Getting this error when logging into squirrelmail. Forced cpanel update on stable version did not fix it.
Warning: session_start() [function.session-start]: open(/tmp/sess_deleted, O_RDWR) failed: Permission denied (13) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/i18n.php on line 335
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 377
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 379
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/src/login.php on line 64
Warning: session_start() [function.session-start]: open(/tmp/sess_deleted, O_RDWR) failed: Permission denied (13) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php on line 405
Warning: Cannot modify header information - headers already sent by (output started at /usr/local/cpanel/base/3rdparty/squirrelmail/functions/global.php:405) in /usr/local/cpanel/base/3rdparty/squirrelmail/plugins/login_auth/functions.php on line 53
Warning: Unknown(): open(/tmp/sess_deleted, O_RDWR) failed: Permission denied (13) in Unknown on line 0
Warning: Unknown(): Failed to write session data (files). Please verify that the current setting of session.save_path is correct (/tmp) in Unknown on line 0
I've just upgraded my apache install to Apache 2.0.59 and PHP 4.4.6 and suddenly open_basedir has stopped working. I have an open_basedir setting in each vhost configuration that used to work fine on php 4.3.9, now upgraded it thinks there is no path specified and I'm getting the usual failures where my scripts are not allowed to write to a directory.
Has anyone else seen this or knows what's happening? I'm on 64-bit Centos 4.4
I have having some issues with sending/receiving email. I have the following running on my linux virtual dedicated server with godaddy:
Postfix IMAP Squirrelmail(webmail)
My problem is: I can logon through webmail using the domain account but I cannot logon using any email accounts I created. I can also send emails out from the server from the command line i.e.:
root@myserver.com# echo "test" | mail -s testsubject someemail@hotmailorwherever.com
So instead of using webmail, I tried using OUTLOOK and experienced the same issue. I can logon using the domain/system account but not any using any of the email accounts i created using simple control panel.
I have Squirrelmail installed on a VPS running CentOS with ControlZX as a control panel and I'd like to replace it with Roundcube. What I'm trying to do is make it so that the Roundcube webmail application is accessible through every domain on the VPS (e.g. domain1.com/webmail , domain23.com/webmail) without having to manually install it on every domain separately. Also, because I have resellers hosted on this VPS I don't want to just install Roundmail on our main domain and provide that as the official webmail access area because then our reseller's customers would have no choice but to access their webmail via our domain. For obvious reasons most resellers would prefer to keep their provider's presence in their own business transparent.
I know Roundcube supports "virtual users" and have a basic understanding of how that works, but I am unsure how setup Roundcube so that it can be accessed from any domain on the box. Where should I install it?
I've heard plenty of users talk about using Roundcube as a replacement to Squirrelmail so I have to assume it can be used in the way that I'm talking about (that is, not needing to be installed on every individual domain manually).
For those of you that have done this, can you please describe how you accomplished it?
I also don't have a problem hiring someone to help us complete this but am still interested in knowing how to go about it.
Assuming that an account on my server is hacked into, is open_basedir enough to protect other users on the same server? I would assume so, since php would not have access to those other accounts? Why is suphp needed?
Ofcourse, I also disabled dynamic loading of modules (apache) and added some disable_functions list.
when I make open_basedir effect in whm > security center
I have in my script this problem :
Warning: tempnam() [function.tempnam]: open_basedir restriction in effect. File() is not within the allowed path(s): (/home/xxxx/:/usr/lib/php:/usr/local/lib/php:/tmp) in /admincp/misc.php on line 685Warning: fwrite(): supplied argument is not a valid stream resource in /admincp/misc.php on line 688Warning: fclose(): supplied argument is not a valid stream resource in /admincp/misc.php on line 689
when I disable it I have this other one problem :
Warning: fopen() [function.fopen]: SAFE MODE Restriction in effect. The script whose uid is 32010 is not allowed to access /tmp/vbthumbLTfVOk owned by uid ..
I can't correct configure the open_basedir. Safe_mode on server is enabled. Now path to accounts is: /var/www/webx/ . I would like change this path to /webx/ On server are some accounts. How can I do it?
What I did:
-> I set path in php.ini file (/etc/php4/apache2) in open_basedir = line to: /webx/ and /var/www/webx/ too. Without effect.
-> I added <Directory /webx/> php_admin_value open_basedir /webx/ </Directory>
in /etc/apache2/apach2.conf and /etc/apache2/confixx_mhost.conf
Without effect.
After any change I was restarting the apache service through /etc/init.d/apache2 restart, of course.
About the 29th of last month my crons quit working properly, they are still ran but they did nothing.. I finally found out that its giving me an open_basedir error...
I am trying to run the crons from /home/<user>/crons/... The first few lines of the PHP Code includes some required files that are used by the rest of the site...
However, when the cron is ran I get the following email...
Quote:
X-Powered-By: PHP/5.2.1 Content-type: text/html
Warning: include() [function.include]: open_basedir restriction in effect. File(/home/<user>/public_html/includes/common.php) is not within the allowed path(s): (0) in /home/<user>/public_html/live.php on line 7
Warning: include(/home/<user>/public_html/includes/common.php) [function.include]: failed to open stream: Operation not permitted in /home/<user>/public_html/live.php on line 7
Warning: include() [function.include]: Failed opening '/home/<user>/public_html/includes/common.php' for inclusion (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home/<user>/public_html/live.php on line 7 test Notice: Undefined variable: db in /home/<user>/public_html/live.php on line 11
Fatal error: Call to a member function query() on a non-object in /home/<user>/public_html/live.php on line 11
WHM 11.11.0 cPanel 11.15.0-R17665 CENTOS Enterprise 4.5 i686 on standard - WHM X v3.1.0 Apache version1.3.39 (Unix) PHP version5.2.1 MySQL version4.1.22-standard
(Paths have the correct username, I replaced the usernames with <user>...)
