Making SELinux And Apache Play Nicely
Feb 15, 2007
Is it possible to make these two work together? I can't seem to find any way to let Apache read /home/<username>/public_html without disabling selinux entirely.
I know you can do "chcon -t httpd_sys_content_t -R $HOME/public_html", but it seems like it would be a pain when adding users, especially if someone decides to delete their public_html and make a new directory.
Is it possible to create an exception to let httpd do whatever it wants?
View 0 Replies
ADVERTISEMENT
Oct 13, 2014
I own a VPS server running CentOS with Cpanel WHM where no one can watch videos i post on any apple product.
The file plays fine on iphones when watching it on that website. BUT if i download that mp4 file and upload it to my own server, anyone with any iphone cant watch that video on my own server. I do now modify the file in any way. It plays fine on a PC or android phone / table but not Ipad and iphone...
Here is an example of hosting the above file on my server and linking it externally on my server. [URL] ....
View 1 Replies
View Related
Jul 28, 2008
I can't get SELinux to let httpd load the IonCube module for PHP. I've given the CentOS 5 forum a try (here: http://www.centos.org/modules/newbb/...15403&forum=42), talked with WHMCS's support (the app I'm using that needs it), and even opened a ticket with IonCube. Unfortunately nobody seems to know how to tell SELinux to let httpd "exec" modules.
I'm running CentOS 5, and the error I'm getting in /var/log/messages is:
Jul 23 10:15:30 host kernel: audit(1216833330.905:1249): avc: denied { execheap } for pid=22055 comm="httpd" scontext=root:system_r:httpd_t:s0 tcontext=root:system_r:httpd_t:s0 tclass=process
I can disable SELinux and it works fine (setenforce 0), but that's not the solution I'm looking for. Can someone please tell me how to do this the *right* way?
View 11 Replies
View Related
May 28, 2014
I recently upgraded my Apache 2.2.22 installation on Win 8.1 to 2.4.9, making all necessary changes (I believe) to the conf files. I am puzzled that two files in the format authdigest_shm.xxxx now appear in my logs directory when the server is restarted. (Edit: there is also no httpd.pid file)I assume this is to do with running digest authentication, but is a new phenomenon since the upgrade.what conf file setting(s) have I screwed up?!
View 2 Replies
View Related
Apr 12, 2014
I've spent the last several months working on a huge upgrade of a couple dozen websites. The upgrades include modifying Apache so that visitors who arrive at links pointing to mysite/World/New_York are redirected to mysite/world/new-york. In other words, all my links now default to lower case, and underscores are replaced with dashes.
Unfortunately, publishing it has been an endless series of disasters. My websites are now all crashed, and the server is unbelievably slow. It takes pages forever to load (if they load at all), and I can scarcely publish files online.So the following notice sent to me by my webhost got my attention.
IT appears your own server IP is making GET requests to Apache, causing excessive loading and causing service failures. On today's date, your IP made almost 6,000 connections to Apache:<br><br>
[root@host ~]# grep 64.91.229.106 /usr/local/apache/domlogs/mysite.org | wc -l 5924 [root@host ~]#<br><br>
These were all the same request:<br><br>
64.91.229.106 - - [12/Apr/2014:08:10:10 -0400] "GET /404.php HTTP/1.0" 200 14294 "-" "-"<br><br>
And that made up the total of requests:<br><br>
[root@host ~]# grep 64.91.229.106 /usr/local/apache/domlogs/mysite.org | grep "GET /404.php HTTP/1.0" | wc -l 5924 [root@host ~]#<br><br>
View 1 Replies
View Related
Jun 24, 2008
what I'd like to do is get a server set up that i could remote into and play games such as second life.And Leave it running etc. I would also like to be able to install other software on the server and run them just as i do with my home pc. Is that possible ? and if so what kind of setup do you suggest? Linux,windows.
View 5 Replies
View Related
Jun 24, 2008
First let me state that i don't know if this is possible. but what I'd like to do is get a server set up that i could remote into and play games such as second life.And Leave it running etc. I would also like to be able to install other software on the server and run them just as i do with my home pc. Is that possible ? and if so what kind of setup do you suggest? Linux,windows. How would i set that up ? What would i need from the host.
View 2 Replies
View Related
Jun 11, 2008
what network device would suit our needs (and whether there is something like what we need).
