This website is deprecated, and remains online only for historic access to old issues and docs for historic versions of Virtualmin. It has been unmaintained for several years, and should not be relied on for up-to-date information. Please visit www.virtualmin.com instead.

Php and symlinks

5 posts / 0 new

Topic locked

Last post

#1 Thu, 12/20/2012 - 07:57

marciano

Php and symlinks

Hello,

I got some yellow warnings about vulnerabilities in main VM screen.
One is about php and symlinks

Auto fix changed
Options Indexes IncludesNOEXEC FollowSymLinks +ExecCGI
allow from all
AllowOverride All

to

Options Indexes IncludesNOEXEC SymLinksifOwnerMatch +ExecCGI
allow from all
AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch

This got me a lot of internal server errors like
.htaccess directive
RewriteRule ^es=(.*)$ index.php?t=$1 [NC,L,R]

What do you suggest?
Thank you

#2 Thu, 12/20/2012 - 08:56

andreychek

Howdy,

It sounds like it's describing a problem with your .htaccess files... can you paste in the entire error that you're seeing from the Apache error logs in $HOME/logs/error_log?

And perhaps include the contents of the .htaccess file it's referring to.

Thanks!

-Eric

#3 Thu, 12/20/2012 - 14:48

marciano

Hello Eric,

This is a part of that .htaccess

RewriteEngine on
Options +FollowSymlinks
RewriteBase /
RewriteRule ^\.htaccess$ - [F]

I commented the followSymlinks line and went back to auto fix configuration and all is fine.

Is this enough or should I add other symlink option?

Thank you,
M

#4 Thu, 12/20/2012 - 15:13

andreychek

Yup, that should be plenty!

Alternatively, if your app needs to use symlinks, you could change "FollowSymlinks" to read "SymLinksIfOwnerMatch".

-Eric

#5 Fri, 12/21/2012 - 05:55 (Reply to #4)

marciano

Thank you Eric!

Topic locked