Jump to content
Froxlor Forum

veto

Members
  • Posts

    50
  • Joined

  • Last visited

Posts posted by veto

  1. yes, i did not installed the required libnss. but after this setup and restart i still got the same error.

    than i did what @irisdina suggested and the error was gone.

    1.
    adduser jewelry --no-create-home --disabled-password

    2.
    usermod -a -G www-data jewelry

    3.
    /etc/init.d/php7.3-fcgi restart

     

    still my  php script was not running from my /var/customer/jewelry/info.php

    after test-change the permission to 777 of the automatic created socket file

    srw-rw----  1 jewelry  jewelry      0 Mar 14 08:19 1-jewelry-jewelry.vin-php-fpm.socket

     

    it works.

     

    chmod 777 1-jewelry-jewelry.vin-php-fpm.socket

     

     

     

  2. hi,

    i try to bring debian9,nginx and php7.3-fpm to work.

    at the moment i hang with the error form

    tail -f php7.3-fpm.log error

    c[14-Mar-2019 06:26:59] ERROR: [pool jewelry.vin] cannot get uid for user 'jewelry'
    [14-Mar-2019 06:26:59] ERROR: FPM initialization failed

    my user is called jewelry

    and i see that froxlor created  automatically the file

    /etc/php/7.3/fpm/pool.d/jewelry.vin.conf

     

    PHP-FPM configuration for "jewelry.vin" created on 2019.03.14 06:26:59
    [jewelry.vin]
    listen = /var/run/1-jewelry-jewelry.vin-php-fpm.socket
    listen.owner = jewelry
    listen.group = jewelry
    listen.mode = 0660
    user = jewelry
    group = jewelry
    pm = static
    pm.max_children = 1
    pm.max_requests = 0
    ;chroot = /var/customers/webs/jewelry/
    security.limit_extensions = .php
    env[PATH] = /usr/local/bin:/usr/bin:/bin
    env[TMP] = /var/customers/tmp/jewelry/
    env[TMPDIR] = /var/customers/tmp/jewelry/
    env[TEMP] = /var/customers/tmp/jewelry/
    php_admin_value[session.save_path] = /var/customers/tmp/jewelry/
    php_admin_value[upload_tmp_dir] = /var/customers/tmp/jewelry/


    php_admin_flag[allow_call_time_pass_reference] = Off
    php_admin_flag[allow_url_fopen] = On
    php_flag[asp_tags] = Off
    php_admin_value[disable_classes] =
    php_admin_value[disable_functions] = curl_multi_exec,exec,parse_ini_file,passthru,popen,proc_close,proc_get_status,proc_nice,proc_open,proc_terminate,shell_exec,show_source,system
    php_flag[display_errors] = Off
    php_flag[display_startup_errors] = Off
    php_admin_flag[enable_dl] = Off
    php_value[error_reporting] = E_ALL & ~E_NOTICE
    php_admin_flag[expose_php] = Off
    php_admin_flag[file_uploads] = On
    php_admin_flag[cgi.force_redirect] = 1
    php_admin_value[gpc_order] = "GPC"
    php_flag[html_errors] = Off
    php_admin_flag[ignore_repeated_errors] = Off
    php_admin_flag[ignore_repeated_source] = Off
    php_value[include_path] = ".:/usr/share/php/:/usr/share/php7/"
    php_flag[log_errors] = On
    php_admin_flag[log_errors] = On
    php_value[log_errors_max_len] = 1024
    php_flag[magic_quotes_gpc] = Off
    php_flag[magic_quotes_runtime] = Off
    php_flag[magic_quotes_sybase] = Off
    php_value[max_execution_time] = 60
    php_admin_value[max_input_time] = 60
    php_admin_value[memory_limit] = 128M
    php_admin_value[output_buffering] = 4096
    php_admin_value[post_max_size] = 16M
    php_admin_value[precision] = 14
    php_admin_flag[register_argc_argv] = Off
    php_admin_flag[report_memleaks] = On
    php_admin_value[sendmail_path] = "/usr/sbin/sendmail -t -i -f pd_web0@body-piercing.com"
    php_value[session.auto_start] = 0
    php_value[session.cookie_domain] =
    php_value[session.cookie_lifetime] = 0
    php_value[session.cookie_path] = /
    php_admin_value[session.gc_divisor] = 1000
    php_admin_value[session.gc_probability] = 1
    php_value[session.name] = PHPSESSID
    php_value[session.serialize_handler] = php
    php_flag[session.use_cookies] = 1
    php_flag[short_open_tag] = On
    php_flag[suhosin.simulation] = Off
    php_flag[track_errors] = Off
    php_value[upload_max_filesize] = 32M
    php_admin_value[variables_order] = "GPCS"
    php_admin_value[opcache.restrict_api] = ""

     

     

     

     

     

     

  3. Quote

     

    i use postgrey and   SpamAssassin with  postfix

    my notes may give you the hint:

    postgrey:

    http://myridia.com/dev_posts/view/706)