The device should meet following criteria:
-it should appear as one device only: a L2 switch is not an option as the device has to announce only one MAC address on the uplink port
-plug&play: a gigabit L3 switch is not an option because we would have to change the default gateway of the already configured servers to the L3 switch's IP
-gigabit ports
Is there any reliable device that could be used for this purpose?
View 4 Replies
View Related
Nov 6, 2009
Is anyone here using SElinux on a web server?
If so, how hard was that to setup?
View 1 Replies
View Related
Jul 26, 2008
My server ping keeps disconnecting
However my ssh & website is smooth running!
When i type "service iptables stop", the ping runs just smoothly.
I have CSF installed in the server, like any other server using default configurations. I believe it has something to do with selinux? (or not?)
View 2 Replies
View Related
Apr 7, 2007
I am not expert in linux box.... Actually I have found a problem in my machine, our clients are not able to access their sites from server, when I checked the system log it was related to Permission Denied. Someone told me to disable SELinux enforcing, Now after that my problem resolved.
But I am curious that what exactly Selinux is and what kind of issue it may create for my box if I disable it?
View 4 Replies
View Related
Oct 21, 2007
I am having quite a challenge getting openvz to work on centos 5 with a adaptec RAID card.
The driver likes the plain jane kernel..but then...
Configuration [OpenVZ (2.6.18-8.1.14.el5.028stab045.1)]
***NOTICE: /boot/vmlinuz-2.6.18-8.1.14.el5.028stab045.1 is not a kernel. Skipping.
There is also another issue not being able to disable Selinux.
I have tried the normal routes and even attempted disabling it in rc.sysinit..still...this "security framework" is able to load it..and cause problems.
Openvz and SeLinux don't get along..even a little bit.
So..those are the two probably seperate issues...that prevent the poor server from booting.
View 1 Replies
View Related
Jun 27, 2008
to upload some flash videos over to our web host.
All the videos have been uploaded to << link removed >> and in there you will seea flash_video directory, in there should be a html file where you can double click and watch the flash video.
Now go ahead and try it, click on the HTML file and click CONTINUE and try clicking on MODULE 1.. You will see a video play to the left but on the right are bunch of POWERPOINT slides that will appear as the guy continues to speak. THAT DOESNT SHOW..
Our website is hosted by xo.com
Dont know much about the plan since its my 2nd day at the job..
But here is the weird part,
i have uploaded the samething - same exact way to another web host and it plays fine, the PPTs show up fine..
What do you guys think it is?
Before someone asks about uploading methods, i tried filezilla, coreftp and cuteFTP using both ASCII and binary methods. Samething..
View 10 Replies
View Related
Apr 11, 2008
Has anyone wrote custom SELinux policies for their cpanel server?
View 1 Replies
View Related
Mar 2, 2015
I have changed the maildir in Plesk according to [URL] ..... Everything works like a charm, however selinux doesn't allow access to the new directory. That means we get a permission denied and no mail is received at the server anymore.
Old location: /var/qmail/mailnames/
New location: /mnt/bigstorage/mailnames/
tail -f /var/log/maillog:
Mar 2 13:38:42 srv2 postfix-local[5983]: postfix-local: from=example@example.com, to=example@example.com, dirname=/mnt/bigstorage/mailnames/
Mar 2 13:38:42 srv2 postfix-local[5983]: cannot chdir to mailnames dir /mnt/bigstorage/mailnames: Permission denied
If we disable selinux, everything works, however this is not the best practice.
How can I fix this error without disabling selinux?
View 1 Replies
View Related
Nov 18, 2014
Specs: centOS 6.6 (Final) with Plesk 11.5.30 #48
In the last updates I get this warning:
Updating: selinux-policy-targeted-3.7.19-260.el6.noarch 128/373
libsemanage.semanage_direct_commit: WARNING: genhomedircon is disabled.
See /etc/selinux/semanage.conf if you need to enable it.
/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument
libsemanage.semanage_install_active: setfiles returned error code 1.
semodule: Failed!Click to expand...
View 3 Replies
View Related
Apr 8, 2009
i want to have a windows server and make 5 vps on it what should i do to make the vps
is there is additional fees or i only pay the money of the server & for the windows
View 9 Replies
View Related
Oct 25, 2008
i have windows 2003 dedicaited server i need software so i can make vps i need a free one and easailly to make vps and assingh ips and stuff
View 1 Replies
View Related
May 13, 2007
I was wondering I've been having problems with getting my web server going.
