RelatedCurrently I have
Umask 027
The problem is, how do I get the group to be set as apache on a file/dir upload? I really do not like having other permissions set, as it can be a security risk, allowing others to access someone else's files.
Another issue is, I can't remove privileges, but I can add them.
copy of proftpd.conf:
Code:
ServerName "FTP"
ServerType standalone
Port 21
PassivePorts 35000 35999
UseReverseDNS off
TimesGMT off
TimeoutLogin 120
TimeoutIdle 600
TimeoutNoTransfer 900
TimeoutStalled 3600
#MaxCients 20 "Sorry, the maximum number of allowed users are already connected (%m)"
#MaxClientsPerHost 2
#MaxClientsPerUser 2
MaxConnectionsPerHost 6 "Sorry, you may not have more then 6 connections open at a time"
MaxHostsPerUser 6 "Sorry, you may not connect more than 6 times"
ScoreboardFile /var/run/proftpd/proftpd.pid
TransferLog /var/log/proftpd/xferlog.legacy
LogFormat default "%h %l %u %t "%r" %s %b"
LogFormat auth "%v [%P] %h %t "%r" %s"
LogFormat write "%h %l %u %t "%r" %s %b"
#DON'T modify this log format. Its used by DirectAdmin to determine user usage
LogFormat userlog "%u %b"
ExtendedLog /var/log/proftpd/IP.bytes WRITE,READ userlog
AuthUserFile /etc/proftpd.passwd
DefaultServer on
#AuthPAM off
<IfModule mod_tls.c>
TLSEngine on
TLSLog /var/log/proftpd/proftpd.tls.log
TLSProtocol TLSv1
TLSVerifyClient off
TLSRequired off
#Certificates
TLSRSACertificateFile /etc/exim.cert
TLSRSACertificateKeyFile /etc/exim.key
#TLSCACertificateFile /etc/ftpd/root.cert.pem
</IfModule>
<Global>
DeferWelcome on
RequireValidShell no
DefaultRoot ~
DirFakeUser on ftp
DirFakeGroup on ftp
User ftp
Group ftp
#UserAlias anonymous ftp
AllowStoreRestart on
AllowRetrieveRestart on
ListOptions -a
Umask 027 022
DisplayLogin welcome.msg
DisplayChdir readme
AllowOverwrite on
IdentLookups off
ExtendedLog /var/log/proftpd/access.log WRITE,READ write
ExtendedLog /var/log/proftpd/auth.log AUTH auth
#
# Paranoia logging level....
#
#ExtendedLog /var/log/proftpd/paranoid.log ALL default
</Global>
Include /etc/proftpd.vhosts.conf
(1) I installed my modernBill on the server.
(2) I changed the DocumentRoot in httpd.conf and point to a different folder in my server. (whatever I guess it really didnt do anything to my problem)
(3) I Opened the Modernbill software on the but cpanel is not showing in the ServerGroup.
I want to add 50 emails to a group called group50@service.com
Then from anywhere in the world I can login to an email client, compose a message to group50@service.com. And it will send my message to all 50 users.This is not limited to just my account, but universal to anyone.
I have opensuse 13.1 on my server and i folow this tutorial: URL....but as you see this is for opensuse 12.2, but i manage to run everythink only apache2 server.Well i get this error, but i run vhost.No user or group set - set suPHP_UserGroup..Well apache2 is rurning as every other thinks on server only web page dont show and i get error: Server error!
The server encountered an internal error and was unable to complete your request. Either the server is overloaded or there was an error in a CGI script.
I've finally made the leap to upgrading from shared hosting to a VPS. I'm still setting up my configuration before I point the domain name to my new server, but for now, I have the site mirrored and I'm ensuring that all is running well. For the most part, everything is working, but I am running into a few permission issues...
As of right now, all the files in my htdocs directory are owned by root, and I am logging into my FTP client as root. However, I'm pretty sure that this is not how I should be doing this, because I need to allow write permissions to some folders from my php scripts.
I was just curious, how do you you guys set up the users and groups on your linux servers (running apache). I'm just not certain of the best way to handle it. Should I make a new FTP user, and if so, what group should it go in? Should that user be the owner of all the web files? When is it safe to set folder permissions to 777?
I have just restored an account to my directadmin box and it appears to have restored with the wrong owner / group.
Easy I thought, a quick 'chmod secure.secure -R *' should crack that but how wrong was I.
