[BlueOnyx:19475] Re: Document Root and Out of /Web access

2016-04-14 Thread Michael Stauber 
Hi Richard,

> I have been asked by a new client the following:
>
> "Could you please let me know the DOCUMENT_ROOT for the website". I presume
> this is the /web folder. Can this be changed if necessary and is there a
> good reason to do this?
> 
> "Second concern is regarding your downloads, they are stored outside of main
> web directory for security reasons. Most of shared hosting do not allow for
> anything to happen outside of web directory. Please could you confirm with
> hosting company it is possible?" Is this possible on a BO server?

For a better explanation I'm going to distinguish between Vsite
DocumentRoot and "what do I have access to".

The /web directory is the Vsite's DocumentRoot. This is where Apache has
access to. Anything in /web and thereunder is accessible from the
outside. Naturally you can throw in access restrictions such as password
protection for the entire /web or directories within it.

And yes: Sometimes it might be practical to hide content outside of the
/web directory to prevent direct access to unfiltered or critical data.
There are many ways how this can be done. A good solution would be that
the data is in a MySQL database and is only presented to the intended
people after proper authentication.

Another way is to "park" data one step above the /web directory. And
when this data is needed, a PHP or Perl script reads it, parses it and
presents the parts that you want to be displayed.

This largely depends on "what do I have access to". There we need to
distinguish between PHP and Perl (and to a lesser extend Python and
others).

We can configure PHP pretty restrictively. And by default we do. The
only directories a PHP script has access to (if called via Apache) are:

/home/.sites/106/site15 <-- The root directory of an example Vsite
/tmp/   <-- R/W access to temp directory.
/usr/sausalito/configs/php/ <-- Read only
/var/lib/php/session/ <-- R/W access for session cookies

Lastly: PHP scripts only have access to files and folders in the above
mentioned directories if these files and folders are owned by the same
user that Apache uses for the Vsite. That would typically be the Vsite
admin configured under "Web Ownership" of that Vsite.

So if you create a folder under /home/sites/www.domain.com/secretstuff
and chown it to the "Web Owner" of that Vsite, then PHP scripts of that
Vsite would have access to the data there. But you couldn't access this
directory via a direct URL call, as it's outside the /web directory.

That is probably what you are looking for.

As far as Perl is concerned: Perl is really difficult to lock down this
way. Generally Perl scripts will have access to anything that user
"apache" (or the user who Apache runs under) has access to. However, if
you want to allow a user to manage his "secretstuff" folder via FTP,
too, then it would be best if you keep it in places he can reach via
FTP. Which would be no further up in the directory tree than the root of
the Vsite. Which would be something like this:

/home/.sites/106/site15/
/home/sites/www.domain.com/

-- 
With best regards

Michael Stauber
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:19474] Document Root and Out of /Web access

2016-04-14 Thread Richard Sidlin 
Hi

 

I have been asked by a new client the following:

 

"Could you please let me know the DOCUMENT_ROOT for the website". I presume
this is the /web folder. Can this be changed if necessary and is there a
good reason to do this?

 

"Second concern is regarding your downloads, they are stored outside of main
web directory for security reasons. Most of shared hosting do not allow for
anything to happen outside of web directory. Please could you confirm with
hosting company it is possible?" Is this possible on a BO server?

 

Thanks as always.

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:19473] Re: Server freezes

2016-04-14 Thread Tom 
NETgemacht  writes:

> 
> Hi!
> My problem is that the server freezes from time to time. So I have to 
ask my ISP to reboot the server manually. Now I am looking why is that so. 
My ISP says that everything is fine. Now I am looking on myself what is 
causing this error.
> 
> Any ideas?
> 
Server freezes can be caused by overheating, due to fans malfunctioning, 
room temperature too hot, dust buildup, corrupted drives or drives going 
bad and overheating, bad RAM or processor, UPS failure and power failures, 
with no UPS backup, to name a few things. I have found in my work, that 
the most common is overheating, caused by enormous dust buildup or power 
failures caused by No or Bad UPS.
Tom


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:19472] weird bandwidth slowdown

2016-04-14 Thread Tom 
Ever since the last large YUM Update, around the end of March, I have been 
experiencing a weird anomaly. Using Raqbackup as an example:
Normally I achieve 25 to 30 mbps transfer speeds for the backups, and the 
backups complete very quickly. Over the course of a week, they slow down 
to 2- mbps and the backup takes hours. I re-boot the server and everything 
is back to normal again. I've checked cables, cards, switches, logs, etc 
and nothing shows why this is happening. 
I'm stumped. 
Any input will be greatly appreciated.
Thanks in advance
Tom
 

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:19471] Re: Server freezes

2016-04-14 Thread Steve Howes 

On 14/04/16 08:20, NETgemacht wrote
My problem is that the server freezes from time to time. So I have to 
ask my ISP to reboot the server manually. Now I am looking why is that 
so. My ISP says that everything is fine. Now I am looking on myself 
what is causing this error.


Any ideas?


Check the logs, look at the console when it freezes, check RAM/other 
hardware. All the usual stuff you do when a computer freezes.


Steve
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:19470] Re: Mailman has died!

2016-04-14 Thread Colin Jack 
Hi Michael,



>
>Not sure if it will do any good, but it won't hurt:
>
>"yum reinstall mailman"
>
>Give it a try.

Well done - that sorted it.

All the best.

Colin

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:19469] Server freezes

2016-04-14 Thread NETgemacht 
Hi!

My problem is that the server freezes from time to time. So I have to ask my 
ISP to reboot the server manually. Now I am looking why is that so. My ISP says 
that everything is fine. Now I am looking on myself what is causing this error.

Any ideas?


NETgemacht.at
Hochfügenerstraße 7
6263 Fügen


Socialize me:   www.facebook.com/netgemacht 
Visit me:   www.netgemacht.at 
Call me:0676/943 68 25


Ich würde mich über eine positive Bewertung auf Facebook freuen unter:
www.facebook.com/netgemacht 

Schon mal über E-Mail Marketing nachgedacht? Näheres unter:
http://www.netgemacht.at/typo3/onlinemarketing/e-mail-marketing.html 


Schon die neuen günstigen Webhosting Pakete entdeckt? Näheres unter:
http://www.netgemacht.at/typo3/webhosting.html 


360 ° Touren - Ihr virtueller Rundgang - Näheres unter:
http://www.netgemacht.at/typo3/onlinemarketing/360-fototouren.html 

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx