Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Apache 1.3.36 upgrade broke my scripts

Discussion in 'EasyApache' started by chilihost, May 24, 2006.

  1. chilihost

    chilihost Well-Known Member

    Joined:
    Mar 1, 2005
    Messages:
    72
    Likes Received:
    0
    Trophy Points:
    156
    Hi,
    I have a client running an anti-password sharing/hackin script on several of his domains, this script validates a user's login details against a common .htpasswd file. I did the apache update this morning and it broke this script. It seems that the script can no longer access the .htpasswd file that is residing on a different domain.

    Is this by design in the new version of Apache? Or is there a workaround? This server is hosting a single client so cross-domain scripting security is not an issue. open_basedir protection was never enabled and cPanel still shows it as being not enabled. If I remove the script and use a simple .htaccess file referencing the .htpasswd file on the other domain, it works. Its only when the sript tries to access the .htpasswd file that it does not work. I tested it and if the script references a local .htpasswd file it works.

    Maybe someone can suggest where else I can look??

    thanks!
     
    #1 chilihost, May 24, 2006
  2. spector

    spector Well-Known Member

    Joined:
    Jun 27, 2005
    Messages:
    51
    Likes Received:
    0
    Trophy Points:
    156
    check apache error_log for details...
    probably its bad permissions to dirs/file where .htpasswds reside. Note that user nobody need access to this dirs/file, so I suggest chowning group to :nobody.
     
    #2 spector, May 24, 2006
  3. chilihost

    chilihost Well-Known Member

    Joined:
    Mar 1, 2005
    Messages:
    72
    Likes Received:
    0
    Trophy Points:
    156
    error_log shows:

    couldn't open password file '/home/edited/public_html/cgi-bin/.htpasswd': Permission denied at ./routines.pl line 138.

    I tried chowning the .htpasswd file to edited.nobody but that did not seem to do the trick. Its got 666 permissions right now, I don't think that would make a difference
     
    #3 chilihost, May 24, 2006
  4. bin_asc

    bin_asc Well-Known Member

    Joined:
    Jul 18, 2005
    Messages:
    280
    Likes Received:
    0
    Trophy Points:
    166
    Try chmodding ./routines.pl to 755 for starters.
     
    #4 bin_asc, Jun 1, 2006
(You must log in or sign up to post here.)
Loading...
Similar Threads - Apache upgrade broke
  1. dAvIdP___

    cURL SSL is broken after EasyApache 4 upgrade

    dAvIdP___, Jan 10, 2017, in forum: EasyApache
    Replies:
    4
    Views:
    2,288
    cPanelMichael
    Jan 20, 2017
  2. inteldigital

    SOLVED [CPANEL-23845] cpsrvd fails after 76 upgrade when running a custom Apache service

    inteldigital, Nov 8, 2018, in forum: Bind/DNS/Nameserver
    Replies:
    7
    Views:
    238
    cPanelMichael
    Nov 14, 2018 at 11:15 AM
  3. maestroc

    sqlite and pdo_mysql errors after Apache 4 upgrade

    maestroc, Oct 3, 2018, in forum: EasyApache
    Replies:
    1
    Views:
    87
    cPanelLauren
    Oct 8, 2018
  4. Austin McLaughlin

    You must upgrade the EasyApache 4 package

    Austin McLaughlin, Aug 24, 2018, in forum: EasyApache
    Replies:
    2
    Views:
    192
    cPanelMichael
    Aug 27, 2018
  5. Lisa Thompson

    SOLVED EasyApache4 upgrade causing problem with all WP sites

    Lisa Thompson, Aug 18, 2018, in forum: EasyApache
    Replies:
    3
    Views:
    314
    cPanelMichael
    Aug 23, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice