Sponsor:

Server and Web Integrator
Link:
Kloxo-MR logo
6.5.0 or 7.0.0
Click for "How to install"
Donation/Sponsorship:
Kloxo-MR is open-source.
Donate and or Sponsorship always welcome.
Click to:
Click Here
Please login or register. 2024-03-28, 13:29:54

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - postcd

Pages: [1] 2
1
Hello,
when trying to setup LetsEncrypt SSL on KloxoMR 7.0.0.c-2017050104, it says "Alert: Create Certificate failed"

The log file: cat /var/log/acme.sh/acme.sh.log
Quote
Register account Error: {"type":"urn:acme:error:unauthorized","detail":"Account creation on ACMEv1 is disabled. Please upgrade your ACME client to a version that supports ACMEv2 / RFC 8555. See https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430 for details.","status": 403}
Please add '--debug' or '--log' to check more details.
See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh
Using CA: https://acme-v02.api.letsencrypt.org/directory

Then i have tried to get latest acme.sh:

mv /root/.acme.sh/acme.sh /root/.acme.sh/acmeold.sh;cd /root/.acme.sh/;wget https://raw.githubusercontent.com/acmesh-official/acme.sh/master/acme.sh;cd -;

Then the log shows:
Quote
Using CA: https://acme-v02.api.letsencrypt.org/directory
Registering account: https://acme-v02.api.letsencrypt.org/directory
Registered
ACCOUNT_THUMBPRINT='stringhere'
Creating domain key
The domain key is here: /root/.acme.sh/mydomainhere.tld/mydomainhere.tld.key
Multi domain='DNS:mydomainhere.tld,DNS:www.mydomainhere.tld,DNS:cp.mydomainhere.tld,DNS:webmail.mydomainhere.tld'
Getting domain auth token for each domain
Getting webroot for domain='mydomainhere.tld'
Getting webroot for domain='www.mydomainhere.tld'
Getting webroot for domain='cp.mydomainhere.tld'
Getting webroot for domain='webmail.mydomainhere.tld'
Verifying: mydomainhere.tld
mydomainhere.tld:Verify error:Fetching http://mydomainhere.tld/.well-known/acme-challenge/stringhere: Connection refused
Please add '--debug' or '--log' to check more details.
See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh

https://www.ecosia.org/search?q=verify+error%3A+fetching+Connection+refused

"apachectl configtest" and "sh /script/restart-web"
shown syntax errors:
Starting httpd: Syntax error on line 43 of /etc/httpd/conf/httpd.conf:
Invalid command 'ErrorLogFormat', perhaps misspelled or defined by a module not included in the server configuration
but when i check that .conf file and comment out the line like that, it complains about more and more lines. And end up reporting no log file set.

there are also script that suggests fixing web:
-rw-r--r-- 1 lxlabs lxlabs   452 May  1  2017 fixweb
-rw-r--r-- 1 lxlabs lxlabs    47 May  1  2017 fixweb-all
-rw-r--r-- 1 lxlabs lxlabs   175 May  1  2017 fixweb-defaults
but i do not know if that is safe to run these scripts

Please any idea how to fix it?
UPDATE: it may help to switch to nginx? Somehow web works now.

UPDATE2:
i ended up replacing /root/.acme.sh/acme.sh by https://raw.githubusercontent.com/acmesh-official/acme.sh/master/acme.sh
and then somehow it started working.

QUESTION: can this be somehow fixed for future usage, or what is the proper fix? Mine may not be good fix.
i may replace the old one by this new one, but i do not know if this is the problem cause

2
I think this issue i fixed by renaming repo file:
cd /etc/yum.repos.d;mv CentOS-Base.repo CentOS-Base.repo_
vi CentOS-Base.repo
"a" or "i" key
paste:
Quote
[base]
name=CentOS-$releasever - Base
#mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=os&infra=$infra
baseurl=http://vault.centos.org/6.10/centosplus/$basearch/
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6
gpgcheck=1

#released updates
[updates]
name=CentOS-$releasever - Base
#mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=os&infra=$infra
baseurl=http://vault.centos.org/6.10/centosplus/$basearch/
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6
gpgcheck=1

#additional packages that may be useful
[extras]
name=CentOS-$releasever - Base
#mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=os&infra=$infra
baseurl=http://vault.centos.org/6.10/centosplus/$basearch/
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6
gpgcheck=1

#contrib - packages by Centos Users
[contrib]
name=CentOS-$releasever - Base
#mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=os&infra=$infra
baseurl=http://vault.centos.org/6.10/centosplus/$basearch/
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6
gpgcheck=1

(replace 6.10 by your version returned by "cat /etc/red*" command)
then "yum clean all;yum update"

then i have seen errors:
Quote
# yum update
Loaded plugins: fastestmirror, presto, priorities, protectbase, replace
Setting up Update Process
Loading mirror speeds from cached hostfile
Could not retrieve mirrorlist http://mirrors.iuscommunity.org/mirrorlist?repo=ius-centos6-archive&arch=i386&protocol=http error was
14: PYCURL ERROR 6 - "Couldn't resolve host 'mirrors.iuscommunity.org'"
Could not retrieve mirrorlist http://mirrors.iuscommunity.org/mirrorlist/?repo=ius-centos6&arch=i386&protocol=http error was
14: PYCURL ERROR 6 - "Couldn't resolve host 'mirrors.iuscommunity.org'"
 * mratwork-epel: ftp-stud.hs-esslingen.de
 * mratwork-release-neutral-noarch: rpms.potissima.com
 * mratwork-release-version-arch: rpms.potissima.com
 * mratwork-webtatic: uk.repo.webtatic.com
http://repo.varnish-cache.org/redhat/varnish-3.0/el6/i386/repodata/repomd.xml: [Errno 14] PYCURL ERROR 6 - "Couldn't resolve host 'repo.varnish-cache.org'"
Trying other mirror.
Error: Cannot retrieve repository metadata (repomd.xml) for repository: mratwork-varnish-3.0. Please verify its path and try again

What is the replacement mirrors repo for ius and varnish-cache?

In the meantime i have opened /etc/yum.repos.d/mratwork.repo and prefixed the "mirrorlist=" lines with IUS repo by "#" character disabling these And set the varnish repo from enabled 1 to 0 and "yum update" now works, but i would rather replace old mirrors by new one not to break future updates.

UPDATE: maybe i should use "archive" repo URLs from files at https://github.com/iusrepo/ius-release ?

3
if you got error "first argument is master/slave", then try:
sh /script/resetpassword master newpassword

4
Hello,

on the clean KloxoMR server i got this error when visited website i just added:
Quote
Site error: the file /home/admin/mysite/index.php requires the ionCube PHP Loader ioncube_loader_lin_5.6.so to be installed by the site administrator.

i found that in /etc/php.d/ was file:
01-ioncube-loader.nonini

and when i renamed it to .ini and restarted services, website started working

Quote
cp -p /etc/php.d/01-ioncube-loader.nonini /etc/php.d/01-ioncube-loader.ini
sh /script/restart-all

Can i enable ioncube loader anyhow from within KloxoMR without visiting command line?

PS: my server:
Kloxo-MR: 7.0.0.c-2017050104
php56s-5.6.30-2.ius.centos6 (fpm mode)
php56u-cli-5.6.30-2.ius.centos6.i686

5
Indeed it worked when i tried later. Thank You for help.

6
Hello, i submitted Lets encrypt form in KloxoMR to add SSL to my domain, but that page was still "loading" for many minutes and ended in timeout. When i checked /var/log/acmme.sh/acme.sh_tmp.log, i found:

Quote
[Fri May 19 14:25:58 EDT 2017] Multi domain='DNS:www.domainhere.tk,DNS:cp.domainhere.tk,DNS:stats.domainhere.tk,DNS:webmail.domainhere.tk'
[Fri May 19 14:25:58 EDT 2017] Getting domain auth token for each domain
[Fri May 19 14:25:58 EDT 2017] Getting webroot for domain='domainhere.tk'
[Fri May 19 14:25:58 EDT 2017] Getting new-authz for domain='domainhere.tk'
[Fri May 19 14:26:59 EDT 2017] The server is busy, Sleep 3 to retry.
[Fri May 19 14:28:29 EDT 2017] The server is busy, Sleep 4 to retry.
[Fri May 19 14:29:59 EDT 2017] The server is busy, Sleep 5 to retry.
[Fri May 19 14:30:04 EDT 2017] new-authz retry reach the max 5 times.
[Fri May 19 14:30:04 EDT 2017] new-authz error: <HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY>An error occurred while processing your request.<p>Reference #97.7f3b2217.1495218599.21f83ae</BODY></HTML>
[Fri May 19 14:30:04 EDT 2017] Please add '--debug' or '--log' to check more details.
[Fri May 19 14:30:04 EDT 2017] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh

Please how can i add that --debug or --log flag to the "acme"? Or what is the cause? What are ideas to make it working?

running: 7.0.0.c-2017050104

7
It would be nice if there is noob friendly way to configure Nginx on per domain basis from within KloxoMR without need to search Google on where are configuration files etc. and involve command line work.

Maybe just some special nginx config file which i will update from within KloxoMR and things/variables i add will override default config.

I see .htaccess files are not supported in Nginx, so i convert htaccess to the nginx format using tool like https://winginx.com/en/htaccess and then finding way to apply the code in KloxoMR on per domain / directory basis.

9
Thx, i think this error 400 - bad request issue is not SSL related.
Because this error repeatedly appears when i do this action: KloxoMR/Domains/my domain here/Manage DNS/Add A/

and i type lets say:

Hostname: test
Value: myserverIPhere

Submit and always error 400 bad request appears.

Then i no longer can access any Kloxo pages, i see blank page.

When i do:
# service kloxo-web restart
Stopping kloxo-hiawatha:                                   [  OK  ]
Starting kloxo-hiawatha:                                   [  OK  ]

And refresh kloxo webpage, i see "DNS Record was added successfully." and see newly added record and all OK.

So something with Kloxo itself?

My VPS RAM is not superb, but i do not see why it should be problem when there is enough vswap (openvz) space:
Code: [Select]
# free -mht
             total       used       free     shared    buffers     cached
Mem:          256M       228M        27M       560K         0B       109M
-/+ buffers/cache:       119M       136M
Swap:         256M        43M       212M
Total:        512M       271M       240M

Can i show any log file so we find the cause please or turn on some debugging mode? Thx
PS: currently running: 7.0.0.c-2017041002 (yum clean all, yum update, cleanup already executed)

10
Kloxo-MR Releases / Re: [TIP] Reset Password
« on: 2017-04-16, 11:52:08 »
When i want to know password to the KloxoMR mysql database (which store KloxoMR configuration), i need to reset MySQL root password using "sh /script/reset-mysql-root-password NewPasswordHere" and then also run "sh /script/fix-program-mysql NewPasswordHere"?

PS: i see i can edit/acess KloxoMR MySQL db also without any password reset from within KloxoMR/Home/SQL Manager. That is usefull. thx

11
Run 'yum reinstall kloxomr7 -y; sh /script/cleanup'.
Thx, it successfully reinstalled it and cleanup finished

At KloxoMR login page i see "Warning: session_start(): Session data file is not created by your uid in /usr/local/lxlabs/kloxo/httpdocs/login/index.php on line 4"
Restarting services does not help.

And the index.php file in websites folder (/home/admin/mysite.tld/) got new line added into it:
<?php header("X-Hiawatha-Cache: 5"); ?>
Thanks to this that ioncube encoded file is somehow corrupted even when i remove that line. Moreover Kloxo added index.html default page to my site.
Please how can i fix that Kloxo error above mentioned? THx

Update: it might be cache issue, in other browser error does not appear. I will test that SSL and update this topic. Thank You Mustafa for help.

12
Run 'yum reinstall kloxomr7 -y;
Please will this erase my configuration in KloxoMR (mysql), i already configured websites, mailboxes, SSL etc inside KloxoMR so would like to keep these settings. Will this overwite it? If yes, how can i backup/restore? Thx

