Messages

76

Kloxo-MR Bugs and Requests / [BUG] scheduled 'admin' backup problems

« on: 2014-09-14, 05:15:15 »

I set scheduled 'daily' backup for admin, keep 5 copies.  All worked well until 5 backups were on server.  Now, scavenge never completes.  The backup sends email saying succeded, yet it is not in backup filemanager.

There is some error happening and causing scavenge to never send complete email, and no new backups have been saved.

77

Kloxo-MR Technical Helps / Re: Hiawatha webserver and Domain SSL cert

« on: 2014-09-14, 02:32:54 »

Nothing wrong with polarssl or hiawatha.  Problem is config.

I have tried many times to explain, but i think we are not understanding each other well, as I have custom configs for hiawatha and all is running well, including ssl.

https://www.ssllabs.com/ssltest/analyze.html?d=convictionshosting.com&hideResults=on

A+ Almost Perfect score

78

Kloxo-MR Bugs and Requests / KloxoMR backup emails

« on: 2014-09-13, 05:23:15 »

I set automatic backup for admin.  After scavenge I recieve 4 emails, all about a minute apart, saying backup for admin to localhost succeded.

Why 4?  Is it backing up four times?  Why?  This seems to be a bug of some sort.

79

Kloxo-MR Bugs and Requests / Re: Stats page not password protected by default

« on: 2014-09-13, 02:08:33 »

Also +1 from me.  Great idea.

80

Kloxo-MR Tips and Tricks / Re: all domains i add in kloxo going to first domain directory help help

« on: 2014-09-13, 00:07:56 »

This is a duplicate post, admin/moderator please delete.

81

Kloxo-MR Bugs and Requests / Re: KloxoMR https not working after update

« on: 2014-09-12, 06:22:33 »

no, it doesn't work with your current hiawatha.conf.base.  if I delete custom. file and restart. KloxoMR will not respond on port 7777 https, will on http 7778.  This is because in new hiawatha.conf.base you declare SSL under the virtual host, instead of under the binding.

The website issue is due to you defining the SSL under the virtual host.  Since we use dedicated ip's, we are not seeing the problem you are having.  But when you define the SSL inside of the virtual host hiawatha uses its SNI capabilities.

More on SNI:
http://www.networking4all.com/en/ssl+certificates/faq/server+name+indication/

Defining under binding doesn't require SNI, and causes a warning to display in the browser (not trusted, self signed, etc), instead of timeout.  You can declare a binding for a cert, then attach it to a virtual domain.  As I said, it is much different than apache.  As long as you don't define a interface, you can just have a binding for each website that uses it, and require that binding to be used. (For SSL)

82

Kloxo-MR Bugs and Requests / Re: KloxoMR https not working after update

« on: 2014-09-12, 05:44:01 »

This is our custom.hiawatha.conf.base:

Code: [Select]

# Hiawatha main configuration file
# Convictions Hosting Custom - September 9th

ServerString = Hiawatha_for_Kloxo-MR

ServerId = lxlabs
ConnectionsTotal = 2048
ConnectionsPerIP = 64
SystemLogfile = /usr/local/lxlabs/kloxo/log/hiawatha-system.log
GarbageLogfile = /usr/local/lxlabs/kloxo/log/hiawatha-garbage.log

MaxUrlLength = 65536

PIDfile = /usr/local/lxlabs/kloxo/init/kloxo-hiawatha.pid

BanOnGarbage = 300
BanOnMaxPerIP = 60
BanOnMaxReqSize = 300
KickOnBan = yes
RebanDuringBan = yes

ThreadPoolSize = 50

#CGIhandler = /opt/php53s/usr/bin/php-cgi:php
#ExecuteCGI = yes
WaitForCGI = yes

FastCGIserver {
        FastCGIid = PHP5
        #ConnectTo = 127.0.0.1:39000
        ConnectTo = /usr/local/lxlabs/kloxo/init/kloxo-phpcgi.sock
        Extension = php
}

MimetypeConfig = hiawatha-mimetype.conf

UrlToolkit {
    ToolkitID = findindexfile
    Match ^([^?]*)/(\?.*)?$ Rewrite $1/index.php$2 Continue
    RequestURI isfile Return
    Match ^([^?]*)/index\.php(\?.*)?$ Rewrite $1/index.html$2 Continue
    RequestURI isfile Return
    Match ^([^?]*)/index\.html(\?.*)?$ Rewrite $1/index.htm$2 Continue
    RequestURI isfile Return
    Match ^([^?]*)/index\.htm(\?.*)?$ Rewrite $1/$2 Continue
}

