Squirrelmail And Open_basedir
Apr 14, 2009I got a VPS with CentOs installed and it is using LxAdmin and i got this problem:
I installed Squirrelmail but it isn't working because open_basedir is enabled.
I do not want to disable open_basedir,
ADVERTISEMENT
Squirrelmail
Sep 5, 2007Getting this error when logging into squirrelmail. Forced cpanel update on stable version did not fix it.
Warning: session_start() [function.session-start]: open(/tmp/sess_deleted, O_RDWR) failed: Permission denied (13) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/i18n.php on line 335
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 377
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 379
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/src/login.php on line 64
Warning: session_start() [function.session-start]: open(/tmp/sess_deleted, O_RDWR) failed: Permission denied (13) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/plugins/login_auth/functions.php on line 53
Warning: Unknown(): open(/tmp/sess_deleted, O_RDWR) failed: Permission denied (13) in Unknown on line 0
Warning: Unknown(): Failed to write session data (files). Please verify that the current setting of session.save_path is correct (/tmp) in Unknown on line 0
Open_basedir Off
Apr 20, 2009I have dedicated server and my panel is lxadmin.
Anybody know how can i make off on php.ini the open_basedir ?
I have to install one script on my server this open_basedir have to be disable.
Open_basedir In Php 4.4.6
Apr 25, 2007I've just upgraded my apache install to Apache 2.0.59 and PHP 4.4.6 and suddenly open_basedir has stopped working. I have an open_basedir setting in each vhost configuration that used to work fine on php 4.3.9, now upgraded it thinks there is no path specified and I'm getting the usual failures where my scripts are not allowed to write to a directory.
Has anyone else seen this or knows what's happening? I'm on 64-bit Centos 4.4
Horde, SquirrelMail Or RoundCube
Jul 21, 2008I am seeking recommendation on which of the following webmail interface should I use:
Horde, SquirrelMail or RoundCube
I have tried squirrelmail and I am searching for more features - would prefer something similar to outlook/yahoo etc.
Cannot Login Through Webmail ( Squirrelmail )
Aug 4, 2008I have having some issues with sending/receiving email. I have the following running on my linux virtual dedicated server with godaddy:
Postfix
IMAP
Squirrelmail(webmail)
My problem is: I can logon through webmail using the domain account but I cannot logon using any email accounts I created. I can also send emails out from the server from the command line i.e.:
root@myserver.com# echo "test" | mail -s testsubject someemail@hotmailorwherever.com
So instead of using webmail, I tried using OUTLOOK and experienced the same issue. I can logon using the domain/system account but not any using any of the email accounts i created using simple control panel.
Replacing Squirrelmail With Roundcube
Oct 18, 2007I have Squirrelmail installed on a VPS running CentOS with ControlZX as a control panel and I'd like to replace it with Roundcube. What I'm trying to do is make it so that the Roundcube webmail application is accessible through every domain on the VPS (e.g. domain1.com/webmail , domain23.com/webmail) without having to manually install it on every domain separately. Also, because I have resellers hosted on this VPS I don't want to just install Roundmail on our main domain and provide that as the official webmail access area because then our reseller's customers would have no choice but to access their webmail via our domain. For obvious reasons most resellers would prefer to keep their provider's presence in their own business transparent.
I know Roundcube supports "virtual users" and have a basic understanding of how that works, but I am unsure how setup Roundcube so that it can be accessed from any domain on the box. Where should I install it?
I've heard plenty of users talk about using Roundcube as a replacement to Squirrelmail so I have to assume it can be used in the way that I'm talking about (that is, not needing to be installed on every individual domain manually).
For those of you that have done this, can you please describe how you accomplished it?
I also don't have a problem hiring someone to help us complete this but am still interested in knowing how to go about it.
Is Anything Other Than Open_basedir Even Needed?
Dec 9, 2008Assuming that an account on my server is hacked into, is open_basedir enough to protect other users on the same server? I would assume so, since php would not have access to those other accounts? Why is suphp needed?
