CentOS 5 :: Web Developers Reading /var/log/httpd/error_log?
Feb 23, 2010
I need to allow users who are not root to viewthe /var/log/httpd/error_log while theyare developing web pages. The default permissionof the directory /var/log/httpd/ is:drwx------ 2 root root 4096 Feb 21 04:02 httpdOf course I could just go "chmod 755 httpd", butI would like to know the "safe" way to allownon root users to access the httpd logs.Shall I add the users to the "apache" group andthen:chown apache httpd chown 750httpd
the following security alert made me checking my httpd.conf:
Code: Summary:
SELinux is preventing the http daemon from reading users' home directories. Detailed Description: SELinux has denied the http daemon access to users' home directories. Someone is attempting to access your home directories via your http daemon. If you have not setup httpd to share home directories, this probably signals an intrusion attempt. Even though in httpd.conf there is a line that reads
Code: LoadModule userdir_module modules/mod_userdir.so in the same conf-file the access to home-dirs is disabled: Code: <IfModule mod_userdir.c>
Running CentOS 5 x64 And today my httpd is running very slow and I can't find a fix. Looked all over different forums
When starting httpd I get the message: /var/lock/subsys/httpd': No space left on device I checked that directory above and there is no file called httpd tried rebooting server
Can't do updates too: [root@u15438957 ~]# yum update Loaded plugins: fastestmirror, priorities rpmdb: unable to join the environment
accidentally I do something wrong with my server and the httpd folder missing and I need it to setup my mail server and anyone can help me what can I do without reinstalling my Cent OS? Here is the error msg :
[root@mydomain etc]# service httpd stop Stopping httpd: [FAILED] [root@mydomain etc]# service httpd restart
I have been able (with some hair pulling and gnashing of teeth) to print from outside the LAN to the printer connected via USB to the desktop computer at home, until the last upgrade. The laptop will forst say the printer may not be connected, but eventually (usually) after a while says the job was sent to the printer. The log files on the desktop - serving as the printer server have an error message in cups/error_log that I am not familiar with, and don't believe I have seen before. I am sure if I could decipher that error and figure out how to change the behavior to get rid of it, it would once again work. Printing from within the LAN is a no-brainer as it has been for the last several releases. The error that I get when trying to print outside the LAN (via the internet) is:
cupsdAcceptClient: 12 from <WAN IP>:631 (IPv4) Unable to encrypt connection from <WAN IP> - GnuTLS internal error. I am missing something as far as authentication from the laptop to the desktop. how to fix it.
I'm looking for a package rpm for httpd 2.2.19 and the only repository I have found so far is cent.alt.ru repository. Any guidance/advice on using this repository? Or know of any trusted repositories with httpd 2.2.19?
I have installed fedora 13 in my system. httpd server is also installed. when I tried to start the service of httpd, following error message displayed: Starting httpd: (98)Address already in use: make_sock: could not bind to address [::]:80
How to back up my httpd.conf from my server to my computer and only found one solution via a google search
[url]
I typed in locate httpd.conf and see that it resides in /usr/local/apache/conf/httpd.conf so I assume I would type $ cd /usr/local/apache/conf $ sudo cp -p httpd.conf httpd.conf.bak
I wanted to confirm this with an expert before I do damage that I cannot reverse.
I wanted to upgrade my Apache from 2.2.3 to 2.2.4 because some application issues. where we can get Apache 2.2.4 rpms for CentOS/RHEL build? I say 2.2.4 rpms in Fedora repositories? Will fedora builds work in CentOS/RHEL?
Well, i can not install httpd service, when i execute yum -y install httpd i get this message
Could not retrieve mirrorlist http://mirrorlist.centos.org/?release=5&arch=i386&repo=os error was [Errno 4] IOError: <urlopen error (-3, 'Temporary failure in name resolution')> Error: Cannot retrieve repository metadata (repomd.xml) for repository: base. Please verify its path and try again
i am running cent 5.1 and would like to upgrade httpd v.2.2.3 to the latest 2.2.11 version provided by apache to resolve some ajp errors i am experiencing.
I searched but did not find any rpms for cent nor did i find any instructions on how to do this.
I'd like to share /usr/share/docs out to my local subnet via httpd so I can read server documentation from my workstation. I've simply done a generic install of httpd and httpd-manual and added this to the bottom of my httpd.conf file:
alias /docs /usr/share/doc <Directory /usr/share/doc> Order deny,allow
Recently I installed an SSL certificate from GoDaddy on my Amazon EC2 instance which runs CentOS 5. All has been good till I installed the SSL certificate. Everytime I restart the system it fails to have httpd service working because code...
I looked on the net and found a solution which says I should change port 80 and port 443 in files httpd.conf and ssl.conf to port 88 and 553 and restart apache, change back the ports to 80 and 443 and restart again. This method worked before but now I am stuck with it not starting with ports 80 and 443 and if I change these ports then I can't reach my site and I have to add port number wtih : which is really not good.
1- What causes this problem and where can I look to debug it? 2- What can I do to permenently stop this problem? is there any place that I can dedicate these two ports to apache user?
I have reviewed the HowTo wiki on Setting up an SSL secured Webserver with CentOS [URL], and have successfully set up my server.
We are using the conditional <IfDefine SSL> tags around the <VirtualHost _default_:443> section. I wanted to do this because we are deploying a standard <VirtualHost> section that is appended to the httpd.conf file for several Apache versions on several OS's, and this makes maintenance much easier. Sometimes the server will be configured with SSL support, and sometimes not, depending on certain functions of our application that the end user will require and determine. Our application then determines which mode the server should be run in depending on these functions, what OS is being run, what version of Apache is being run, etc, and starts the httpd server in the appropriate mode. For CentOS 5 with Apache 2.2, if the application indicates SSL is required (and we expect the server to be configured appropriately), then we do the following:
I just upgraded to CentOS 5.6 (been on 5.2 for ages....) and am getting the following error in the apache error_log file:[Sat Jul 02 13:50:25 2011] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)[Sat Jul 02 13:50:25 2011] [error] SSL Library Error: -8187 Security library: invalid argumentsThe notice entry, I can understand, however the SSL error is halting apache from starting. It has been suggested that this might be a package mismatch issue. I'll be more than happy sharing the package list for this box on request.
We had servers that worked fine for years. After updated them to the latest version of CentOS (5.2 with latest updates), they keeps on hanging when being scanned by PCI Verdors (a Credit Card security standard). Basically, the scan causes httpd process to eat up all memory, and the server becomes unresponsive. Normal operations resume after the scan stops for 5, 10 minutes. Output from top looks like the following:
I have a VPS server installed with centos 5.3. The server has directadmin. Probably that when directadmin was installed, the httpd server of choice was apache 2.2.13.
My problem is that i whant to install mod_dav_svn trough yum but without updating the latest version of apache form yum repository. If i exclude the httpd package when doing yum install mod_dav mod_dav_svn i get a dependency error witch say that i nedd httpd-mmn installed. So, my question is, how can i use yum to install mod_dav_svn without updating the httpd.
installed a new centOS 5 server, and after the installation, everything seem to work well but for httpd not running. when i try to issue the restart command i get the following error:
[root@appdev ~]# service httpd restart Stopping httpd: [FAILED] Starting httpd: httpd: Syntax error on line 206 of /etc/httpd/conf/httpd.conf: Cannot load
For the first time in installed and configured centos-ds from this HowTos and from the manuals.It is running nicely but disabled my httpd.Is it not possible to run directory service and httpd in the same machine
Alright, so I installed the c5-testing versions of httpd, php, and mysql, since my server is used for other daemons primarily and these aren't used as production servers I decided to test the bleeding edge versions of these, report any bugs I find, etc. The problem is, since I updated httpd and mysqld they no longer start up at boot. I tried using chkconfig --add with both of them, but both their init.d scripts have - for levels, so I did not assign any levels. They still do not start up at boot. [URL]
I have centos 5.5 64bit installed. When I start the httpd service I get the above message. The message is bogus because the server is running and web pages work. Is there a fix out there to resolve this?
I installed centos 5.5 and httpd service was working well for the last 2 weeks till yesterday. I restarted server and noted my hosting service were not working. I have tried service httpd restart on the terminal and it dispalys [FAILED]. I updated my machine and and have tried restarting it but it doesn't work. I am new to centos and I dont know how to solve this.
I've got a box with a fresh installation of CentOS 5.6, but had several configs copied from an old 4.8 box that I've now got to finish. Most everything seems fine, but I can't get apache running. It reports that it starts up fine, but immediately stops and reports "httpd dead but subsys locked"Most of the advice I've found while searching suggests to just delete the http.pid file and restart, which doesn't help in my case. I did find a few problems where SELinux was restricting httpd from creating or touching certain files (I found reports in /var/log/messages) but I've worked through that.
So the big question here is: /var/log/messages and /var/log/httpd/error_log are now empty, and don't show any more errors when I restart httpd. Does anyone know where else I can look for reporting/logging on what's happening to httpd to cause it to die?
I've added httpd to runlevels 2-5 using chkconfig, and also double checked it using ntsysv, but it still won't run on startup, even though it works just fine when started manually (using "sudo service httpd start").The results of "chkconfig --list httpd" show it is on for levels 2-5, and I've confirmed the current runlevel to be 3. I've found no errors in the logs (neither Apache's nor the system's), but maybe I'm looking at them wrong...My machine is a VPS (on VMWare) running CentOS 5.5 32bit. For additional information, see the output of getinfo.sh: http://pastebin.centos.org/35570I would greatly appreciate help on this, as it is delaying our NGO from moving servers.