After running that I get the error: chown: invalid option -- o
Now - both the user and the group exist, so why won't the files change owner and group?
This might be a very broad question, but do they split up IP Address Groups for each region in countries? I know my country is quite small and all, but I was interested to know if IP addresses can be tracked for regions, more specifically in other countries.
View 0 Replies View RelatedIs there anyway to set up a Group that only has access to one virtual directory and nothing else on the server? Running IIS 6.0 on Windows 2003.
View 1 Replies View RelatedI have a reseller package with Hostgator, I use it to host a few sites on. Recently one of my customers started to notice that periodically, his site goes down - only to him.
I and others can access it just fine but he cannot nor can his friends in his local town. Most of the time it is on line.
I have checked the server DNS and domain name settings and all is fine.
I can't understand what the problem could be, it seems strange that almost everyone in the UK and US can access it but he cannot.
He has cleared his browser settings, reboot his connection and tried pinging his domain but no luck.
I'm not too sure what the problem could be.
The domain is
[url]
I've been trying to set an active desktop of a group of users that log into XP machines to an html webpage. So far I haven't had any luck getting the webpage to appear.
What exactly needs to be done in order for this to work correctly? The primary domain controller is running on windows 200 server.
I recently discovered the magic of Tuangou / group buying after a short stay in China. It made me wonder why this efficient method of purchasing things has yet to be popularised in the Western world. (See en.wikipedia.org/wiki/Tuangou for more information.)
I think that this is quite interesting when you look at the economics of server resources, in particular online data storage. I have been looking for around 100GB of cheap, reliable FTP space for a while now, but it seems that truly cheap storage is only available if you have terabytes of data to store. This has always prevented me from storing my data in 'the cloud'.
However, if the Tuangou principles are applied to this situation a lot of cheap storage could be realised so long as there were enough people to cover the yearly cost.
Which moves me on to the crux of my post...
As a home user or small business owner, would you be willing to wait longer for an online storage service to be provisioned and pay in advance if there were significant cost savings to be had?
(By significant cost savings I mean cheaper than Amazon's S3.)
I'm currently looking to set up a company offering just this, but do not wish to enter the market until I can substantiate my own views and until I can be sure that my target market does not solely consist of me.
What's the best solution web-based that I can install on a server to monitor a group of servers, services, bandwidth etc.. I'm thinking of offering a service where for a monthly price we'll monitor your server(s) and notify the data center or client of outages. So I'm looking for something that I can create clients then under them enter servers and items to monitor. Kinda like a NOC monitoring solution?
View 9 Replies View RelatedWhen a php framework try to create a new folder, it's created with apache: apache owner instead the user and group owned the root folder.
the PHP safe_mode is set to off.
i have 3 sites/users that all need to be able to access each other with complete read/write/exec access
Site1 Site2 and Site3
what's the best way to do this without screwing up all the premissions and access to my currently active sites. I need advice from someone who is a pro at this and not just guessing at what premissions to set. I'm assume i need to create a MasterGrp and invite all 3 sites then set/change permissions on all three sites. Also all new files created would need to have the masterGrp set as the group automatically
I'm working on a research study at the University of Toronto and we would like to set up a website and dedicated secure server. I would like some recommendations on start packages that would be appropriate with prices. I'm hoping some could over their own experiences.
View 14 Replies View RelatedSo... let's start my review, shall we?
I came into VPS business with EpicVPS, both Amaresh and Raghev (if im right), are excellent persons. Always helped me a lot and their service was overall great.
After some disasters xD, EpicVPS was sold to VAServ. I thought: Okay... maybe it's time to move BUT I should definitely wait a few months and watch how this is going to be.
So, stayed as a client.
I dont know how much months have passed, maybe 6? Dunno, but I do have to say a few things about Russell's company, VAserv.com:
I had some billing problems, specially when they changed to the other software, but all this was solved with screenshots (not that they doubt, just wanted to keep it clear), and in no time, I had it fixed. (Also had one billing issue, for some other reasons, which was solved and today Vladimir just made my day.. heh, not that he offered anything, but telling me kind words... made me feel good. )
Loads... Everyone knows that when you're using a VPS, sometimes you have some stupid users abusing the server , this way you'll get affected as well.
Happened a few times, and I was telling them it wasn't my VPS, etc etc (I've a pretty big vps, and always monitored so I can be sure that everything is running smoothly, this is also pretty secured). I didn't like when they once restarted my vps without asking, and load issue was still there. Again a few days later, they restarted again, like it was my problem. (And figured later that wasn't, but it happens!).
