#StackBounty: #nginx #magento2.3.4 #multi-website #localhost #centos Magento 2.3 – How to configure Nginx for Multi-Website store on Lo…

Bounty: 50

Steps :-

  1. Main website Path : usr/share/nginx/html/gomart
    • Contains all magento files
    • Configuration in nginx.conf.sample for Multi-Website
    • nginx.conf.sample -> https://justpaste.it/97yki (code)
  2. Multi-Website Path : usr/share/nginx/html/gomart/grocery
    • Created subfolder inside the root folder along with symbollice linksof app, lib, pub, var and copy index.php & .htaccess from root folder to subfolder
  3. Inside the subfolder Symbolic Liks:
  4. Nginx Setup (Not sure right)

Url : http://192.168.1.64:8087/grocery 404 error.


Get this bounty!!!

#StackBounty: #centos #yum exclude i686 packages in yum.conf

Bounty: 100

I’m trying to exclude *.i686 packages from installing when I try to install the x86_64 version of libcrypto.so.10.

If I put any of the following (one at a time) into my /etc/yum.conf under [main]:

multilib_policy=best
exactarch=1
exclude=*.i386 *.i686
exclude=*.i?86

And I try to install the package it says that it isn’t there:

sudo yum install libcrypto.so.10
Loaded plugins: fastestmirror, rhnplugin, tsflags, versionlock
This system is receiving updates from RHN Classic or Red Hat Satellite.
Loading mirror speeds from cached hostfile
No package libcrypto.so.10 available.
Error: Nothing to do

However if I remove any of those settings it tries to install both i686 and the x86_64 version of libcrypto.so.10. I am using Centos version: CentOS Linux release 7.7.1908 (Core)

How can I exclude *.i686 packages in the /etc/yum.conf file?


Get this bounty!!!

#StackBounty: #nginx #magento2.3.4 #multi-website #localhost #centos Magento 2.3 – Separate folders for each website store – How to con…

Bounty: 50

Steps :-

  1. Main website Path : usr/share/nginx/html/gomart
    • Contains all magento files
    • Configuration in nginx.conf.sample for Multi-Website
    • nginx.conf.sample -> https://justpaste.it/97yki (code)
  2. Multi-Website Path : usr/share/nginx/html/gomart/grocery
    • Created subfolder inside the root folder along with symbollice linksof app, lib, pub, var and copy index.php & .htaccess from root folder to subfolder
  3. Inside the subfolder Symbolic Liks of (usr/share/nginx/html/gomart/grocery)
  4. Nginx Setup (Not sure right)

Url : http://192.168.1.64:8087/grocery 404 error.


Get this bounty!!!

#StackBounty: #nginx #magento2.3.4 #multi-website #localhost #centos Magento 2.3 – How to setup Nginx for Multi-Website store on Localh…

Bounty: 50

Installed magento 2.3.4 on centos 7 – nginx localhost,

  • Root folder – usr/share/nginx/html/gomart
  • Created subfolder inside the root folder along with symbollice link of app, lib, pub, var and copy index.php & .htaccess from root folder to subfolder index.php, .htaccess [Modified for Multi-Website] – Folder Path – usr/share/nginx/html/gomart/grocery

Second Website (Multi Website) configure by this tutorial

How to setup etc/site-available & etc/nginx/conf.d/mgento.conf for multi-website store?

Current store etc/site-available & etc/nginx/conf.d/mgento.conf configuration.

How to setup multi-website for Nginx in the site-available& mgento.conf?


Get this bounty!!!

#StackBounty: #nginx #magento2.3.4 #multi-website #localhost #centos Magento 2.3 – Setup Multi Website on Centos 7 – Nginx in Localhost

Bounty: 50

Install magento 2.3.4 on centos 7 – nginx localhost,

  • Root folder – usr/share/nginx/html/gomart
  • Created subfolder inside the root folder along with symbollice link of app, lib, pub, var and copy index.php & .htaccess from root folder to subfolder index.php, .htaccess [Modified for Multi-Website] – Folder Path – usr/share/nginx/html/gomart/grocery

Second Website (Multi Website) configure by this tutorial

How to setup etc/site-available & etc/nginx/conf.d/mgento.conf for multi-website store?

Current store etc/site-available & etc/nginx/conf.d/mgento.conf configuration.

How to setup multi-website site-available& mgento.conf?


Get this bounty!!!