Ofcourse, I also disabled dynamic loading of modules (apache) and added some disable_functions list.
Open_basedir , Safe_mode
Feb 1, 2008when I make open_basedir effect in whm > security center
I have in my script this problem :
Warning: tempnam() [function.tempnam]: open_basedir restriction in effect. File() is not within the allowed path(s): (/home/xxxx/:/usr/lib/php:/usr/local/lib/php:/tmp) in /admincp/misc.php on line 685Warning: fwrite(): supplied argument is not a valid stream resource in /admincp/misc.php on line 688Warning: fclose(): supplied argument is not a valid stream resource in /admincp/misc.php on line 689
when I disable it I have this other one problem :
Warning: fopen() [function.fopen]: SAFE MODE Restriction in effect. The script whose uid is 32010 is not allowed to access /tmp/vbthumbLTfVOk owned by uid ..
Turn Off Open_basedir
Mar 31, 2008How can I turn off open_basedir completely from within .htaccess?
I'm finding conflicting advice on how this can be done, or even if it can.
Open_basedir Line.
Jun 3, 2007to append the directory that the accounting.php.inc file is located in to the open_basedir line.
How do i do it, where n how do i make these changes.
Open_Basedir Configuration
May 17, 2007I can't correct configure the open_basedir. Safe_mode on server is enabled. Now path to accounts is: /var/www/webx/ . I would like change this path to /webx/ On server are some accounts. How can I do it?
What I did:
-> I set path in php.ini file (/etc/php4/apache2) in open_basedir = line to:
/webx/ and /var/www/webx/ too. Without effect.
-> I added
<Directory /webx/>
php_admin_value open_basedir /webx/
</Directory>
in /etc/apache2/apach2.conf and /etc/apache2/confixx_mhost.conf
Without effect.
After any change I was restarting the apache service through /etc/init.d/apache2 restart, of course.
Open_basedir Restriction
Oct 14, 2007About the 29th of last month my crons quit working properly, they are still ran but they did nothing.. I finally found out that its giving me an open_basedir error...
I am trying to run the crons from /home/<user>/crons/...
The first few lines of the PHP Code includes some required files that are used by the rest of the site...
PHP Code:
$root_path = "/home/<user>/public_html/";
include($root_path . "includes/common.php");
However, when the cron is ran I get the following email...
Quote:
X-Powered-By: PHP/5.2.1
Content-type: text/html
Warning: include() [function.include]: open_basedir restriction in effect. File(/home/<user>/public_html/includes/common.php) is not within the allowed path(s): (0) in /home/<user>/public_html/live.php on line 7
Warning: include(/home/<user>/public_html/includes/common.php) [function.include]: failed to open stream: Operation not permitted in /home/<user>/public_html/live.php on line 7
Warning: include() [function.include]: Failed opening '/home/<user>/public_html/includes/common.php' for inclusion (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home/<user>/public_html/live.php on line 7
test
Notice: Undefined variable: db in /home/<user>/public_html/live.php on line 11
Fatal error: Call to a member function query() on a non-object in /home/<user>/public_html/live.php on line 11
WHM 11.11.0 cPanel 11.15.0-R17665
CENTOS Enterprise 4.5 i686 on standard - WHM X v3.1.0
Apache version1.3.39 (Unix)
PHP version5.2.1
MySQL version4.1.22-standard
(Paths have the correct username, I replaced the usernames with <user>...)
How To Configure Open_basedir
Sep 26, 2007I want to include script wpisz.php from /srv/www/vhosts/default/htdocs into /srv/www/vhosts/domena.pl/httpdocs/, but i recive this error:
Code:
Warning: main() [function.main]: open_basedir restriction in effect. File(/srv/www/vhosts/domena.pl/httpdocs/wpisz.php) is not within the allowed path(s): (/srv/www/vhosts/default/htdocs:/tmp) in /srv/www/vhosts/default/htdocs/index.php on line 3
Warning: main(/srv/www/vhosts/domena.pl/httpdocs/wpisz.php) [function.main]: failed to open stream: Operation not permitted in /srv/www/vhosts/default/htdocs/index.php on line 3
Warning: main() [function.include]: Failed opening '/srv/www/vhosts/domena.pl/httpdocs/wpisz.php' for inclusion (include_path='.:/usr/share/php') in /srv/www/vhosts/default/htdocs/index.php on line 3
So, I ask you to help me to set it up (propably open_basedir) in that way in which will it work fine. But please.. use a simple language and describe the solution step-by-step because I'm not doing well whith this..
Virtual Open_basedir
Oct 8, 2007I'm running a apache2 webserver with php5 and vhost_alias.
I like to use open_basedir virtual:
VirtualDocumentRoot /www/%0
php_admin_value open_basedir "/www/%0:/usr/share/php:/tmp"
Squirrelmail .abook Files Location
Apr 6, 2009on a server with CentOS 5.2 and cPanel 11.24.4, Apache 2.2.11
i need to find where does squirrelmail save the .abook files.
on my servers should be at /usr/local/cpanel/base/3rdparty/squirrelmail/data but there are only 3 files in there: .htaccess, default_pref and index.php
is there any place where squirrelmail might save these files? or a database perhaps? i couldn't manage to locate them.
Squirrelmail Password Change Option
Sep 12, 2007I have 2 question regarding squirrel mail web interface..
1- Can a user change his mailbox password?
2- Is mailing forwarding option include in it?
Squirrelmail/Nutsmail Stopped Working
Sep 17, 2007Getting the following error in webmail when I try to acces nutsmail(squirrelmail):
Warning: strpos() [function.strpos]: Empty delimiter. in /usr/local/cpanel/base/3rdparty/squirrelmail/plugins/administrator/auth.php on line 34
Install SquirrelMail Using The Application Vault
Jan 1, 2007Does anybody know how to install SquirrelMail using the application vault in Plesk 8.1?
View 8 Replies View RelatedDisable Open_basedir In Plesk
Aug 10, 2009How to disable open_basedir in plesk enabled server. I want to disable it server wide.
View 7 Replies View RelatedSafe Mode OFF And Open_basedir Set...
Jan 18, 2008I am going to run a free host, yes I know I should post this in FWHT but well, they dont answer very fast if at all.
It is very dangerous to have Safe Mode OFF on a free host, but someone was telling me about open_basedir, which makes it so they cant touch any files set outside of open_basedir. Would this be suffiecient to keep them from touching others files? I know I need to disable other functions like exec() and stuff but would open_basedir keep hackers away from others files and hacking them...
Open_basedir With Virtual Host
Feb 5, 2008I am trying to do open_basedir in my httpd.conf file using wildcards so I dont have to set it up for EACH account.
Here is my Virtual Host part in my conf:
<VirtualHost *>
VirtualDocumentRoot /www/%2+/%1.1/%1.2/%1.3/%1/htdocs/
RewriteEngine On
RewriteCond %{HTTP_HOST} ^www..*$
RewriteRule ^(.+) %{HTTP_HOST}$1 [C]
RewriteRule ^www.(.+) http://$1 [P]
RequestHeader unset Accept-Encoding
RequestHeader unset Content-Encoding
</VirtualHost>
I have tried putting:
php_admin_value open_basedir /www/%2+/%1.1/%1.2/%1.3/%1/htdocs/
But I get this error looking at ANY PAGE:
Fatal error: Can't load /www/fatehost.net/a/l/d/aldo/htdocs/{FILE_IM_ON}, open_basedir restriction. in Unknown on line 0
Cpanel PHP Open_basedir Tweak
May 10, 2008if i enable PHP open_basedir Tweak in cpanel, it disables all sites and none load, do note that the other tweak called Apache mod_userdir Tweak is also enabled.
Now i am wondering is if they both clash with each other to compete for the security ?
Anyone else noticed this also?