     

    spamassassin

    http://myridia.com/dev_posts/view/1238

    Quote

    http://wiki.apache.org/spamassassin/IntegratedSpamdInPostfix

    1) Create a bash script to receive e-mail from Postfix and pipe it to SpamAssassin for rewriting. Then forward the rewritten version to Postfix's sendmail implementation:

    #!/bin/bash
    #
    # spamfilter.sh
    #
    # Simple filter to plug SpamAssassin into the Postfix MTA
    #
    # Modified by Jeremy Morton
    #
    # This script should probably live at /usr/bin/spamfilter.sh
    # ... and have 'chown root:root' and 'chmod 755' applied to it.
    #
    # For use with:
    #     Postfix 20010228 or later
    #     SpamAssassin 2.42 or later

    # Note: Modify the file locations to suit your particular
    #       server and installation of SpamAssassin.
    # File locations:
    # (CHANGE AS REQUIRED TO SUIT YOUR SERVER)
    SENDMAIL=/usr/sbin/sendmail
    SPAMASSASSIN=/usr/bin/spamc

    logger <<<"Spam filter piping to SpamAssassin, then to: $SENDMAIL $@"
    ${SPAMASSASSIN} | ${SENDMAIL} "$@"

    exit $?


    2) Ensure the newly-created /usr/bin/spamfilter.sh has correct permissions (0755), and is owned by root:root.

    3) Modify the /etc/postfix/master.cf file; first, change the first 'smtp' line of the file to:

    smtp      inet  n       -       -       -       -       smtpd -o content_filter=spamfilter

    Then, add the following (a call to our newly-created spamfilter script) at the end:

    spamfilter
              unix  -       n       n       -       -       pipe
       flags=Rq user=spamd argv=/usr/bin/spamfilter.sh -oi -f ${sender} ${recipient}

     

  4. i'm just in a the process  of migrating a froxlor managed couriermail server to a new froxlor/debian9/postfix/dovecot mail server

    there are hundreds of gigabyte imapmap emails with hundreds of accounts.

    to make this a bit less painfully to move

    i started to created a small email migration script for the beginning

    https://github.com/veto64/sync_froxlor

     

    requirements:

    emails passwords must be plain

    latest docker

    remote access to the server

     

  5. thanks,

    but same error

    [Wed Aug 16 09:46:26.503876 2017] [proxy_fcgi:error] [pid 24298] [client 61.19.42.229:1739] AH01079: failed to make connection to backend: httpd-UDS
    [Wed Aug 16 09:46:53.687903 2017] [proxy:error] [pid 24300] (2)No such file or directory: AH02454: FCGI: attempt to connect to Unix domain socket /var/lib/apache2/fastcgi/foo.com-php-fpm.socket (*) failed

     

    maybe because i don't have

    libapache2-mod-fastcgi in stretch anymore

    but i have
    libapache2-mod-fcgid

  6. i got this error:

    Tue Aug 15 18:26:32.621996 2017] [proxy:error] [pid 31544] (2)No such file or directory: AH02454: FCGI: attempt to connect to Unix domain socket /var/lib/apache2/fastcgi/froxlor.pa\
    nel-serverdomain.com-php-fpm.socket (*) failed
    [Tue Aug 15 18:26:32.622037 2017] [proxy_fcgi:error] [pid 31544] [client 1.47.132.48:8651] AH01079: failed to make connection to backend: httpd-UDS
    [Tue Aug 15 18:27:04.808228 2017] [mpm_prefork:notice] [pid 29580] AH00171: Graceful restart requested, doing restart

     

    so i linked

    /var/lib/apache2/fastcgi/froxlor.pa\
    nel-foo.com-php-fpm.socket  to

    /var/run/php/php5.6-fpm.sock

     

    to login to froxlor again and disable the proxy-fcgi with fpm

     

     

     

     

  7. thanks,

    its working,

    i used  a combination of proxy_fcgi and php-fpm

    install :
    apt-get install php5.6-fpm php5.6

    activate:

    a2enmod proxy_fcgi proxy

    and in froxlor in the text box Own vHost-settings of the domain settings i added:

     <FilesMatch "\.php$">
        SetHandler  "proxy:unix:/var/run/php/php5.6-fpm.sock|fcgi://foo.com/"
    </FilesMatch>

  8. have now successfully a default froxlor + apache2 + mod_apache + php7  running.

    the problem is now that some php webapps are not supporting php7.

    i read the debian9 can run multiple php version 

    and i installed php 5.6 with

    apt-get install apt-transport-https
    curl https://packages.sury.org/php/apt.gpg | apt-key add -
    echo 'deb https://packages.sury.org/php/ stretch main' > /etc/apt/sources.list.d/deb.sury.org.list
    apt-get update

    https://pehapkari.cz/blog/2017/03/27/multiple-php-versions-the-easy-way/

    the manual is for nginx.

    i want now to run all virtual host with the default mod_php apache2 setting from froxlor but for some virtualhosts

    use another php handler like  php5.6-cgi or php5.6-fmp.