Anyway, this was solved, and their staff was really helpful on this, being really decent with me, just like it SHOULD BE in EVERY company.
Uptime... What can I say, it's true the VPS was rebooted a few times, but, besides that, it's great.
Staff... Always helpful, an extremelly fast support and lovely staff! Just like... hum, Kody, Vladimir... both awesome. (I consider them like business-friends. Honestly, they have helped me A LOT).
It's true that there are a few of them that still need some work heh, but overall, it's really really good.
Support... Extremelly fast and efficient! Top notch. Never saw a company like this.
Hardware... Top notch, NEVER had a disk issue, or something like that. Just like a dream!
Network... PERFECT. But really, just PERFECT. I'm living in Portugal, and I've about 40/50 ms to UK (I choosed UK, but they have other locations), the network is really fast (downloading at 1.7 mb/s from my home, no download accellerators). Also, never had a single downtime.
Billing... Good billing software now. Pretty organised, and simple. I like to keep it simple, easy to use. (And yes, I know that ubbersmith is a COMPLETE software xD)
Price... Excellent. I don't find any place with better prices. Even if I someday find one, I still WON'T move.
Other Issues... Had 2 IP's listed on SBL, reported it, and they already knew, then 2 weeks after the issue was solved. (Yeah yeah 2 weeks, but I emailed SBL and they didn't even answered me , so, vaserv did a great job.)
They just got me as a loyal client, and won't leave them for sure! Rus, great job!
I guarantee you that if you join them, you'll have an excellent service.
Overall:
Uptime: 10/10
Staff: 10/10
Support: 10/10
Price: 10/10
Total: 10/10
What do I want them to get better? Please... just keep providing this quality service.
Join them.
(Domain will be verified as I will submit through the Report button.)
Our company has recently invested in a Microsoft Small Business Server, we are moving all our email accounts to exchange server.
Our company runs a high profile website in Japan and we have a few email accounts that are downloaded by multiple staff, rather than have all staff download the same emails is it possible to have all emails forwarded to a public inbox where emails processed can be marked and ignored by other staff?
We do not want to forward the emails to user's personal inboxes, this seems to be the common solution for this type of email.
This might sound like a basic questions but we have trolled the internet for best practices in trying to set up this solution on exchange server but have not come across an answer.
We have several sites on one server. When I use the plesk wordpress manager it some how updates the User and Group permissions on folders and files with the username apache. How or what command do I run to get it to use the site username and psacln. It appears something maybe in an update or whatever has caused this issue. This only occurs with wordpress and drupal updates from the plesk interface.
What command can I run just to update the permissions to update all users to a username and psacln security settings on folders and directories.Running Plesk 12.0.18 and CentOS7
LXadmin seem to have a preset disk quota limit to users/groups, even root!
So, how do I change these disk quota limits? There isn't an option in the LXadmin control panel either.
I tried to harden our plesk servers and encountered a problem with switching to individual dh keys.We are running Postfix version 2.9.6-2 on Debian 7 boxes with Plesk 12.First I removed SSLv3 and limited the Ciphers as proposed on the Guide to Deploying Diffie-Hellman for TLS. All excluded Ciphers won't be served. Never the less the newly created individual 2048bit DH key under /etc/ssl/dhparam.pem would not be used.
The test-tool: [URL].... can check for ports. So when I check port 25, I get the message, that the server is not vulnerable, but that I should turn on ECDH.I checked the postfix documentation. I´ve kept the master.cf as is and changed the main.cf to this:
smtpd_use_tls = yes
smtpd_tls_security_level=may
smtpd_tls_cert_file=/opt/psa/admin/conf/httpsd.pem
smtpd_tls_key_file=/opt/psa/admin/conf/httpsd.pem
smtpd_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3
[code]....
Do I have to modify the master.cf as well?Here I found entries for every domain/ip:
plesk-domainname.com-1.2.3.4 - unix - n n - - smtp -o smtp_bind_address=1.2.3.4 -o smtp_bind_address6= -o smtp_address_preference=ipv4 -o smtp_ helo_ name=domainname.com
Do I have to add the -o smtpd_tls_dh1024_param_file=$submission_tls_dh1024_param_file to those entries? I want to keep the setting permanent. I experienced in the past, that plesk tends to overwrite the setting I´ve made.
