• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

Two issues - mailman suexec, and NAT rules

B

brblakel

Guest
One problem, and one question:

1) The mailman cgi scripts are refusing to run (premature end of script headers in the error_log). The following error shows up in suexec_log (wilton is the username on the website in question):

[2007-09-01 12:32:14]: uid: (10002/wilton) gid: (2524/2524) cmd: listinfo
[2007-09-01 12:32:14]: command not in docroot (/usr/lib/mailman/cgi-bin/listinfo)

This is on a Redhat Enterprise 5 server with Plesk 8.2.0, and the latest updates have been installed. I've tried various things, including copying /usr/local/psa/suexec/psa-suexec over top of /usr/sbin/suexec, but nothing I do seems to make any difference.



2) Second issue is just a question. I have need on this same server to establish several NAT rules (in the nat chains in iptables). The Plesk firewall module, when it applies the firewall config, blows out any rules I've added to the nat chains. Is there some trick whereby I can make the apply process run an external script to re-apply my NAT rules, or some other way to make my NAT rules persistant?


Thanks in advance for any assistance.

Ben Blakely
Reliable Penguin
 
Dear brblakel,

I'am running a CentOS 4.5 with Plesk, comes quite close to Red Hat Enterprise 5.
For me, moving suexec in /usr/sbin/suexec to /usr/sbin/suexec_old, and then creating a symbolic link in /usr/sbin named suexec that points to /usr/local/psa-suexec did the job.
ln -s /usr/sbin/suexec /usr/local/psa/suexec/psa-suexec

Just a thought.

I know that plesk removes any hand added firewall rules when you use the plesk firewall. I don't know a solution for that.

Mytime
 
I realized my Mailman problem was that I was trying to access it through one of the main websites, rather than through the plesk-generated "lists.*" virtualhost. So, that problem is sorted out.


I'm still very interested in any suggestions anyone might have for setting custom firewall rules outside of Plesk, that will not be eaten when the Plesk firewall module applies its config.
 
Hi brblakel,

Re: retaining custom iptables rules...
You can copy the Plesk script and add your rules to it. Then run it after the server reboots (or manually or whenever u want).

It worked for me in 7.5.2 but I haven't done this in 8 yet.

Dave
 
You must log in or register to reply here.

Similar threads

A
Issue ModSecurity Rule in custom directives ignored
Replies
0
Views
2K
Abed
A
F
suexec, cgi and off-docroot scripts (monitorix)
Replies
1
Views
2K
abdi
abdi
M
Suexec policy violation
2
Replies
23
Views
33K
akumarjain
A
G
Server unresponsive everyday at the same time
Replies
6
Views
3K
GustavoO
G
J
virtual.db workaround code
2
Replies
36
Views
14K
Wolltronic
W
Back
Top