DirectAdmin 1.63.0 RC

fln

Administrator
Staff member
Joined
Aug 30, 2021
Messages
34
Hi everyone!

We're happy to announce the release candidate for 1.63.0.

This version includes a series of bug-fixes and a couple of new features, change-log can be found here:

DirectAdmin 1.63.0

The most notable feature is user web Terminal (Pro Pack feature). The update should be automatically available for all installations subscribed to the beta release channel.

We appreciate all the feedback on forums and issues reported in the ticketing system.

Thanks!
fln
 

MaXi32

Verified User
Joined
Jul 25, 2016
Messages
411
Location
The Earth
Hai @fln, I found that this one issue is really annoying (happens only with nginx or nginx_apache and when hsts is enabled on hostdomain using this method: https://www.directadmin.com/features.php?id=1776)

Here is the discussion about this bug: https://forum.directadmin.com/threa...abled-when-using-nginx-or-nginx_apache.64749/

The hsts header for hostname is missing in nginx and nginx_apache but it appears only on apache standalone server.

Since my root hostdomain server.com is now on chrome preload list, I cannot remove this hsts preload from chrome list and I have to face this issue. Removing hsts preload from chrome list would take many weeks.

many_weeks.JPG

I reinstalled the server with clean install, tested with nginx, nginx_apache the static link is broken. With apache it is working fine (hsts is enabled perfectly). I'm not going to switch to apache. To summarize this issue: hsts header for hostname is not enabled (missing header) when using nginx or nginx_apache. Would this be fixed soon?

Note that hsts for other domains are working fine with both nginx and apache. The issue is only with hsts for hostname that affected webapps like phpmyadmin and roundcube where they have missing static files like js, css.
 

Attachments

  • 1634175003764.png
    1634175003764.png
    31.3 KB · Views: 11
Last edited:

fln

Administrator
Staff member
Joined
Aug 30, 2021
Messages
34
@MaXi32 if you have a DA subscription with support please open a ticket and report this issue. I think this has something to do with your local modifications. HSTS support on DA web UI and HSTS support on the web server like apache/nginx has nothing in common. If HSTS is used on DA interface you need to manually ensure that your web server of choice supports TLS and add HSTS headers manually if needed.
 

MaXi32

Verified User
Joined
Jul 25, 2016
Messages
411
Location
The Earth
@fln Did you try the step that I'm able to reproduce? I mean using auto installation, then you switch to nginx_apache or nginx. Switching to nginx_apache is considered a modification ? I will try to reproduce a video about this. I actually have sent a ticket about this.


@MaXi32 If HSTS is used on DA interface you need to manually ensure that your web server of choice supports TLS and add HSTS headers manually if needed.

Please note that this is related to host hsts not user domain hsts (as mentioned in the link). The host hsts can be enabled through directadmin.conf so it doesn't need to be added manually. I will do another 4th installation. This time I'm registering a new VPS in linode and using a trial directadmin license and the installation will be using this command:

Code:
bash <(curl -Ss https://www.directadmin.com/setup.sh || wget -O - https://www.directadmin.com/setup.sh) auto

I will update this post.
 
Last edited:

fln

Administrator
Staff member
Joined
Aug 30, 2021
Messages
34
I have a test machine running Debian 10 with nginx. No issues on it with or without HSTS enabled in directadmin.conf. I expected you have modifications in nginx templates. I am still not getting the essence of the issue.

Could you PM me credentials to the server where I could see this issue in action?
 

jamgames2

Verified User
Joined
Aug 16, 2019
Messages
478
@fln
could you test my issued ?

In my case
there have different between
"nginx-vhost.conf" and "directadmin-ips.conf"(/usr/local/directadmin/data/template/nginx-ips.conf)

If I copy template from "nginx-vhost.conf" to "nginx-ips.conf" , it back to work.
 

MaXi32

Verified User
Joined
Jul 25, 2016
Messages
411
Location
The Earth
@fln I will try to reproduce again. Yesterday I had SSL limit in LE and I want to make sure certificate SLL would not be an issue. Will update this.

EDIT

I was surprised that I think this might be due to my browser cache. Yesterday, when I install DA using auto mode (clean installation) even with apache, I got the ugly interface and it said certificate mismatched. But after I cleared the browser cache I can see phpmyadmin and round site are working. When you say that I might have custom nginx option I don't think I have it when doing clean install. I will keep this updated if I found something. I will try to reproduce this again to request the hostname SSL certificate after the DA auto mode installation is done.
 
Last edited:

MaXi32

Verified User
Joined
Jul 25, 2016
Messages
411
Location
The Earth
@fln The problem is solved I did reinstall DA like 3 times and I haven't found any errors. I'm sure I did not have any custom nginx. This is my conclusion after debugging:


Sorry and thanks for concerning.
 

Nickske00

Verified User
Joined
Nov 30, 2015
Messages
46
Can this little bug be solved on Debian 11? :)
dnssec-signzone: fatal: The -r options has been deprecated.
 
Top