On Plesk 11.5 / Centos 6.5 / Linux
I normally protect a given directory in the Plesk Contral Panel with a Username / Password. I would like to bypass the username and password for visitors from one IP.
I have several customers with wordpress domains. I want to protect these directory's with Nginx on a plesk 12 machine.
I thought:
location /wp-admin/ {
allow 123.123.123.123;
deny all;
satisfy all;
}
would do the trick, but no go, nginx isnt passing it to apache by the looks of it. I tried all kinds of possible solutions but cant get it to work. It works with files though. The logfile says directory index of "/var/www/vhosts/testdomain.eu/httpdocs/wp-admin/" is forbidden. This makes sense, since its turned off.
How to get this to work with plesk 12 and nginx ?
Plesk 11.5.30 Update #47
When I look in a directory password protected by the Plesk Panel, I don't see an .htaccess file...
So, how does Plesk password protect directories?
And, is it possible to add functionality that would limit number of login attempts, and block an offending IP for a period of time?
I have this big problem, when I try to create a new signature, it returns me this error (ProtDir_IIS :: update () failed: Add Protected Directory failed: columns SiteId, path are not unique (Error code 1)).
View 3 Replies View RelatedI got error, can`t access to panel:
ERROR: Service_Agent_Exception
Unable to read apache features from the service node: [Sat Jan 10 12:25:03.013856 2015] [so:warn] [pid 32541] AH01574: module actions_module is already loaded, skipping
[Sat Jan 10 12:25:03.014058 2015] [so:warn] [pid 32541] AH01574: module auth_digest_module is already loaded, skipping
[Sat Jan 10 12:25:03.014694 2015] [so:warn] [pid 32541] AH01574: module authz_user_module is already loaded, skipping
[Code] ....
When I try to migrate from old server to new server, I get this error:
Warning: Deployer has been terminated by exception: Line 471 error: Element 'certificates': This element is not expected. Expected is one of ( sb-config, backup-settings, server-preferences, spamassassin, grey-listing, virusfilter, kav-settings, coldfusion, gapps-services, events ).
I have just upgraded linux VPS running ubuntu 10. I installed all of the latest plesk updates first and then went through the upgrade. There were no pre-upgrade warnings and message at the end said it was successful but i'm now getting the following error instead of the login page:
ERROR: Exception
Function not implemented
Since hour ago my sites just stopped and Plesk, too. Error when trying to open plesk is:
ERROR: Zend_Db_Adapter_Exception: SQLSTATE[HY000] [2002] No such file or directory (Abstract.php:144)
Plesk just won't start.
I'm currently experiencing a lot of problems, using Horde. Users are not able to log-in due to this error:
Code:
2014-10-09T10:00:54+02:00 EMERG: HORDE Uncaught exception 'Horde_Exception_PushApp' with message 'User xxx@yyy.tld is not authorized for Horde.' in /usr/share/psa-pear/pear/php/Horde/Registry.php:1555
Stack trace:
#0 /usr/share/psa-pear/pear/php/Horde/Registry.php(1198): Horde_Registry->pushApp('horde', Array)
[Code] .....
I've already tried re-installing Horde, but without success.
There's an article in your KB, but `/var/lib/php/session` does not exist and `/var/lib/php5/sessions` has the required perms.
I've also tried to set session.save_path to `/var/lib/php5/sessions` in `/etc/psa-webmail/horde/horde/php.ini` and after a restart, sessions are written into that directory. But the problem still exists.
Code:
_b|i:1412842564;_r|i:1412864164;horde|a:25:{s:11:"auth/authId";s:13:" xxx@yyy.tld";s:12:"auth/browser";s:110:" Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.101 Safari/537.36";s:16:"auth/credentials";s:4:" imp";s:15:"auth/remoteAddr";s:15:" my.ip.addr.ess";s:11:"auth/userId";s:13:"
[Code] .....
A client wants to FTP some files to my server but I don't want him to see/have access to all the other stuff on the server. Is there a way that I can 'corden-off' an area for him to FTP stuff to? A password protected area perhaps?
View 2 Replies View RelatedI was wondering if it would be advisable to use the Password Protected Directory option in cPanels to limit part of my website to no more than 1,000 paying customers (yearly subsciption). Can cPanels handle this? Would accessing .htaccess and .htpassword to authenticate be too slow? Would management become too much? Has anyone attempted this? Are there any good alternatives such as open source programs? I've looked and found a few that are expensive and do way more than what I need.
View 2 Replies View RelatedSeems everythings is working normal when ignoring following error message, but everytime I add or change mail settings for a domain, I am getting this error:
Internal error.
ERROR:
Uncaught exception 'Zend_Log_Exception' with message '"/var/log/plesk/panel.log"
cannot be opened with mode "a"' in /usr/local/psa/admin/externals/Zend/Log/Writer/Stream.php:81
Stack trace: #0 /usr/local/psa/admin/plib/Plesk/Log.php(69): Zend_Log_Writer_Stream->__construct
[Code] .....
I have 2 domains on 1 account. My main website is www.aviationcafe.net and i added on www.modelcuir.com thats what it looks like to the public. But with my host it will be www.modelcuir.aviationcafe.net.
I noticed in the files area that modelcuir is it's own file, i can password protect that but it will stop people getting onto the website completly and i only want to stop them getting into the members area.
I can't create a members area either unless i can add a new folder which i can't i dont think.
I've got a file I want to access via cURL that is within a password protected directory.
I've tried sending:
Code:
$headers = array(
"HTTP_AUTH_LOGIN: admin3e",
"HTTP_AUTH_PASSWD: opensesame",
"Content-Type: text/html"
);
curl_setopt($curl, CUROPT_HTTPHEADER, &$headers);
(insecure)
and:
Code:
curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
curl_setopt($curl, CURLOPT_USERPWD, '[user]:[pass]');
but I can't figure out how to get past the login:
Authorization Required
This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn't understand how to supply the credentials required.
Apache/2.0.52 (CentOS) Server at ****** Port 80
I have been trying to get password protected directories working on my Linode server. It works / behaves in a desktop browser somewhat but not like I am used to with hostmonster. Also for some reason my phone (windows phone just loads the page in the protected directory without prompting for a password. So I imagine there is some security thing I am missing that none of the info I have found searching talks about. Here is what I have done. I have created a password file and set the permissions correctly on that and it works on the desktop. However when I close the browser or open a private browsing session I am never prompted for a password again. It just feels insecure. Plus my windows phone just loads the page with no prompt. With hostmonster if I closed the browser window it would ask me for the username and password again. I also tested hostmonster directory passwords on my phone and it prompts for a username/password.
Here is what I have added to the apache2.conf file. The rest is pretty much default. There is no .htaccess file for that directory.
<Directory "/var/www/protected">
AllowOverride All
AuthType basic
AuthName "Enter Login"
AuthUserFile /etc/htpasswd/.htpasswd
Require valid-user
Order deny,allow
Allow from user1
</Directory>
It may be worth noting that I have two virtual sites / domain names running on this server at the moment however the one that is being used for this is the primary domain name.
OS: Debian 7.3
Apache 2.2.22
System
12.0.18 CentOS 6 1200150126.15
micro update - 48
trying to restore a backup from a different plesk 12 server but it keeps giving me this error
Internal error.
ERROR: Zend_Controller_Exception: Permission denied.#0 /usr/local/psa/admin/plib/CommonPanel/Controller/Action/Abstract.php(191): CommonPanel_Controller_Action_Abstract->_checkForgeryProtectionToken()
#1 /usr/local/psa/admin/externals/Zend/Controller/Action.php(502): CommonPanel_Controller_Action_Abstract->preDispatch()
#2 /usr/local/psa/admin/externals/Zend/Controller/Dispatcher/Standard.php(295): Zend_Controller_Action->dispatch('errorAction')
#3 /usr/local/psa/admin/externals/Zend/Controller/Front.php(954): Zend_Controller_Dispatcher_Standard->dispatch(Object(Zend_Controller_Request_Http), Object(Zend_Controller_Response_Http))
#4 /usr/local/psa/admin/plib/Application/Web.php(38): Zend_Controller_Front->dispatch(NULL)
#5 /usr/local/psa/admin/htdocs/application.php(15): PleskApplication_Web->run()
#6 {main} (Broker.php:336)
The backup was saved on a personal ftp repository ...