#StackBounty: #centos #vsftpd #centos8 #uid Inverse Name Search by UID (CentOS 8) – Retrieves last created with same UID

Bounty: 50

I am working with CentOS 8 and I have a problem with UIDs and User Names. I have installed VestaCP to manage my websites. The user by the name of “user123” and UID 1007 is the owner of all the websites (user in VestaCP). Then I have created individual FTP users for each website. Each FTP user has the following name format: “user123_random”, where random is a random text. Each FTP user has a different name, but they all share the same UID (1007) (this is the default behavior when creating new FTP users).

Now the problem happens when I am checking the ownership (user) of each website or file inside that website. So technically, the owner belongs is UID 1007. The problem here is that CentOS 8, for some reason, it is showing “user123_random” as the owner of the websites instead of “user123”.

The curious thing is that when I do a “id -nu 1007”, it returns the name of the last FTP user created with the prefix “user123_”. So I assume, this is what CentOS 8 does internally, showing the last username (with same ID 1007) as the owner of a file/directory. This is not how CentOS 7 worked. CentOS 7 would show “user123” as the owner of the files, irrespective of adding new FTP users with the same UID.

The question is…is there a way to change this behavior in CentOS 8, so that it behaves as CentOS 7? So that the inverse name search by UID returns the “first created user” with that UID.


Get this bounty!!!

#StackBounty: #centos #apache-httpd #ssl #apache-virtualhost #pacemaker Apache fails to load when SSL activated through Pacemaker

Bounty: 50

I have setup a cluster on Pacemaker holding: apache, mariadb, 2x GFS2, and a VIP

Everything was working fine when running on http but as soon as I added the (self-signed) SSL certificate and the virtual host to httpd/conf.d/ssl.conf file, the cluster won’t start the web server again.

I have searched for results on the /server-status and SSL/https but I cant fund any results on how to conjure it.

When I run:

[root@node01 ~]# pcs resource debug-start mb-web
Operation start for mb-web (ocf:heartbeat:apache) returned: 'unknown error' (1)
> stderr: May 18 12:38:43 INFO: apache not running
> stderr: May 18 12:38:43 INFO: waiting for apache /etc/httpd/conf/httpd.conf to come up
> stderr: ocf-exit-reason:Failed to access httpd status page.
> stderr: May 18 12:38:44 INFO: Attempting graceful stop of apache PID 31950
> stderr: May 18 12:38:46 INFO: apache stopped.

I also get it in the failed messages:

Failed Resource Actions:
* mb-web_start_0 on node01 'unknown error' (1): call=128, status=complete, exitreason='Failed to access httpd status page.',
last-rc-change='Mon May 18 12:32:05 2020', queued=0ms, exec=3402ms
* mb-web_start_0 on node02 'unknown error' (1): call=130, status=complete, exitreason='Failed to access httpd status page.',
last-rc-change='Mon May 18 12:31:35 2020', queued=0ms, exec=3425ms

I have tried updating the resource via:

pcs resource update mb-web statusurl="https://localhost/server-status"
or
pcs resource update mb-web statusurl="https://127.0.0.1/server-status"
or
pcs resource update mb-web statusurl="https://vip.fqdn.ltd/server-status"

I followed the setup from: ClusterLabs.org

Within my /etc/httpd/conf.d/status.conf file I have:

<Location /server-status>
    SetHandler server-status
     Require local
</Location>

There are no redirects to https from http as I could access both 80 and 443 on the normal domain, when the server was running (before I restarted it last).

I can’t even wget to see what’s happening as the service won’t start through the cluster, but if I run systemctl start httpd everything runs and wget http://localhost/server-status returns:

[root@node01 ~]# wget http://localhost/server-status
--2020-05-18 12:58:53--  http://localhost/server-status
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)|127.0.0.1|:80... failed: Connection refused.

while wget https://localhost/server-status returns:

[root@node01 ~]# wget https://localhost/server-status
--2020-05-18 12:58:45--  https://localhost/server-status
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)|127.0.0.1|:443... connected.
OpenSSL: error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol
Unable to establish SSL connection.

Are there any resources I am missing or not looking, or is there something I have forgotten to activate?


Get this bounty!!!

#StackBounty: #centos #spacewalk Spacewalk 2.10 CentOS 8 pacakge name with module_el8 name

Bounty: 50

In my Spacewalk system I have configured CentOS 8 based and AppSteam repo with latest packages and added channel to my CentOS 8 server. it shows module_el8.1.0+229+cd132df8.noarch available to install. but this package name is different from what is installed on the servers. I like to understand what is this package with module_el8, How can I exclude this from my spacewalk repo.

if I push the package from Spacewalk I get this message

Client execution returned "Failed: Packages failed to install properly: Package perl-constant-0:1.33-1001.module_el8.1.0+229+cd132df8.noarch is not available for installation Package perl-Digest-MD5-0:2.55-397.module_el8.1.0+229+cd132df8.x86_64 is not available for installation Package perl-Exporter-0:5.72-1001.module_el8.1.0+229+cd132df8.noarch is not available for installation Package perl-File-Temp-0:0.230.600-2.module_el8.1.0+229+cd132df8.noarch is not available for installation Package perl-IO-Socket-IP-0:0.39-6.module_el8.1.0+229+cd132df8.noarch is not available for installation Package perl-libnet-0:3.11-4.module_el8.1.0+229+cd132df8.noarch is not available for installation Package perl-MIME-Base64-0:3.15-1001.module_el8.1.0+229+cd132df8.x86_64 is not available for installation Package perl-parent-1:0.237-2.module_el8.1.0+229+cd132df8.noarch is not available for installation Package perl-Pod-Escapes-1:1.07-396.module_el8.1.0+229+cd132df8.noarch is not available for installation Package perl-Pod-Perldoc-0:3.28-397.module_el8.1.0+" (code 32)

enter image description here

enter image description here
Thanks


Get this bounty!!!

#StackBounty: #centos #yum #gcc #development Where do I get "Development Tools" for CentOS 7 when trying to install via yum?

Bounty: 350

I’m running CentOS 7. I want to install gcc (for the purposes of building Python 3 with the new openssl package I installed). I was reading here — https://stackoverflow.com/questions/19816275/no-acceptable-c-compiler-found-in-path-when-installing-python, that installing “Development Tools” was the truth and the light. But I don’t seem to be able to …

(venv) [rails@server Python-3.7.0]$ sudo yum groupinstall "Development Tools"
[sudo] password for rails: 
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: mirror.mi.incx.net
 * epel: mirror.us-midwest-1.nexcess.net
 * extras: mirror.cs.pitt.edu
 * updates: mirror.pit.teraswitch.com
Maybe run: yum groups mark install (see man yum)
No packages in any requested group available to install or update

Here’s some extra info about my system if needed

(venv) [rails@server Python-3.7.0]$ uname -a
Linux server 2.6.32-042stab120.19 #1 SMP Mon Feb 20 20:05:53 MSK 2017 x86_64 x86_64 x86_64 GNU/Linux

Edit: Adding results as suggested by answer …

[rails@server ~]$ sudo yum groups mark install "Development Tools"
[sudo] password for rails: 
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: ftp.ussg.iu.edu
 * epel: mirror.us-midwest-1.nexcess.net
 * extras: mirror.cs.uwp.edu
 * updates: mirror.pit.teraswitch.com
Marked install: Development Tools
[rails@server ~]$ sudo yum groups mark convert "Development Tools"
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: ftp.ussg.iu.edu
 * epel: mirror.us-midwest-1.nexcess.net
 * extras: mirror.cs.uwp.edu
 * updates: mirror.pit.teraswitch.com
Converted old style groups to objects.
[rails@server ~]$ sudo yum groupinstall "Development Tools"
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: ftp.ussg.iu.edu
 * epel: mirror.us-midwest-1.nexcess.net
 * extras: mirror.cs.uwp.edu
 * updates: mirror.pit.teraswitch.com
Maybe run: yum groups mark install (see man yum)
No packages in any requested group available to install or update


Get this bounty!!!

#StackBounty: #centos #openssl Invalid command 'SSLOpenSSLConfCmd', perhaps misspelled – after introducing letsencrypt certific…

Bounty: 50

I’ve just tried to start working with letsencrypt certificates on my Apache.

  1. Added to my /usr/local/directadmin/conf/directadmin.conf line letsencrypt=1
  2. Edited in my /usr/local/directadmin/conf/directadmin.conf line enable_ssl_sni=1
  3. Then:

cd /usr/local/directadmin/custombuild

./build update

./build letsencrypt

./build rewrite_confs

And I’m getting the result with error:

Checking to ensure /etc/httpd/conf/ssl.crt/server.ca is set.
Using 193.107.90.129 for your server IP
Installation of ModSecurity Rule Set has been finished.
Restarting apache.
Job for httpd.service failed because the control process exited with error code. See "systemctl status httpd.service" and "journalctl -xe" for details.