13
Update with 'yum clean all; yum update -y; sh /script/cleanup'.

First two commands finished (it updated around 300 packages), third one failed:
Quote
# sh /script/cleanup
sh: /script/cleanup: No such file or directory
# ls -l /script
lrwxrwxrwx 1 root root 31 Apr 15 11:11 /script -> /usr/local/lxlabs/kloxo/pscript
# ls -l /script/
total 44
-rw-r--r-- 1 lxlabs lxlabs  616 Apr 10 10:59 disable-firewall
drwxr-xr-x 2 lxlabs lxlabs 4096 Apr 15 11:12 filter
-rw-r--r-- 1 lxlabs lxlabs   68 Apr 10 10:59 fix-ipaddress
-rw-r--r-- 1 lxlabs lxlabs  940 Apr 10 10:59 fix-sysctl
-rw-r--r-- 1 lxlabs lxlabs 1543 Apr 10 10:59 functions.inc
-rw-r--r-- 1 lxlabs lxlabs  918 Apr 10 10:59 php-branch-installer
-rw-r--r-- 1 lxlabs lxlabs  922 Apr 10 10:59 php-branch-installer.inc
-rw-r--r-- 1 lxlabs lxlabs  204 Apr 10 10:59 php-branch-updater
-rw-r--r-- 1 lxlabs lxlabs  417 Apr 10 10:59 select-kloxo-wrapper
-rw-r--r-- 1 lxlabs lxlabs   81 Apr 10 10:59 set-initial-services
-rw-r--r-- 1 lxlabs lxlabs 1112 Apr 10 10:59 setup-djbdns
Before update the /script directory was there with all the scripts.. What to do please?

14
Inform here 'sh /script/sysinfo'.

Quote
# sh /script/sysinfo
A. Control Panel:
   - Kloxo-MR: 7.0.0.c-2017031002
   - Web: hiawatha-10.5.0-f.2.mr.el6.i686
   - PHP: php56s-5.6.30-1.ius.centos6 (fpm mode)
B. Plateform:
   - OS: CentOS release 6.8 (Final) i686
   - Hostname: adopzwkk
C. Services:
   1. MySQL: MariaDB-server-10.0.30-1.el6.i686
   2. PHP:
      - Installed:
        - Branch: php56u-cli-5.6.30-1.ius.centos6.i686
      - Used: --PHP Branch--
      - Multiple: disable
   3. Web Used: apache
     - Hiawatha: hiawatha-10.5.0-f.2.mr.el6.i686
     - Lighttpd: lighttpd-1.4.45-1.el6.i686
     - Nginx: nginx-1.11.10-1.el6.ngx.i386
     - Apache: httpd24u-2.4.25-3.ius.centos6.i686
       - PHP Type: php-fpm_event
       - Secondary PHP: off
   4. WebCache: none
     - ATS: --uninstalled--
     - Squid: --uninstalled--
     - Varnish: --uninstalled--
   5. Dns: bind
     - Bind: bind-9.9.7-1.mr.el6.i386
     - DJBDns: --uninstalled--
     - NSD: --uninstalled--
     - PowerDNS: --uninstalled--
     - Yadifa: --uninstalled--
   6. Mail: qmail-toaster-1.03-1.3.55.mr.el6.i386
      - pop3/imap4: courier-imap-toaster-4.1.2-1.3.20.mr.el6.i686
      - smtp: qmail-toaster-1.03-1.3.55.mr.el6.i386
      - spam: bogofilter-1.2.4-1.el6.i686
   7. Stats: awstats
D. Memory:
             total       used       free     shared    buffers     cached
Mem:           768        368        399          0          0        175
-/+ buffers/cache:        192        575
Swap:          256          0        256
E. Disk Space:
Filesystem      Size  Used Avail Use% Mounted on
/dev/simfs      7.9G  1.8G  6.1G  23% /


*** Process Time: 00:00:00:29.29571 (dd:hh:mm:ss:xxxxxx) ***

* Note: run 'sh /script/sysinfo -y' if you want run 'fix-service-list' also
        (importance after Kloxo-MR update)

15
I hope next upload will include letsencrypt ready.
I think Let's encrypt is now supported, i added certificate successfully. Go to KloxoMR/Domains/yourdomain.tld/SSL certificates/Add let's encrypt. If error 400, try to login SSH and restart services (sh /script/restart-all).

Pages: [1] 2

Top 10 Social Networking:    Facebook    Twitter    LinkedIn    Pinterest    Google Plus    Tumblr    Instagram    VK    Flickr    Vine

Page created in 0.036 seconds with 20 queries.

web stats analysis