Foobar down

[Crayz9000]

For the time being, due to a hardware upgrade, my server (foobar.homelinux.net) will be down. I've been having some trouble with the Linux setup it was running, since it was old and in desperate need of update; I was having a lot of DNS problems...

So in short, it'll be down for 2 days to a week while I get the new install on it and get the router working normally again.

[Crayz9000]

Fuck. I had it back up and running, but it looks like the main hard drive (a 2 gig Maxtor from 1998) has been responsible for all my hardware crashes lately; even the boot sector on the drive is fucked now, meaning that I can't even try to boot Linux. So, it's going to be permanently down until I can replace that goddamn hard drive.

Edit: I can boot Linux if I turn the computer off for a couple minutes and then turn it back on, but /etc/fstab got wiped out... *sigh*

Time to replace the hard drive.

[Crayz9000]

Alright, I think I have the permissions problem with the server fixed now. Can everyone see my sig banner?

[Ghost Rider]

Yeah I can see the sig banner.

[Crayz9000]

Huh. Now to see if I can make the directory indexes viewable (although, in hindsight, maybe having them unviewable isn't such a bad thing...)

[Darth Wong]

Huh. Now to see if I can make the directory indexes viewable (although, in hindsight, maybe having them unviewable isn't such a bad thing...)

That's set in your .htaccess file. I believe it's the "IndexIgnore" option. Of course, the first thing you obviously want to do is get rid of every default file in the /var/www/html directory.

And if you want to get rid of index viewing in a particular directory, the easiest thing to do is simply make a dummy index.html file. Just for fun, you might make one that looks like a real index view but whose directory links lead to goatse.cx

[Crayz9000]

That's set in your .htaccess file. I believe it's the "IndexIgnore" option.

Well, that explains a lot. See, I've tweaked the file permissions of /var/www/html so that they're owned by a special account that I use for local FTP access. That raised havoc with the server, however, but after adding apache to that user's group and running a chmod -R 755 it could serve the files.

However, it seems that Apache can't write .htaccess files now.

[Darth Wong]

That's set in your .htaccess file. I believe it's the "IndexIgnore" option.

Well, that explains a lot. See, I've tweaked the file permissions of /var/www/html so that they're owned by a special account that I use for local FTP access. That raised havoc with the server, however, but after adding apache to that user's group and running a chmod -R 755 it could serve the files.

However, it seems that Apache can't write .htaccess files now.

I don't see why you couldn't just leave apache as the owner of the directory. Anyway, I normally make .htaccess files as root, with 644 permissions.

[Crayz9000]

Yeah, I know, my setup is a bit screwed up. I might change things back later, but anyway, I don't want to have to log in as root via FTP. Would simply adding the special account to the apache group fix that, if I change ownership of /var/www/html back to Apache?

[Darth Wong]

Yeah, I know, my setup is a bit screwed up. I might change things back later, but anyway, I don't want to have to log in as root via FTP. Would simply adding the special account to the apache group fix that, if I change ownership of /var/www/html back to Apache?

Only if group permissions are set to 7. But shouldn't you be using ssh and scp anyway, rather than ftp? SSH in as yourself and then su to root.

[Crayz9000]

I've been trying to get SSH working to no effect, and I have FTP firewalled anyway (not perfectly though, working on that...)

At any rate, the server is sitting five feet away from me, so it's not like I have a pressing need to have a root shell on it from my own computer.

[Darth Wong]

I've been trying to get SSH working to no effect, and I have FTP firewalled anyway (not perfectly though, working on that...)

Personally, I keep root in the /etc/ftpusers file so that people can't use it from ftp, even though it's theoretically firewalled off. Just to be safe. If you can't get SSH working, that's a real problem. Check the error logs; new versions of ssh often require a user named "sshd" for privilege separation.

At any rate, the server is sitting five feet away from me, so it's not like I have a pressing need to have a root shell on it from my own computer.

Ah, then you might as well just leave the permissions at default then. I use SSH to get into my own server because I don't keep a keyboard and monitor hooked up to it.

[Crayz9000]

Personally, I keep root in the /etc/ftpusers file so that people can't use it from ftp, even though it's theoretically firewalled off. Just to be safe. If you can't get SSH working, that's a real problem. Check the error logs; new versions of ssh often require a user named "sshd" for privilege separation.

Aha. I'll have to check for that.

And, yes, I do have root in the ftpusers file, as well as my main shell account (don't really need to log into it remotely anyway). I've also locked the ftp account down rather drastically.

[Arthur_Tuxedo]

And if you want to get rid of index viewing in a particular directory, the easiest thing to do is simply make a dummy index.html file. Just for fun, you might make one that looks like a real index view but whose directory links lead to goatse.cx

ACK! No no no, I accidently hit index view all the time on my browser, that would be very bad.