I will be setting up Apache web server in DMZ and Oracle web server (Windows) in LAN. The requirement is to allow logged in visitors to view / change their details via the web site. What is the best way to configure this. Is simply allowing web server's ip to communicate with oracle server's ip (and the oracle port) is secure enough or is there a way to do this more securely?
View 6 RepliesJust when you thought it was safe to switch... [URL]..
View 3 Replies View RelatedI'm a new user for oracle,tried to install oracle 10g on redhat linux 5 but gettinh the same error message.response/ runInstaller[oracle2@localhost database_10201]$ sh runInstaller _runInstaller: line 54:/tmp/database_10201/install/.oui: Permission denied_Doany one plz help me how to give full set of permisions to an user in linux to access a folder??
View 2 Replies View RelatedI've AMD64 system with Ubuntu 11.04 installed. It's been rough ride for me to install oracle-xe-universal. I've already spent more than 2 days on this. Still unsuccessful.
1) First I downloaded the packages libaio_0.3.104-1_i386.deb and oracle-xe-universal_10.2.0.1-1.1_i386.deb
2) Then I ran
sudo apt-get install bc (ran fine)
sudo dpkg -i --force-architecture libaio_0.3.104-1_i386.deb (ran fine)
sudo dpkg -i --force-architecture oracle-xe-universal_10.2.0.1-1.1_i386.deb
(gave me dependency error for libc6 (>= 2.3.2), I modified the control file to remove dependency and rebuilt the package) (now worked fine) Oracle xe is now installed. Then I tried to start the DB it started but it's HTTP client never started. So I decided to uninstall the oracle-xe=universal. None of the sudo apt-get remove oracle-xe-universal command's didn't worked for me. So i went for manual uninstallation directions as per oracle link.
I ran the following command-
--Manually uninstalling Oracle 10g--
sudo rm -rf /usr/lib/oracle /etc/oratab /etc/init.d/oracle-xe /etc/sysconfig/oracle-xe /usr/share/doc/oracle_xe /usr/share/doc/oracle_xe_client
Then I again ran the following command to install oracle-xe
sudo dpkg -i --force-architecture oracle-xe-universal_10.2.0.1-1.0_i386.deb
See below what I got as the output-
rocky@ubuntu:~/git/mygit/edas2/libaio$ sudo dpkg -i --force-architecture oracle-xe-universal_10.2.0.1-1.1_i386.deb
dpkg: warning: overriding problem because --force enabled:
package architecture (i386) does not match system (amd64)
[code]....
Even in applications menu I don't see the if oracle has been installed. So i conclude first time installation was ok but somehow http client didn't worked. After manual uninstallation, second installation didn't even loaded/installed the oracle-xe in init.d directory.
How to make apache 2 accessible only on the local network? I have installed it in the easy way (but not the best, probably):
Code:
sudo apt-get install apache2 php5 php5-mysql mysql-server
And now I want to make apache only accessible in my local network.
I am setting up a local YUM repository in which I will have one computer accessing the RHN network and the clients will pull the updates from that server.
I have seven linux computers that I need to have access this repo server via apache.
I called Red Hat support and this what they told me to do....
On the YUM Repo Server -
> go to /etc/httpd/conf
> copy original to something else (you name, just save the original)
>edit the httpd.conf file
> add in ServerAdmin root@10.24.79.195
[Code].....
how to configure apache -- when I was on the phone with Red Hat we went so fast that I couldn't write down everything.
I've tried, but now I give up. I'm trying to run Apache on FC9. Nothing fancy, no extras, just the default installed apache. [correction, I have coldfusion installed, however the service is not running] I've set the Listen variable to every combination I could think of, with no success. I can set it whatever I like (such as my local IP) on any port other than port 80. If I try to set it to 192.168.x.x:80, it gives me the error message:
Starting httpd: (98)Address already in use: make_sock: could not bind to address 192.168.x.x:80
I've run netstat commands to try and find applications listening on port 80 and found nothing. Whenever I chose a port other than 80 to get the service to start successfully, I am able to serve pages locally. But even with my ports forwarded correctly, no one outside the local network can see it. I've checked with nmap that my machine is opening the ports and even cheated, disabling the firewall during testing to ensure it was not part of the problem.