Info :
WHM 11.15.0 cPanel 11.18.6-S24255
CENTOS Enterprise 5 i686 on standard - WHM X v3.1.0
Open_basedir + CURL FOLLOW_LOCATION
Oct 23, 2007Is there a way to configure the open_basedir to allow cURL to FOLLOW_LOCATION? I'd like to keep the open_basedir enabled for security but at the same time, I need my site to function properly and that's not a possibility with FOLLOW_LOCATION not working.
View 6 Replies View RelatedSquirrelmail :: Login Logout Page Freeze
May 31, 2009I've recently upgraded squirrelmail to latest version, and now I get problem like 3 or 4 times when u login and logout and try to login again the page freezes and gets stuck it's saying "connected waiting for reply" it keeps happening not only to me but every user in the server (multiple connections and multiple computers)
View 4 Replies View RelatedHorde/squirrelmail:: DB Error: Connect Failed
Jul 14, 2008trying to get into my horde or squirrelmail account on my server and getting the following:
A fatal error has occurred
DB Error: connect failed
Details have been logged for the administrator.
Squirrelmail Ensim- Forbidden When Forwarding Mail :S
Mar 6, 2007This is my problem.. on an Ensim box....
After login in using domain.com/webmail, everything is fine while I attempt to send mail.. but, If I try to forward an existen mail to a new destiny, an error message appears:
Forbidden
You don't have permission to access /webmail/src/compose.php on this server.
Already checked for allow/deny settings over httpd.conf and over the httpd conf for thiss site in particuular.
Directories at this site, are:
Code:
[root@server4.wolololo.com:~]pwd
/home/virtual/site2/fst/var/www/squirrelmail
[root@server4.wolololo.com:~]ls -ahl
total 240K
drwxr-xr-x 15 admin2 admin2 4.0K mar 6 16:43 .
drwxr-xr-x 10 root root 4.0K ago 18 2005 ..
-rw-r--r-- 1 admin2 admin2 8.3K mar 6 16:43 AUTHORS
-rw-r--r-- 1 admin2 admin2 66K mar 6 16:43 ChangeLog
-rw-r--r-- 1 admin2 admin2 8.1K mar 6 16:43 ChangeLog.locales
drwxr-xr-x 5 admin2 admin2 4.0K mar 6 16:43 class
drwxr-xr-x 2 admin2 admin2 4.0K mar 6 16:43 config
-rw-r--r-- 1 admin2 admin2 102 mar 6 16:43 configure
drwxr-xr-x 3 admin2 admin2 4.0K mar 6 16:43 contrib
-rw-r--r-- 1 admin2 admin2 15K mar 6 16:43 COPYING
-rw-r--r-- 1 admin2 admin2 15K mar 6 16:43 COPYING.locales
drwxr-xr-x 4 admin2 admin2 4.0K mar 6 16:43 doc
drwxr-xr-x 4 admin2 admin2 4.0K mar 6 16:43 functions
drwxr-xr-x 29 admin2 admin2 4.0K mar 6 16:43 help
drwxr-xr-x 2 admin2 admin2 4.0K mar 6 16:43 images
drwxr-xr-x 3 admin2 admin2 4.0K mar 6 16:43 include
-rw-r--r-- 1 admin2 admin2 684 mar 6 16:43 index.php
-rw-r--r-- 1 admin2 admin2 221 mar 6 16:43 install
-rw-r--r-- 1 admin2 admin2 8.7K mar 6 16:43 INSTALL
drwxr-xr-x 50 admin2 admin2 4.0K mar 6 16:43 locale
drwxr-xr-x 18 admin2 admin2 4.0K mar 6 16:43 plugins
drwxr-xr-x 2 admin2 admin2 4.0K mar 6 16:43 po
-rw-r--r-- 1 admin2 admin2 2.6K mar 6 16:43 README
-rw-r--r-- 1 admin2 admin2 4.7K mar 6 16:43 ReleaseNotes
-rw-r--r-- 1 admin2 admin2 2.5K mar 6 16:43 ReleaseNotes.locales
drwxr-xr-x 2 admin2 admin2 4.0K mar 6 16:43 src
drwxr-xr-x 3 admin2 admin2 4.0K mar 6 16:43 themes
-rw-r--r-- 1 admin2 admin2 4.6K mar 6 16:43 UPGRADE
-rw-r--r-- 1 admin2 admin2 43 mar 6 16:43 version
Code:
[root@server4.wolololo.com:~]ls -alh src/
total 428K
drwxr-xr-x 2 admin2 admin2 4.0K mar 6 16:43 .
