The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Apache 1.3.36 upgrade broke my scripts

Discussion in 'EasyApache' started by chilihost, May 24, 2006.

  1. chilihost

    chilihost Well-Known Member

    Joined:
    Mar 1, 2005
    Messages:
    72
    Likes Received:
    0
    Trophy Points:
    156
    Hi,
    I have a client running an anti-password sharing/hackin script on several of his domains, this script validates a user's login details against a common .htpasswd file. I did the apache update this morning and it broke this script. It seems that the script can no longer access the .htpasswd file that is residing on a different domain.

    Is this by design in the new version of Apache? Or is there a workaround? This server is hosting a single client so cross-domain scripting security is not an issue. open_basedir protection was never enabled and cPanel still shows it as being not enabled. If I remove the script and use a simple .htaccess file referencing the .htpasswd file on the other domain, it works. Its only when the sript tries to access the .htpasswd file that it does not work. I tested it and if the script references a local .htpasswd file it works.

    Maybe someone can suggest where else I can look??

    thanks!
     
    #1 chilihost, May 24, 2006
  2. spector

    spector Well-Known Member

    Joined:
    Jun 27, 2005
    Messages:
    51
    Likes Received:
    0
    Trophy Points:
    156
    check apache error_log for details...
    probably its bad permissions to dirs/file where .htpasswds reside. Note that user nobody need access to this dirs/file, so I suggest chowning group to :nobody.
     
    #2 spector, May 24, 2006
  3. chilihost

    chilihost Well-Known Member

    Joined:
    Mar 1, 2005
    Messages:
    72
    Likes Received:
    0
    Trophy Points:
    156
    error_log shows:

    couldn't open password file '/home/edited/public_html/cgi-bin/.htpasswd': Permission denied at ./routines.pl line 138.

    I tried chowning the .htpasswd file to edited.nobody but that did not seem to do the trick. Its got 666 permissions right now, I don't think that would make a difference
     
    #3 chilihost, May 24, 2006
  4. bin_asc

    bin_asc Well-Known Member

    Joined:
    Jul 18, 2005
    Messages:
    280
    Likes Received:
    0
    Trophy Points:
    166
    Try chmodding ./routines.pl to 755 for starters.
     
    #4 bin_asc, Jun 1, 2006
(You must log in or sign up to post here.)
Loading...
Similar Threads - Apache upgrade broke
  1. dAvIdP___

    cURL SSL is broken after EasyApache 4 upgrade

    dAvIdP___, Jan 10, 2017, in forum: EasyApache
    Replies:
    4
    Views:
    667
    cPanelMichael
    Jan 20, 2017
  2. Mufti Ardian

    about upgrade Apache 2.4 & PHP 5.6

    Mufti Ardian, May 25, 2017, in forum: EasyApache
    Replies:
    2
    Views:
    83
    cPanelMichael
    May 25, 2017
  3. cmonego

    Webmail redirects to defaultwebpage.cgi after easyapache upgrade for version 4

    cmonego, May 18, 2017, in forum: EasyApache
    Replies:
    3
    Views:
    120
    Infopro
    May 20, 2017
  4. LordLiverpool

    Webmail redirects to defaultwebpage.cgi after easyapache upgrade

    LordLiverpool, May 4, 2017, in forum: E-mail Discussions
    Replies:
    10
    Views:
    231
    cPanelMichael
    May 10, 2017
  5. Scott Baird

    Yum is too old for ea4 - EasyApache 4 Upgrade Fails

    Scott Baird, Mar 21, 2017, in forum: EasyApache
    Replies:
    21
    Views:
    547
    jtcarlin
    Apr 7, 2017

Share This Page