nginx + php-fpm - suhosin

wanener

Verified User
Joined
Apr 16, 2012
Messages
23
hello
i installed CB2 on a fresh VPS
i select nginx with php-fpm and php 5.3 at the point of installation
after installation i get cert error on nginx restart
i saw in another topic some said that its because of odl Directadmin version but mine was fresh

so i tried to change webserver=apache and after that rebuild with ./build all !
then i changed webserver to webserver=nginx again and no SSL cert error on restart !
so problem solved but please consider it as a bug report !


my other problem is when i want to restart nginx using

service nginx restart

i get
nginx: [warn] conflicting server name "www.doamin1.com" on ip:443, ignored
nginx: [warn] conflicting server name "doamin2.com" on 8ip:443, ignored
nginx: [warn] conflicting server name "anotherdoamin.com" on ip:443, ignored
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
Stopping nginx: [ OK ]
Starting nginx:

but as you see nginx not start again
i have to run
killall nginx and then start nginx !

what shall i do about this ?


and 2 more problem !

how may i install suhosin with nginx php-fpm and custombuild 2 ?

and where is this configuration main php.ini to disable dangerous functions and change configurations ?

regards
 
hello
i installed CB2 on a fresh VPS
i select nginx with php-fpm and php 5.3 at the point of installation
after installation i get cert error on nginx restart
i saw in another topic some said that its because of odl Directadmin version but mine was fresh

so i tried to change webserver=apache and after that rebuild with ./build all !
then i changed webserver to webserver=nginx again and no SSL cert error on restart !
so problem solved but please consider it as a bug report !


my other problem is when i want to restart nginx using

service nginx restart

i get
nginx: [warn] conflicting server name "www.doamin1.com" on ip:443, ignored
nginx: [warn] conflicting server name "doamin2.com" on 8ip:443, ignored
nginx: [warn] conflicting server name "anotherdoamin.com" on ip:443, ignored
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
Stopping nginx: [ OK ]
Starting nginx:

but as you see nginx not start again
i have to run
killall nginx and then start nginx !

what shall i do about this ?


and 2 more problem !

how may i install suhosin with nginx php-fpm and custombuild 2 ?

and where is this configuration main php.ini to disable dangerous functions and change configurations ?

regards

#1 was fixed in CB 2.0 about a month ago
#2 for that you should run the latest version of DA (pre-relase)
#3 suhosin is a PHP extension, so you can install it in the same way you install it using apache
#4 You can just run "./build secure_php" for that. php.ini is located in /usr/local/php55/lib/php.ini

Thank you.
 
#1 was fixed in CB 2.0 about a month ago
#2 for that you should run the latest version of DA (pre-relase)
#3 suhosin is a PHP extension, so you can install it in the same way you install it using apache
#4 You can just run "./build secure_php" for that. php.ini is located in /usr/local/php55/lib/php.ini

Thank you.


hello and thanks
i installed this Da 3 days AGO ! but the problem was there !
how may i upgrade Directadmin to pre-relase version ?
could you please give a link to install suhosin on Directamdin with php 5.3 ?
i tried ./build secure_php before but CSF give following error

Code:
Check php version (/usr/local/bin/php)	OK	 
Check php for enable_dl or disabled dl()	WARNING	You should modify /usr/local/lib/php.ini and set:
enable_dl = Off
This prevents users from loading php modules that affect everyone on the server. Note that if use dynamic libraries, such as ioncube, you will have to load them directly in the PHP configuration (usually in /usr/local/lib/php.ini)
Check php for disable_functions	WARNING	You should modify the PHP configuration and disable commonly abused php functions, e.g.:
disable_functions = show_source, system, shell_exec, passthru, exec, phpinfo, popen, proc_open, allow_url_fopen
Some client web scripts may break with some of these functions disabled, so you may have to remove them from this list
Check php for ini_set disabled	WARNING	You should consider adding ini_set to the disable_functions in the PHP configuration as this setting allows PHP scripts to override global security and performance settings for PHP scripts. Adding ini_set can break PHP scripts and commenting out any use of ini_set in such scripts is advised

and at the end
thanks for your help
 
thanks
this server is under heavy load and operational
do you suggest to upgrade da to Pre-Relase ?
 
1.43.0 has some bugs (nginx related) that were fixed in pre-release, so I would recommend doing so.
 
and another problem is some of the domains show following error
all of domains are on 1 Ip and reseller
but 2 or 3 of them show this error and other NOT !

This IP is being shared among many domains.
To view the domain you are looking for, simply enter the domain name in the location bar of your web browser.
 
It might be DNS related. Make sure that DNS points to the same IP which the website is placed on.
 
Hello again

i have another question

i want to install a new directadmin server and use varnish or nginx as reverse proxy on it ( so i can have Apache mods like htacess and mod rewite )

is there any complete Topic our help that you can suggest me to do installation from that guide ?

this server will be used for Online Chat webistes with ET-CAHT Script and other normal websites

what version of custombuild do you suggest for this situation ?
what version of Apache and PHP
what MPM ?
and CLI or CGI ?
SUPHP or FCGI ?

thank you
 
Back
Top