drwxr-xr-x 15 admin2 admin2 4.0K mar 6 16:43 ..
-rw-r--r-- 1 admin2 admin2 1.1K mar 6 16:43 addrbook_popup.php
-rw-r--r-- 1 admin2 admin2 10K mar 6 16:43 addrbook_search_html.php
-rw-r--r-- 1 admin2 admin2 10K mar 6 16:43 addrbook_search.php
-rw-r--r-- 1 admin2 admin2 20K mar 6 16:43 addressbook.php
-rw-r--r-- 1 admin2 admin2 62K mar 6 16:43 compose.php
-rw-r--r-- 1 admin2 admin2 14K mar 6 16:43 configtest.php
-rw-r--r-- 1 admin2 admin2 2.2K mar 6 16:43 delete_message.php
-rw-r--r-- 1 admin2 admin2 4.6K mar 6 16:43 download.php
-rw-r--r-- 1 admin2 admin2 2.4K mar 6 16:43 empty_trash.php
-rw-r--r-- 1 admin2 admin2 2.4K mar 6 16:43 folders_create.php
-rw-r--r-- 1 admin2 admin2 4.7K mar 6 16:43 folders_delete.php
-rw-r--r-- 1 admin2 admin2 11K mar 6 16:43 folders.php
-rw-r--r-- 1 admin2 admin2 2.4K mar 6 16:43 folders_rename_do.php
-rw-r--r-- 1 admin2 admin2 2.5K mar 6 16:43 folders_rename_getname.php
-rw-r--r-- 1 admin2 admin2 2.2K mar 6 16:43 folders_subscribe.php
-rw-r--r-- 1 admin2 admin2 6.7K mar 6 16:43 help.php
-rw-r--r-- 1 admin2 admin2 1.9K mar 6 16:43 image.php
-rw-r--r-- 1 admin2 admin2 492 mar 6 16:43 index.php
-rw-r--r-- 1 admin2 admin2 16K mar 6 16:43 left_main.php
-rw-r--r-- 1 admin2 admin2 5.9K mar 6 16:43 login.php
-rw-r--r-- 1 admin2 admin2 2.5K mar 6 16:43 mailto.php
-rw-r--r-- 1 admin2 admin2 8.5K mar 6 16:43 move_messages.php
-rw-r--r-- 1 admin2 admin2 16K mar 6 16:43 options_highlight.php
-rw-r--r-- 1 admin2 admin2 6.0K mar 6 16:43 options_identities.php
-rw-r--r-- 1 admin2 admin2 5.4K mar 6 16:43 options_order.php
-rw-r--r-- 1 admin2 admin2 17K mar 6 16:43 options.php
-rw-r--r-- 1 admin2 admin2 9.6K mar 6 16:43 printer_friendly_bottom.php
-rw-r--r-- 1 admin2 admin2 1.4K mar 6 16:43 printer_friendly_main.php
-rw-r--r-- 1 admin2 admin2 1.3K mar 6 16:43 printer_friendly_top.php
-rw-r--r-- 1 admin2 admin2 32K mar 6 16:43 read_body.php
-rw-r--r-- 1 admin2 admin2 6.2K mar 6 16:43 redirect.php
-rw-r--r-- 1 admin2 admin2 7.6K mar 6 16:43 right_main.php
-rw-r--r-- 1 admin2 admin2 19K mar 6 16:43 search.php
-rw-r--r-- 1 admin2 admin2 2.8K mar 6 16:43 signout.php
-rw-r--r-- 1 admin2 admin2 7.9K mar 6 16:43 vcard.php
-rw-r--r-- 1 admin2 admin2 4.3K mar 6 16:43 view_header.php
-rw-r--r-- 1 admin2 admin2 3.4K mar 6 16:43 view_text.php
-rw-r--r-- 1 admin2 admin2 5.2K mar 6 16:43 webmail.php
As you can see, permissions on file and directories are OK...