I'm using Apache 2 on my Windows XP SP2 machine. I have a Linksys WRT54GX2 router, and I have Charter 3MB Cable internet. I already called charter to see if they allowed web servers and they said they do. I also asked if they block ports, and they said they don't.
Now my problem... So, I originally thought maybe charter blocked port 80, so I used NO-IP to work around that, I did port forwarding through that. Well, I used there tool canyouseeme.org and it said it couldnt read any ports i put in.
All my firewalls were off and i had my router firewall off. I even put my computer in the DMZ part of my router. I'm about to see if i can connect my modem directly to my computer without having a problem but i wasn't able to a bit ago. Anyone got any clues to waht i could do if nothing changes when i put my modem to my computer.
View 14 Replies
View Related
Oct 19, 2007
I tried everything, nothing seems to work. I was in IIS for a good 2 hours on my windows box trying to figure out how to setup an FTP on a specific directory. Whats a good program to use for a windows FTP to easily setup a read only FTP. I just want to be able to allow me and my friends to grab the files out of one specific directory.
View 4 Replies
View Related
Jun 1, 2009
I am trying to customize the knoppix CD so that the SSH server can be started while the system has been booted up. I've tried to install the service and setup the appropriate run level (update-rc.d) but still the SSH daemon couldn't be started up automatically. I had to start it up manually while the system is booted up. I have an idea is to put the startup command in the /etc/rc.local, but not sure if that would work, but I prefer to start it up from the run-level. And what about the /etc/inittab, any idea on that?
View 2 Replies
View Related
Dec 19, 2008
My brother is moving from shared to VPS.
Apollo has a managed VPS for $40 (with 20% off for a yearly purchase).
25GB:750GB:512MB
Any problems with this package?
Any problems specifically with Apollo VPS?
View 5 Replies
View Related
Aug 3, 2008
Hey heres what happens when i do a traceroute to amazon - over a maximum of 30 hops:
11 33 ms 35 ms 36 ms ae-7.ebr3.Atlanta2.Level3.net [4.69.134.22]
12 58 ms 53 ms 54 ms ae-2.ebr1.Washington1.Level3.net [4.69.132.86]
13 53 ms 53 ms 53 ms ae-81-81.csw3.Washington1.Level3.net [4.69.134.1
38]
14 47 ms 48 ms 47 ms ae-3-89.edge1.Washington1.Level3.net [4.68.17.14
4]
15 * * AMAZONCOM.edge1.Washington1.Level3.net [4.79.20.14] repo
rts: Destination net unreachable.
Trace complete.
Is there a way my server unreachable without installing a hardware firewall?
View 7 Replies
View Related
Apr 17, 2008
I've ordered 1gbit/s port with one my dedicated servers. But I am still unhappy with the speed of download.
I have 2 mbit DSL connection at home and I can download files with 90 kb/s from the server. I also see the same speed on a 100mbit port server. But I can download files from RapidShare with 210 kb/s..
What do you recommend me to do make faster downloads from server-side?
View 12 Replies
View Related
Aug 28, 2008
Hello. I owned a VPS not long ago, and hosted my WordPress enabled site on there. I used approximately 9 plugin's, all of which are very low-usage and mainly used for the backend. I noticed during every day use the VPS slowed down, is this due to the WordPress script or the VPS itself?
The VPS had 1024mb RAM (1531mb burst), and equal share CPU.
I don't own the VPS now, but would appreciate some answers as I may buy a new one soon to host the same type of site.
View 14 Replies
View Related
Jun 10, 2008
build our our server network for our business and power it with our new 15Mbps/15Mbps Fios Business Plan.
Now I know enough to set up a home network just fine but dealing with a server end is a little different.
What I need a for someone to help me with advise on hardware for our setup ie: Routers, Switches, ect ect
We are looking to start with 2 boxes at this time and may go as big as 5 so we want to be sure we have the equipment to handle it
I would like a Router that allows me to connect 2 uplink connection so if we need to upgrade we can add a 2nd fios line.
a decent router to handle this?