I noticed while locally nmaping my server that whenever I set Listen 192.168.x.x:8081, 8081 is opened, as well as normal port 80. When I stop the httpd service, both those ports are simultaneously closed. Why is httpd opening port 80? I'm assuming this is related to why I cannot assign Listen to port 80. If I run remote scans from sites like www.nmap-online.com and www.canyouseeme.org, nmap-online will report filtered on ports 80 and 8081 if my httpd is running, and if httpd stopped, 80 is closed, filtered 8081.
Can you seem reports success on ports 80 and 8081 if httpd is running, fail if httpd is stopped. I'm sure thats all a lot of information cluttered in to all that. To summarize, I cannot start my httpd server on port 80, and I cannot ever see my webpages beyond my local network. Am I missing something extremely is simple and I'm just over looking it?
I need to know how to install php when apache is in /usr/local/apache2
View 6 Replies View RelatedThe situation is this, I have one of those router cable/wifi. So I have the main pc plugged to the router, the router give local ip for all my network (the others computers connects via wi-fi). Main pc starts up apache under Fedora 12, http://localhost.. works, http://127.0.0.1.. works, http://192.168.0.13 (my local ip) works. But when I try to connect to http://192.168.0.13 from another pc of my local network, it doesn't work. The others pcs are running windows vista.
I go another computers ping 192.168.0.13, responds!
From the main computer ping 192.168.0.14, responds!
So, there is communication between the machines, but I cant get to work under apache. I tried opening port 80 with iptables, i tried changing apache's port to another.
I'm running OpenSuse 11.3 X64. I have installed apache2, PHP5 and MySQL in order to do some web-design offline e.g. they are for internal network use only. There is also phpMyAdmin installed. The default directory for the "server" is /srv/www/htdocs.
To access a specific site in progress I create a subfolder there then just navigate via h**p://10.13.23.201/NAMEOFFOLDER from my internal network. At least that is how it should work but it doesn't. I created a new folder called wlc so it's directory is /srv/www/htdocs/wlc however when I go to the address h**p://10.13.23.201/wlc I get a Remote Server Or File Not Found error from my browser, there is files in there ,index.php, that should load and apache has been set to recognize *.php files.
I know the theory should work as I can access /srv/www/htdocs/phpMyAdmin by going to h**p://10.13.23.201/phpMyAdmin and it loads just fine. Also the error is different if I go to a folder that doesn't exist for example h**p://10.13.23.201/THISFOLERDOESNTEXISIT will return an Object Not Found error.
I own several websites and have always developed on my local Apache server.
I am in the middle of releasing a new product on one of my sites and have been making rapid changes to the site based on feedback from customers, etc. as my product has gone live...
My local server is NOT refreshing pages. I make a change, click "refresh" in my browser and nothing happens.
I have tried clearing my browser cache and it makes no difference. Eventually (several minutes later) my changes happen.
Problem is, I need to be making these changes rapidly, and I really prefer to check my work on localhost before uploading it to a live server where I'm getting a lot of visitors right now.
This is a very recent problem as I have never had this occur before. Running 10.04.
I'm trying to set up a small Intranet system to run OpenERP or similar using browser-based clients. I have an Ubuntu machine running 10.04 desktop edition to act as a temporary/testing server until we set up a proper, dedicated machine with 10.04 server edition. I have installed Apache2 from the repos and it is up and running fine - locally. That is the problem, I can't access the server from other machines on the LAN. Ping works, btw. So I've been reading tutorials and howtos for the past week, but for the life of me, I can't find what I'm doing wrong. The standard Apache setup seems to be made to "just work", so although I've looked at the various configuration files mentioned in the tutorials, I haven't actually changed anything.