Chdir Not Working Due To Open_basedir Restriction
Feb 21, 2008I am trying to use chdir() in one of my scripts. However, I am getting an open_basedir restriction error. I have checked the php.ini and the value is not set (which as I understand should disable open_basedir).
View 4 Replies View RelatedPostfix+MySQL+Courier-IMAP+Spamassassin+SquirrelMail ...issue
Feb 11, 2007Hopefully I'm posting this in the correct area. Our server runs CentOS 4.4 on x86_64 arch.
So basically everything was going rather smoothly...
Problems began to arise at the point where I finished installing/configuring SquirrelMail. Upon logging in, I saw this:
[see attachment]
Ok, so I checked maillog and saw:
Feb 11 13:50:46 zeus imapd: LOGIN, user=alex, ip=[::ffff:127.0.0.1], protocol=IMAP
Feb 11 13:50:47 zeus imapd: Failed to connect to socket /tmp/fam--
Feb 11 13:50:47 zeus imapd: Failed to create cache file: maildirwatch (alex)
Feb 11 13:50:47 zeus imapd: Error: Input/output error
Feb 11 13:50:47 zeus imapd: Check for proper operation and configuration
Feb 11 13:50:47 zeus imapd: of the File Access Monitor daemon (famd).
Feb 11 13:50:47 zeus imapd: DISCONNECTED, user=alex, ip=[::ffff:127.0.0.1], headers=0, body=0, rcvd=21, sent=57, time=1
So I did some searching and determined it was a problem with Courier-IMAP being compiled with File Alteration Monitor support and famd not running (I built RPM directly from source tarball without any customization whatsoever per the instructions on the Courier website).
I found some possible solutions to be:
1) Install and run fam and be sure portmapper is running as well (problem being is that fam has since been replaced by gamin on CentOS, which is installed properly on my system).
2) Do a source install of Courier-IMAP and --disable-fam
Ok, so route 1 went like this: I uninstalled gamin, found fam-2.6.8, installed it, started it manually, made sure portmapper was running and tried again. This time, I still got the same errors in SquirrelMail, but the errors in maillog didn't show up. However, shortly after the page loaded, the famd process I had started manually promptly ended without my intervention. Ok, onto trying #2.
Route 2 went like this: reinstalled gamin, then I tried building a custom RPM by manually configuring with --disable-fam and then using rpmbuild -bc --short-circuit and rpmbuild -bi --short-circuit. That didn't change anything at all, I still had the same errors both with SquirrelMail and in maillog. Then I said ok, I'll just do a complete source install. ./configure --disable-fam && make && make install. Manually started that server, tried again, same deal, both errors.
So I've got problems. Either with Courier-IMAP, SquirrelMail, or both. The other daemons seem to run fine, I just mentioned them in case of the possibility of some kind of (unknown to me) conflict.
If you need to see any of my configs, let me know...any information greatly appreciated...I'm desperate.
Squirrelmail: Email Arrives With Different Time Than Server Time
Nov 11, 2008This is a rare issue i have on a RHEL 5.2 + cPanel server.
Server time is:
Tue Nov 11 17:02:51 CST 2008
Squirrelmail time show:
Code:
Last Refresh:
Tue, 5:02 pm
So, that is correct too..
But email arrives with -4 hours time, example:
webmaster@xxx.com 1:03 pm testing email
I already rebooted httpd, exim, and imap server, and the server itself too.. and problem stills.