View 6 Replies
View Related
Jul 4, 2007
I did have a chance to really talk with the owner, Navid on the issues I did have and on what was really going on. One of the things I did have trouble was downtime, and I was assured no more of this, and latest news on what was going on.
Some of the new things they're doing
- New support staff, and more
- New servers from DC (Databank?) (which i'll be moved too ;])
- Less or No downtime at all; and total care support
- More support options
and the results are being seen, they immediately solved all my issues hopefully I won't run into them, but dear members who read this, as a owner; I've decided to go sole proprietorship and work sales, support, billing; all from my blackberry and cell phone around the clock, and downtime is the last thing I can have. Currently I have over 125 accounts and being one of the top free hosts, and clients new to the web = lots of questions. So uptime and reliability from a powerful host is needed. I thank BuyAVPS for making the turnarounds and though they've been only for 1 year, they're one of the rare hosts with the right price and great deals.
I must say, they're support team is fabulous and has been helping me out constantly, from installing scripts to great support and now they're offering more support options.
I've been with them for now 3-4 months, or maybe more I've signed up when they started; and they're coming a long way now and soon to be one of the best vps hosts.
View 1 Replies
View Related
Aug 12, 2007
I am executive director of a non-profit organization. As part of our mission, we publish a monthly peer-reviewed academic journal. We receive from 70-100 submissions per month, each which must be reviewed by experts. I am interested in moving the entire peer-review process onto a secure website and need some advice. Here are our needs.
1. Run 10-20 independent peer-review sessions simultaneously.
2. Assign between 3-7 reviewers to individual discussion "rooms" for participation in the peer-review process. The editor must be able to monitor and manage the discussion process.
3. Upload a PDF version of a submitted article into a specific "room" for review.
4. Assign a unique user name that will allow each reviewer to remain anonymous during the review process.
5. Reviewers discuss the merit of the article in a blog format.
6. Close the review session down after one week (no more access). When the room is reopened for another article and new group of reviewers, it would have to be done so with new security settings (i.e. people participating in previous reviewers could no log on and access the same or other rooms at a later date).
7. Compile/summarize the discussion thread and send it to the author.
I was thinking that what we need is basically to set up individual blogs with security settings. However, there may be other better ways to go. I don't know. The most important thing is that the "discussion rooms" would be short-lived, would have a limited number of participants (3-7 plus editor), and a limited number of posts. Submitted articles are between 150-500KB and would be taken down off the site once the review session is closed.
I am having trouble determining what our needs will be for this project in terms of storage space, bandwidth, security requirements, etc. Although we want an attractive site, this will not be for public access. The most important design factors therefore are ease of use, functionality, and reliability.
View 0 Replies
View Related
Jul 8, 2007
I'm getting myself a colocated server in August.
Its quite a 'powerful' one (Q6600, 2GB, 2x160GB). It will be running Windows Server 2003 Standard edition.
I would also like to make a test 2003 installation on the server itself and most likely a Linux Ubuntu) installation too.
Now VPS looks good, but I have some questions about it.
- Can I run 2003 (virtual in VPS) with the same SPLA license?
- Is it possible to give the power of one core of the CPU (since I got four) to a VPS? (so it doesn't stress other cores)
- For example, I host an application on port 5000 (random chosen ) on the non-VPS system, is it possible to host the same application in the VPS system on the same port with an other IP address assigned to it?
- Whats the best (free if possible, shouldn't have many options (just an on/off switch )) way to make a VPS in Windows?
- Is it a problem with servers of these days to push the 'maximum' (or like 80%) out of the network connection (a gigabits or 100MBits)? Are the server response response times (pings) acceptable for gaming when its under such a load?
View 14 Replies
View Related
Jul 5, 2013
I am trying to install Automation, and I keep getting an error after the "Getting SELinux" step, here is a log of the process so far:
Code:
[INFO]: Checking current user privileges...
[INFO]: Checking critical environment requirements...
[INFO]: Determining OS parameters...
[INFO]: Detected OS: CentOS-5-x86_64
[INFO]: Getting SELinux state...
[ERROR]: Unexpected error: ''
[Code] ....
I have tried running the installation on a different server and the same issue came up...
View 19 Replies
View Related
Aug 4, 2009
Let's say you ordered new server,do you make active same moment(install httpd server and all other components)or you running test before like memory and hardware test? If yes,which programs you would recommend to test fully hardware?
View 2 Replies
View Related