I want to include script wpisz.php from /srv/www/vhosts/default/htdocs into /srv/www/vhosts/domena.pl/httpdocs/, but i recive this error:
Code: Warning: main() [function.main]: open_basedir restriction in effect. File(/srv/www/vhosts/domena.pl/httpdocs/wpisz.php) is not within the allowed path(s): (/srv/www/vhosts/default/htdocs:/tmp) in /srv/www/vhosts/default/htdocs/index.php on line 3
Warning: main(/srv/www/vhosts/domena.pl/httpdocs/wpisz.php) [function.main]: failed to open stream: Operation not permitted in /srv/www/vhosts/default/htdocs/index.php on line 3
Warning: main() [function.include]: Failed opening '/srv/www/vhosts/domena.pl/httpdocs/wpisz.php' for inclusion (include_path='.:/usr/share/php') in /srv/www/vhosts/default/htdocs/index.php on line 3
So, I ask you to help me to set it up (propably open_basedir) in that way in which will it work fine. But please.. use a simple language and describe the solution step-by-step because I'm not doing well whith this..
on a server with CentOS 5.2 and cPanel 11.24.4, Apache 2.2.11
i need to find where does squirrelmail save the .abook files.
on my servers should be at /usr/local/cpanel/base/3rdparty/squirrelmail/data but there are only 3 files in there: .htaccess, default_pref and index.php
is there any place where squirrelmail might save these files? or a database perhaps? i couldn't manage to locate them.
I am going to run a free host, yes I know I should post this in FWHT but well, they dont answer very fast if at all.
It is very dangerous to have Safe Mode OFF on a free host, but someone was telling me about open_basedir, which makes it so they cant touch any files set outside of open_basedir. Would this be suffiecient to keep them from touching others files? I know I need to disable other functions like exec() and stuff but would open_basedir keep hackers away from others files and hacking them...
if i enable PHP open_basedir Tweak in cpanel, it disables all sites and none load, do note that the other tweak called Apache mod_userdir Tweak is also enabled.
Now i am wondering is if they both clash with each other to compete for the security ?
Anyone else noticed this also?
Info : WHM 11.15.0 cPanel 11.18.6-S24255 CENTOS Enterprise 5 i686 on standard - WHM X v3.1.0
Is there a way to configure the open_basedir to allow cURL to FOLLOW_LOCATION? I'd like to keep the open_basedir enabled for security but at the same time, I need my site to function properly and that's not a possibility with FOLLOW_LOCATION not working.
I've recently upgraded squirrelmail to latest version, and now I get problem like 3 or 4 times when u login and logout and try to login again the page freezes and gets stuck it's saying "connected waiting for reply" it keeps happening not only to me but every user in the server (multiple connections and multiple computers)
After login in using domain.com/webmail, everything is fine while I attempt to send mail.. but, If I try to forward an existen mail to a new destiny, an error message appears:
Forbidden
You don't have permission to access /webmail/src/compose.php on this server.
Already checked for allow/deny settings over httpd.conf and over the httpd conf for thiss site in particuular.
I am trying to use chdir() in one of my scripts. However, I am getting an open_basedir restriction error. I have checked the php.ini and the value is not set (which as I understand should disable open_basedir).
Hopefully I'm posting this in the correct area. Our server runs CentOS 4.4 on x86_64 arch.
So basically everything was going rather smoothly...
Problems began to arise at the point where I finished installing/configuring SquirrelMail. Upon logging in, I saw this:
[see attachment]
Ok, so I checked maillog and saw:
Feb 11 13:50:46 zeus imapd: LOGIN, user=alex, ip=[::ffff:127.0.0.1], protocol=IMAP Feb 11 13:50:47 zeus imapd: Failed to connect to socket /tmp/fam-- Feb 11 13:50:47 zeus imapd: Failed to create cache file: maildirwatch (alex) Feb 11 13:50:47 zeus imapd: Error: Input/output error Feb 11 13:50:47 zeus imapd: Check for proper operation and configuration Feb 11 13:50:47 zeus imapd: of the File Access Monitor daemon (famd). Feb 11 13:50:47 zeus imapd: DISCONNECTED, user=alex, ip=[::ffff:127.0.0.1], headers=0, body=0, rcvd=21, sent=57, time=1
So I did some searching and determined it was a problem with Courier-IMAP being compiled with File Alteration Monitor support and famd not running (I built RPM directly from source tarball without any customization whatsoever per the instructions on the Courier website).
I found some possible solutions to be:
1) Install and run fam and be sure portmapper is running as well (problem being is that fam has since been replaced by gamin on CentOS, which is installed properly on my system). 2) Do a source install of Courier-IMAP and --disable-fam
Ok, so route 1 went like this: I uninstalled gamin, found fam-2.6.8, installed it, started it manually, made sure portmapper was running and tried again. This time, I still got the same errors in SquirrelMail, but the errors in maillog didn't show up. However, shortly after the page loaded, the famd process I had started manually promptly ended without my intervention. Ok, onto trying #2.
Route 2 went like this: reinstalled gamin, then I tried building a custom RPM by manually configuring with --disable-fam and then using rpmbuild -bc --short-circuit and rpmbuild -bi --short-circuit. That didn't change anything at all, I still had the same errors both with SquirrelMail and in maillog. Then I said ok, I'll just do a complete source install. ./configure --disable-fam && make && make install. Manually started that server, tried again, same deal, both errors.
So I've got problems. Either with Courier-IMAP, SquirrelMail, or both. The other daemons seem to run fine, I just mentioned them in case of the possibility of some kind of (unknown to me) conflict.
If you need to see any of my configs, let me know...any information greatly appreciated...I'm desperate.