I have:

CentOS Linux release 7.7.1908 (Core)

Server version: Apache/2.4.25 (Unix)

OpenSSL 1.0.2k-fips

systemctl status httpd.service says

‚óŹ httpd.service - The Apache HTTP Server
   Loaded: loaded (/etc/systemd/system/httpd.service; enabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since Sun 2020-04-05 23:23:06 CEST; 2s ago
  Process: 24927 ExecStop=/bin/kill -WINCH ${MAINPID} (code=exited, status=1/FAILURE)
  Process: 24926 ExecStart=/usr/sbin/httpd $OPTIONS -DFOREGROUND (code=exited, status=1/FAILURE)
 Main PID: 24926 (code=exited, status=1/FAILURE)

Apr 05 23:23:06 vps.kustransport.kylos.net.pl systemd[1]: Starting The Apache HTTP Server...
Apr 05 23:23:06 vps.kustransport.kylos.net.pl httpd[24926]: AH00526: Syntax error on line 243 of /etc/httpd/conf/extra/httpd-ssl.conf:
Apr 05 23:23:06 vps.kustransport.kylos.net.pl httpd[24926]: Invalid command 'SSLOpenSSLConfCmd', perhaps misspelled or defined by a module not included in the server configuration
Apr 05 23:23:06 vps.kustransport.kylos.net.pl systemd[1]: httpd.service: main process exited, code=exited, status=1/FAILURE
Apr 05 23:23:06 vps.kustransport.kylos.net.pl kill[24927]: kill: cannot find process ""
Apr 05 23:23:06 vps.kustransport.kylos.net.pl systemd[1]: httpd.service: control process exited, code=exited status=1
Apr 05 23:23:06 vps.kustransport.kylos.net.pl systemd[1]: Failed to start The Apache HTTP Server.
Apr 05 23:23:06 vps.kustransport.kylos.net.pl systemd[1]: Unit httpd.service entered failed state.
Apr 05 23:23:06 vps.kustransport.kylos.net.pl systemd[1]: httpd.service failed.

And journalctl -xe is pretty much the same but last two lines:

-- Unit httpd.service has begun starting up.
Apr 05 23:24:06 vps.kustransport.kylos.net.pl httpd[25033]: AH00526: Syntax error on line 243 of /etc/httpd/conf/extra/httpd-ssl.conf:
Apr 05 23:24:06 vps.kustransport.kylos.net.pl httpd[25033]: Invalid command 'SSLOpenSSLConfCmd', perhaps misspelled or defined by a module not included in the server configuration
Apr 05 23:24:06 vps.kustransport.kylos.net.pl systemd[1]: httpd.service: main process exited, code=exited, status=1/FAILURE
Apr 05 23:24:06 vps.kustransport.kylos.net.pl kill[25034]: kill: cannot find process ""
Apr 05 23:24:06 vps.kustransport.kylos.net.pl systemd[1]: httpd.service: control process exited, code=exited status=1
Apr 05 23:24:06 vps.kustransport.kylos.net.pl systemd[1]: Failed to start The Apache HTTP Server.
-- Subject: Unit httpd.service has failed

last 2 lines:

Apr 05 23:24:09 vps.kustransport.kylos.net.pl kernel: Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:52:54:00:22:de:69:08:00 SRC=193.107.89.52 DST=255.255.255.255 LEN=68 TOS=0x00 PRE
Apr 05 23:24:13 vps.kustransport.kylos.net.pl kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=00:16:3c:af:2d:c5:00:d0:04:94:38:00:08:00 SRC=185.175.93.105 DST=193.107.90.129 LEN=40 TOS=0x00 PRE

The “bad” line in /etc/httpd/conf/extra/httpd-ssl.conf looks fine and is like:

SSLOpenSSLConfCmd DHParameters "/etc/httpd/conf/ssl.crt/dhparams.pem"

I’ve also found that in /etc/httpd/conf/extra/httpd-ssl.conf I have:

##
## SSL Virtual Host Context
##

<VirtualHost _default_:443>

#   General setup for the virtual host
DocumentRoot "/var/www/html"
ServerName www.example.com:443
ServerAdmin you@example.com
ErrorLog /var/log/httpd/error_log
TransferLog /var/log/httpd/access_log

And when I’m setting ServerName for my domain it changes to what’s above every time I do “./build update”. However when I manualy change and restart problem is the same.

Additionaly tail /var/log/httpd/error_log :

[Mon Apr 06 00:55:02.001888 2020] [ssl:warn] [pid 25965:tid 139892334979200] AH01909: localhost:443:0 server certificate does NOT include an ID which matches the server name
[Mon Apr 06 00:55:02.002157 2020] [suexec:notice] [pid 25965:tid 139892334979200] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Mon Apr 06 00:55:02.002177 2020] [core:emerg] [pid 25965:tid 139892334979200] (28)No space left on device: AH00023: Couldn't create the rewrite-map mutex
AH00016: Configuration Failed


Get this bounty!!!