The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cPanel Staff ...

Discussion in 'General Discussion' started by lamp, May 26, 2005.

  1. lamp

    lamp Well-Known Member

    Joined:
    Dec 22, 2003
    Messages:
    111
    Likes Received:
    0
    Trophy Points:
    16
    Hello,

    I would just like to say that the tomcat installer works great. The only problem is that it fails to add the following line:

    JkMount /WEB-INF/* ajp13

    to the httpd.conf file.

    The above line is very important because it serves to protected the resources found under WEB-INF. More specifically, it prevents a malicious user from navigating this folder from the web (doing something like www.domainname.com/WEB-INF/src/secret.java or www.domainname.com/WEB-INF/classes/properties etc...)

    Anyhow, if that line can be added to the script... that would be a great help.

    Lamp.
     
    #1 lamp, May 26, 2005
    Last edited: May 26, 2005
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
  3. lamp

    lamp Well-Known Member

    Joined:
    Dec 22, 2003
    Messages:
    111
    Likes Received:
    0
    Trophy Points:
    16
    Thanks for your patience Chirpy. Still learning the ropes.

    Lamp
     
  4. bizzness

    bizzness Member

    Joined:
    Feb 25, 2004
    Messages:
    16
    Likes Received:
    0
    Trophy Points:
    1
    Just add this lines (in bold) at the end of your VirtualHost configuration :


    <VirtualHost xxx.xxx.xxx.xxx>
    ServerAlias your_domain.com
    ServerAdmin webmaster@your_domain.com
    DocumentRoot /home/user/public_html
    BytesLog domlogs/your_domain.com-bytes_log
    <IfModule mod_userdir.c>
    UserDir disabled
    UserDir enabled user
    </IfModule>
    ServerName www.your_domain.com

    <IfModule mod_php4.c>
    php_admin_value open_basedir "/home/user:/usr/lib/php:/usr/local/lib/php:/tmp"
    </IfModule>
    <IfModule mod_php5.c>
    php_admin_value open_basedir "/home/user:/usr/lib/php:/usr/local/lib/php:/tmp"
    </IfModule>

    User user
    Group user
    CustomLog /usr/local/apache/domlogs/your_domain.com combined
    ScriptAlias /cgi-bin/ /home/user/public_html/cgi-bin/

    <IfModule mod_jk.c>
    JkMount /*.jsp ajp13
    JkMount /servlet/* ajp13
    JkMount /servlets/* ajp13
    </IfModule>

    <Location /WEB-INF/ >
    AllowOverride None
    deny from all
    </Location>


    </VirtualHost>

    I hope this helps

    Best regards
     
Loading...

Share This Page