View 9 Replies View RelatedI just getting back to working with linux. I'm having a problem with what seems to be an iptables thing or something easier than that, Enough here is the question I can get apache to run on the local machine by either going to http://localhost or by the ipaddress on the CentOS machine. But for some reason when I try to take a look on my laptop (on the same network) and try to go to it using the IP address is doesn't go. I can ssh from my laptops but it will not open the apache startup page.
View 1 Replies View RelatedSo I have apache running on my local computer. When I open up local development sites in tabs in my browser, apache threads are started. That's as it should be. However, when I close the tabs, close the browsers, and then run system monitor/system task manager, I get a long list of apache threads that are sleeping, waiting around for god knows what. How do I get these apache threads to stop hanging around?
View 1 Replies View RelatedI have a base install of a LAMP server on my system, and I'm trying to get mod_rewrite working on that local server (the directory of the local site is [URL]. I added this to my /etc/apache2/httpd.conf file, which was blank before I did so:
Code:
<Directory />
Options FollowSymLinks
AllowOverride All
Order deny,allow
[code]....
It's supposed to redirect everything except the listed directories to index.php, which is used as a front controller. However, if I type in [URL] <any other page> I get a 404 error.
I want to setup a folder (several really) for websites that use PHP.
I am running Linux Ubuntu with PHP, APACHE installed.
The Apache server works in Firefox as 127.0.1.1 no problem.
The default directory is (DocumentRoot) /var/www This is stored in a file called /etc/apache2/sites-enabled/000-default
PHP executes no problem, if it is in the default directory (/var/www).
However, I'd like to activate PHP in a folder on another hard-drive (also).
In that folder I'd like to store several websites, all which will use PHP and MYSQL.
The problem is, my boot drive where /var/www currently is located has only 2 gig of space (21 gig for operating system, which seems high).
PHP files in the other hard drive do not execute, even under APACHE server.
How can I safely change the PHP enabled folder? How can I add more folders, without erasing the current one?
I am trying to host a local website(an wiki application) within a network. Is it necessary that all the files I need to upload should be in the var/www?
View 8 Replies View RelatedI have setup a Linux Centos with apache server on it in a home network. Everything works fine. When I access the webserver I put in the address bar the IP address of the server which is 192.168.0.150 and when hit enter, it prompts the page where I have to put login information. The login information is set to: username: admin@localhost.local password: *************
It takes long time for authentication go through and load the page eventhough I am accessing the site in a same home local area network with fast ethernet connection. How can I change the localhost.local to something else like maybe [URL] instead and if I have to change settings in other files as well?
I'm trying to figure out if it's possible to configure apache or any other linux http server, to allow the visiting user to start applications installed locally on the http server and get the GUI of that application displayed in a java applet (or any other similar solution). In short, I'm looking for an alternative solution to proprietary technologies such as Citrix and Microsoft Remote Access Gateway.
View 3 Replies View RelatedI have installed apache php and mysql on my pc during debian installation... some of my friends complain they cannot access my webserver from their home and it's available only within my local network... Please help regarding this...
View 6 Replies View RelatedI'm trying to setup an Apache webserver on my computer in order to practice HTML5/CSS3 for an upcoming competition I'm in. I'm able to access my site from inside my network, but I cannot outside my network. I've had several people try, and they all report that the server just times out. I'm running Ubuntu 10.04 and Apache 2.2.17
My site is at [URL]
Here is the output of ifconfig
Code:
eth0 Link encap:Ethernet HWaddr 00:26:22:50:0f:0a
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
[Code]....
I have installed Ubuntu on four machines at work and have been blown away. On my machine I have Apache setup for web development and other machines can "see" it using my IP address. I would like to have it so they can access by the name of my computer though. I have no local DNS server so I guess I need to hard code the relationship in each machine? Ideally I'd actually like to be able to use subdomains (which I use locally to avoid annoying .htaccess path problems). i.e. from another machine on the network to go to [URL].
View 3 Replies View RelatedI want to restrict the access to my local web server by IP address. Im in a LAN (192.168.200.xx) so i have this:
[code]....
But when i try to connect from 192.168.200.4 it says i don't have permission to access
I am running opensuse with LAMP, and this is my first time setting up this type of server (usually am a windows junkie) My problem i am having is that I am unable to view my website from outside the local network. I have setup my router for a dynamic dns and forwarded all the ports through the router and the local firewall. I ran the apache setup through YAST2 and everything seems fine locally but when i attempt to access it elsewhere its not connecting. computechsolutions.dyndns.biz is the dynamic dns address i have setup through my router.
View 2 Replies View RelatedWe are trying to define an appliance based on Suse for an application server and Web server Apache, so we would like to know configuration best practices for network and security, is there any paper/doc about best practices?
View 3 Replies View RelatedOn a test ubuntu computer at my work, tests run often run wrong and all privleges for all accounts are revoked. This is, to say the least, annoying. Is there any way to create a SSH password for just that console to access it locally in the event of such a lockout? We cannot connect any other computers to it for security concerns.
View 6 Replies View Relatediam new in linuxi put check on locked local password and now i can not log in if i put my password
View 4 Replies View RelatedI am stuck in a weird situation and could definitely use some help from gurus in security area.
I have categorized my users into 3:
1. root user
2. other local users
3. LDAP users
I want to setup following 2 usecases:
a)
1. Allow keybased ssh and scp to root users
2. Allow ssh but disallow scp service to other local users
3. Disallow ssh and scp to LDAP users
b)
1. Allow keybased ssh and scp to root users
2. Disallow both ssh and scp to other local users
3. Disallow ssh but allow scp to LDAP users
For the 1. in both cases, I think PermitRootLogin in sshd_config could . For the 3. I am thinking of deploying rssh to control scp service access, since ssh will be restricted anyways.
Problem area is 2. primarily.
i) How to allow ssh but disallow scp to 'other local users'
ii) How to disallow both ssh and scp to 'other local users'
Has anyone used the mod_auth_remote module to delegate authentication? I have two apache2 servers. One is a content server and the other one is the sso/auth server. When the content server receives a request for a resource protected by basic authentication, the request is forwarded to the sso server for authentication. So far so good. But, the sso server should return a http 200 to the content server and granting access to the user. However, the sso server always returns a http 301 to the content server. So I appear to be stuck in an authentication loop.
Content server config:
<Directory /var/www/html/secure/>
AuthType Basic
AuthName "Content server"
AuthRemoteServer sso.intra
AuthRemotePort 80
AuthRemoteURL /auth
[Code]...
Or perhaps you have a better way of accomplishing apache sso across multiple servers?
I happened to be looking at my Apache-2.2.8 log on an Ubuntu LTS 8.04.4 system, and noticed a few lines like this:
Code:
61.160.212.242 - - [06/Mar/2010:07:04:41 -0800] "GET http://218.30.115.246/ HTTP/1.1" 200 295 "-" "-"
61.160.212.242 - - [06/Mar/2010:07:05:29 -0800] "GET http://218.30.115.246/ HTTP/1.1" 200 295 "-" "-"
xxx.xxx.xxx.xxx - - [06/Mar/2010:07:56:15 -0800] "GET http://218.30.115.246/ HTTP/1.1" 400 290 "-" "-"
(The third line is me telnetting to the server and trying to issue the same request. Note that I got a 400 error response, while the guy coming from 61.160.212.242 got 200s. Also, if you just open the http://218.30.114.246/ URL, you get back "hello" (nothing else, just 5 characters). I'm presently putting together a bootable CD with chkrootkit to run on the machine. (I found a thread that mentioned in passing that this was related to PHP, which I have running on that Apache server, but my Google-fu isn't strong enough to track down the original thread.) (After checking with chkrootkit: nothing unusual found.)