Webmail problems

J

jim.thornton

Verified User
Joined
Jan 1, 2008
Messages
334
When I click on the webmail icon (both at the top and below), I get a 500 error (Internal Server Error). I checked the /etc/http/conf/extra/httpd-alias.conf and it is forwarded to "/var/www/html/roundcube/", but it still isn't working.
 
zincoxide said:
When I click on the webmail icon (both at the top and below), I get a 500 error (Internal Server Error). I checked the /etc/http/conf/extra/httpd-alias.conf and it is forwarded to "/var/www/html/roundcube/", but it still isn't working.
Click to expand...

is /var/www/html/roundcube/ owned by the user webapps?

if not do

chown -R webapps:webapps /var/www/html/roundcube
 
Well look in error logs then.

/var/log/directadmin/error.log
/var/log/httpd/error_log
 
chatwizrd said:
Well look in error logs then.

/var/log/directadmin/error.log
/var/log/httpd/error_log
Click to expand...

DA error log didn't show anything. But , the apache one showed:
[Tue Jan 08 20:57:37 2008] [error] [client 11.111.111.111] mod_security: Access denied with code 500. Pattern match "../" at $

I don't know why I'm getting this. Do you?
 
Sorry I dont know anything about mod_security. You will have to wait for someone to respond who might know. Else check your mod security rules in /etc/httpd/conf/httpd.conf or whatever file they are in.
 
You will need to know what rule you failed on.

Look in your mod security log file. Try then disabling that rule.

ModSecurity can be very pedantic about its core rules, and many valid pieces of software will fall over with it.

I suggest you disable the rule in question, until you understand it better.
 
mattb said:
You will need to know what rule you failed on.

Look in your mod security log file. Try then disabling that rule.

ModSecurity can be very pedantic about its core rules, and many valid pieces of software will fall over with it.

I suggest you disable the rule in question, until you understand it better.
Click to expand...

Here is the error:
--6d075041-A--
[08/Jan/2008:20:48:32 --0500] SnDtk0o-Q5IAAFdeZ6wAAAAC 111.111.111.111 63296 74.63.67.146 80
--6d075041-B--
GET /roundcube/ HTTP/1.1
Host: www.extra6.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.8.1.11) Gecko/20071127 Firefox/2.0.0.11
Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Referer: http://www.example.com:2222/CMD_SHOW_DOMAIN?domain=extra6.com
Cookie: session=2NYoOkIXi9u5eQNwDeUyeWUSLoujB3pDRNzn6HKoQFr2dDzqrRoWxHwH5o0EqnRF

--6d075041-F--
HTTP/1.1 500 Internal Server Error
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 231
Connection: close
Content-Type: text/html

--6d075041-H--
Message: Access denied with code 500. Pattern match "../" at REQUEST_URI [severity "EMERGENCY"]
Action: Intercepted (500)
Stopwatch: 1199843312725395 988 (98 228 -)

--------------------------------------------------------------
What do I do now? I don't understand what this is saying.
 
I commented out that line in the httpd.conf file. Now the webmail clients load.

But... I have a new problem.

When loading Squirel Mail, it gives me the following errors:
Warning: Unknown: open(/tmp/sess_d2d6da8e9ec65ba18792468f29d51703, O_RDWR) failed: Permission denied (13) in Unknown on line 0

Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct () in Unknown on line 0

With Roundcube (my preferred client), it loads without error, but it will not delete messages out of the inbox. It moves a copy to the trash folder, but the original stays in the inbox, and then if you delete it again, there will be 2 copies in the trash folder and the original still in the inbox (and so on).
 
is the /tmp partition world writeable and readable?

If not you can do

chmod 777 /tmp
 
chatwizrd said:
is the /tmp partition world writeable and readable?

If not you can do

chmod 777 /tmp
Click to expand...

I was reading something that said with a vps that you have to secure the /tmp directory so that no scripts can be executed within the folder. Is that not the case?

Here is what it ls says:

drwxr-xr-x 3 root root 4096 Jan 10 00:35 /tmp

Isn't it a security risk to change it to 777? ...

I did it, I changed it to 777 but if you can please let me know if it is a security risk.

Now... I have another problem though. I can get in and it will receive and delete emails without a problem, but will not send. It just keeps saying "Sending".

I went into Squirel Mail to test it and this is the error I got when I tried to send an email:

ERROR:
Message not sent. Server replied:

Authentication failed
535 Incorrect authentication data

Is there somewhere I have to go in DA to configure these mail clients?
 
You must log in or register to reply here.
Back
Top