today i changed the password for the admin panel for a customer (username eg. mylogin). 10 minutes later he called me and said that he cannot get into his emailaccount anymore. Checked the password and saw that the emailpassword for his emailaddress (eg. mylogin@mydomain.com) is now the same from the admin panel login. So i changed the emailpassword and checked the admin panel login - it now has the emailpassword. What a mess.. I'm running Plesk Panel 11.5.30 MU47.
View 1 Replies View RelatedWhen I use password protection using cPanel I have the following issue which is illustrated using the following example:
Main folder: X
Sub folders inside X: A, B
All three folders are password protected.
If a user has access to X, I would like that user to have access to A and B as well automatically. But this does not happen. I need to manually add this user to both A and B as well.
If a user has access to A, I would not like that user to have access to X. This is possible to do.
How i get a new Password for a SSH Connection?
Plesk 12, CentOS 6.5
from some time, the plesk password is no more stored in chrome.I mean that even I delete all passwords/history etc chrome don't ask to save password...so something changed in the login page I suppose.from same time every time I connect to any plesk panel. Chrome say that it's not safe and I have to click "advanced" to continue, even it's a new installation make some minute before.
View 6 Replies View RelatedWhat is the proper way. to password protect a directory for apache 2.4.7. Information i gather seems to not work.
View 4 Replies View RelatedI get an error when i try to access my webmail(horde) over the i-net i get error Unable to get webmail password every time. The error appeared when i upgraded from 11.09 to 11.5. I also followed this tutorial but it didn't worked too. --> [URL] ....
View 8 Replies View RelatedAre that possible to change root password on plesk?
I have a man so work for me on my server and install double php version on my server and maybe it`s best and change password to root!
So no one have access to my root more.
i have installed phpMyAdmin becouse I don't like the limitation of db management of Plesk, but I can't find the root password to access in it. I read that Plesk rename "root" user in "admin", but I can't find the password. Where is it?
View 4 Replies View RelatedI use bluehost's pagewizard. So i created the members.htm then moved it to a password protected directory.
I don't know how to get the pics to show up, i only know that the location of the images is in wizard images.
I am seeing some some some strange behaviour when password protecting directories served by nginx and PHP-FPM. If I have a site set up so that 'Process PHP by nginx' is selected under ('Websites & Domains>Web Server Settings>nginx settings') and set up password protection ('Websites & Domains>Password-Protected Directories') PHP pages are still served without asking for a password.
If I untick 'Process PHP by nginx' the behaviour returns to normal and an attempt to any access files results in the password request.Is this behaviour by design? If so, it is not made clear when you set up the password protection that it will not apply to PHP pages if you have nginx process the PHP pages.
OS: CentOS 6.6 (Final)
Plesk version: 12.0.18 Update #51
To be clear i don't mean the wp-config.php admin password for mysql but the wordpress Plesk admin account that is associated with Log in button
For some reason my user has lost his password and is not able to use the Wordpress forgot password - wizard form at the page where you normally logged on.
I have tried to reset the password via Change Account on the WordPress Installation and it came back with the message
Error: Unable to find the specified administrator account in WordPress. Specify the username of your administrator's account in WordPress. This account will be associated with Plesk.
I have tried to add another admin via MySQL with this [URL] ... and that didn't work either.
I try to change a mysql user password, but I get an error message:
Fehler: attribute name is invalid: status
Search for related Knowledge Base articles
I'm running12.0.18 Update Nr. 39
Is it possible, that the script changes my admin password for MySQL? I can not connect to my MySQL Server any more.
View 1 Replies View Related