    there so many different setting possible and with the decaying search quality it difficult to find a staring point

     

     

     

  9. after deleting  4 directory settings in /etc/postfix/main.cf

    command_directory = /usr/sbin
    daemon_directory = /usr/lib/postfix
    shlib_directory =  /usr/lib/postfix
    data_directory = /var/lib/postfix

    and add compatibility_level = 2

     

    stretch postgres-3.1.4  is working, tested with squirrel-mail

     

     

     

    this is my working main.cf

    mydomain = foo.com
    myhostname = $mydomain
    compatibility_level = 2
    unknown_local_recipient_reject_code = 550
    mynetworks = 127.0.0.0/8
    smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
    debugger_command =
       PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
       ddd $daemon_directory/$process_name $process_id & sleep 5
    sendmail_path = /usr/sbin/sendmail
    newaliases_path = /usr/bin/newaliases
    mailq_path = /usr/bin/mailq
    setgid_group = postdrop
    html_directory = no
    manpage_directory = /usr/share/man
    sample_directory = /usr/share/doc/postfix
    readme_directory = /usr/share/doc/postfix
    inet_protocols = ipv4
    append_dot_mydomain = no
    biff = no
    smtpd_helo_required = yes
    smtpd_recipient_restrictions = permit_mynetworks,
      permit_sasl_authenticated,
      reject_unauth_destination,
      reject_unauth_pipelining,
      reject_non_fqdn_recipient
    smtpd_sender_restrictions = permit_mynetworks,
      reject_sender_login_mismatch,
      permit_sasl_authenticated,
      reject_unknown_helo_hostname,
      reject_unknown_recipient_domain,
      reject_unknown_sender_domain
    smtpd_client_restrictions = permit_mynetworks,
      permit_sasl_authenticated,
      reject_unknown_client_hostname

    smtpd_relay_restrictions =
    message_size_limit = 524288000
    smtpd_sasl_auth_enable = yes
    smtpd_sasl_local_domain = $myhostname
    broken_sasl_auth_clients = yes
    smtpd_sasl_type = dovecot
    virtual_transport = dovecot
    dovecot_destination_recipient_limit = 1
    smtpd_sasl_path = private/auth
    virtual_mailbox_base = /
    virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailbox_maps.cf
    virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_mailbox_domains.cf
    virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_alias_maps.cf
    smtpd_sender_login_maps = mysql:/etc/postfix/mysql-virtual_sender_permissions.cf
    virtual_uid_maps = static:2000
    virtual_gid_maps = static:2000
    local_transport = local
    alias_maps = $alias_database
    mailbox_size_limit = 0
    virtual_mailbox_limit = 0

  10. thanks,

    after the install of a basic lamp via apt-get and the setup of a root mysql user with password,
    i could successfully install froxlor from git with the missing php7 modules.
    the configuration with jessie on stretch was strait forward like always.
    virtual web-hosting is running, lets-encrypt works smooth.
    the problem now is that the postfix version(postconf -d | grep mail_version) changed quite a bit:

    from
    mail_version = 2.11.3
    to
    mail_version = 3.1.4

    need to figure it out...

  11. froxlor is a great webadmin tool and i'm using it since years(decades with syscp) on production servers.

    unfortunately its always a bit behind the 2 year debian upgrades.

    right now i try to install it to debian9

    im getting the below  message, suppose i need to downgrade php7 to php5 :

    # apt-get install froxlor
    Reading package lists... Done
    Building dependency tree       
    Reading state information... Done
    Some packages could not be installed. This may mean that you have
    requested an impossible situation or if you are using the unstable
    distribution that some required packages have not yet been created
    or been moved out of Incoming.
    The following information may help to resolve the situation:

    The following packages have unmet dependencies:
     froxlor : Depends: php5 but it is not installable or
                        php5-cgi but it is not installable
               Depends: php5-cli but it is not installable
               Depends: php5-curl but it is not installable
               Depends: php5-mysqlnd but it is not installable or
                        php5-mysql but it is not installable
               Recommends: postfix-mysql but it is not going to be installed or
                           exim4-daemon-heavy but it is not going to be installed
               Recommends: libsasl2-modules-sql but it is not going to be installed
               Recommends: maildrop but it is not going to be installed
               Recommends: dovecot-common or
                           courier-authlib-mysql but it is not going to be installed
               Recommends: dovecot-imapd but it is not going to be installed or
                           courier-imap but it is not going to be installed
               Recommends: dovecot-pop3d but it is not going to be installed or
                           courier-pop but it is not going to be installed
               Recommends: php5-gd but it is not installable
               Recommends: php5-imap but it is not installable
               Recommends: proftpd-mod-mysql but it is not going to be installed or
                           pure-ftpd-mysql but it is not going to be installed
               Recommends: bind9 but it is not going to be installed or
                           pdns-server but it is not going to be installed
    E: Unable to correct problems, you have held broken packages.

     

×
×
  • Create New...