UrlToolkit {
    ToolkitID = expire_needed
    Match .*\.jpg$ Expire 1 weeks
    Match .*\.png$ Expire 1 weeks
    Match .*\.gif$ Expire 1 weeks
    Match .*\.css$ Expire 1 weeks
    Match .*\.js$ Expire 1 weeks
    Match .*\.gif$ Expire 1 weeks
    Match .*\.eot$ Expire 1 weeks
    Match .*\.svg$ Expire 1 weeks
    Match .*\.ttf$ Expire 1 weeks
    Match .*\.ico$ Expire 1 weeks
}

Binding {
        BindingId = port_nonssl
        Port = __nonssl_port__
        #Interface = 0.0.0.0
        MaxKeepAlive = 200
        TimeForRequest = 8,25
        MaxRequestSize = 102400
        ## not able more than 100MB; hiawatha-9.3-2 able until 2GB
        MaxUploadSize = 2000
}

Binding {
        BindingId = port_ssl
        Port = __ssl_port__
        #Interface = 0.0.0.0
        MaxKeepAlive = 200
        TimeForRequest = 8,25
        MaxRequestSize = 102400
        ## not able more than 100MB; hiawatha-9.3-2 able until 2GB
        MaxUploadSize = 2000
        #RequiredCA = /usr/local/lxlabs/kloxo/etc/program.ca
        SSLcertFile = /usr/local/lxlabs/kloxo/etc/program.pem
}

## CF - no need for Virtual Host, all default to this:
Hostname = 0.0.0.0
WebsiteRoot = /usr/local/lxlabs/kloxo/httpdocs
StartFile = index.php
AccessLogfile = /usr/local/lxlabs/kloxo/log/hiawatha-access.log
ErrorLogfile = /usr/local/lxlabs/kloxo/log/hiawatha-error.log
SecureURL = no
UseFastCGI = PHP5
UseToolkit = findindexfile, expire_needed
TimeForCGI = 3600
ErrorHandler = 401:/error/401.html
ErrorHandler = 403:/error/403.html
#ErrorHandler = 404:/error/404.html
ErrorHandler = 404:/theme/lbin/sitepreview.php
ErrorHandler = 501:/error/501.html
ErrorHandler = 503:/error/503.html

Comments:
No need declare virtual host, all go to the default.  This stops all wigwam errors.
Values for maxkeepalive and timeforrequest are now within the proper range.
secureurl = no to stop phpmyadmin sort errors

You need to add the requiredssl directive if the option to force ssl for the panel is checked

83

Kloxo-MR Bugs and Requests / Re: KloxoMR https not working after update

« on: 2014-09-12, 05:26:57 »

Hold on, will get it and post

First you MUST remove the RequiredCA directive,  this is not for .ca files as you think.  By turning this on (web) it will stop all connections to the webserver unless the browser provides this CA, this has nothing to do with SSL.

In hiawatha, .ca is appended to the .pem for SSL.

84

Kloxo-MR Bugs and Requests / Re: KloxoMR https not working after update

« on: 2014-09-12, 05:24:33 »

Nothing wrong with polarssl, it was your config.  I have reported numerous times that hiawatha config is much different than apache.  I have ssl working great on our main site, hiawatha.

I fixed the panel as well, it is now working.

Also, investigate how hiawatha uses its cert files, it is different than apache.  I have had to do ours manually and chattr +i them.

85

Kloxo-MR Bugs and Requests / KloxoMR https not working after update

« on: 2014-09-12, 04:00:13 »

I can not reach kloxoMR on https after latest update.  Http:7778 works, https:7777 times out.

?

86

Kloxo-MR Technical Helps / Re: Change php-type?

« on: 2014-09-11, 02:37:34 »

Yes, when you change php type in the panel (Webserver Configure) it will make all the necessary changes

Why php-fpm  throw a 500 error? 

87

Kloxo-MR Technical Helps / Re: date.timezone

« on: 2014-09-11, 02:36:09 »

You will lose those changes on update.  Use 'custom.' file.

88

Kloxo-MR Technical Helps / Re: date.timezone

« on: 2014-09-10, 07:52:27 »

Which php are you using?  Are you speaking for web or control panel?

Inform here 'sh /script/sysinfo'

89

Kloxo-MR Technical Helps / Re: Auto block brute force IPs

« on: 2014-09-08, 17:20:12 »

Yes, we have a custom module for CSF that blocks brute force on mailserver, we are a hosting company

90

Kloxo-MR Technical Helps / Re: How Can I turn off KeepAlive

« on: 2014-09-08, 17:14:29 »

Inform here 'sh /script/sysinfo'