Skip to content
Sudonix

Virtualmin Setup DigitalOcean

Solved Customisation
  • phenomlabundefined

    @Hari said in Virtualmin Setup DigitalOcean:

    how can i disable others accessing my IP?

    Can you clarify this part ? Are you looking to hide the real IP behind CF ?

    @Hari said in Virtualmin Setup DigitalOcean:

    instead of using hos.domain2.com to manage virutalmin can i directly use my IP to access virtualmin?

    Yes, if you aren’t worried about certificate errors

    @Hari said in Virtualmin Setup DigitalOcean:

    should i proxy hos.domain2.com at CF? currently i can not access Virtualmin using port how to add page rule to allow my port

    No, do not proxy it. As soon as you do that, DNS will resolve at CF and not the actual server itself.

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    1
  • Hariundefined

    @phenomlab i thought once i set up the host domain i no longer need to access Virtualmin using IP. later realized that is not how it works.

    how do i install PHPmyadmin to all servers (domains)? … right now i had to do it manually for each and every domain

    though i install phpmyadmin for one domain it is not working, i have tired restarting server and all.

    cdda0c3b-2833-4d10-abbc-49b1f52087f5-image.png

    0
  • phenomlabundefined

    @Hari What is in the error log ? Typically, you’d only need to install phpMyAdmin once and as long as it can see your MySQL server and databases, this should be fine.

    That’s a HTTP 500 error which indicates an issue on your side.

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    1
  • Hariundefined

    @phenomlab i messed the server, now i can not delete and reinstall.

    i have created subdomain1, 2, 3 as main servers instead of creating domain and adding them as sub servers. during this process, i requested for more than 5 let’s encrypt certificates and reached the daily limit. Now i have manually bought one certificate from CF Origin Certificate for 15years and installed it for the main domain

    moved all servers as sub servers now i see 403 error

    i hope i do not have any SSL issues all i get is 403 for 3 subdomains how can i fix it?

    Forbidden
You don'\t have permission to access this resource.

    i did not move my main domain yet - planned to move after 1week

    0
  • phenomlabundefined

    @Hari what’s in the NGINX error logs for each of these domains ? Looks like a permissions issue to me

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    0
  • Hariundefined

    @phenomlab where do i find it? i think i am not using it

    109116a1-15e3-4193-8ce9-276652831fb9-image.png

    0
  • phenomlabundefined

    @Hari you have the apache build. In that case, can you post one of the virtualhost configs (for one of the domains)

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    0
  • Hariundefined

    @phenomlab where can i find it? sent PM

    0
  • phenomlabundefined

    @Hari

    https://www.hostwinds.com/tutorials/edit-apache-conf-files-virtualmin

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    1
  • phenomlabundefined

    Can you post the configs here remembering to redact sensitive information, and also use the code markers (three backticks) as this makes it much easier to read rather than standard text in a PM.

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    1
  • Hariundefined

    @phenomlab apache error log

    [Sat Jun 11 04:18:57.835413 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: WordPress database error Table 'site.wp_terms' doesn't exist for query 
[Sat Jun 11 04:18:57.835457 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tSELECT  t.term_id
[Sat Jun 11 04:18:57.835460 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tFROM wp_terms AS t  INNER JOIN wp_term_taxonomy AS tt ON t.term_id = tt.term_id
[Sat Jun 11 04:18:57.835462 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tWHERE tt.taxonomy IN ('wp_theme') AND t.name IN ('twentytwentyone-child')
[Sat Jun 11 04:18:57.835464 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\t
[Sat Jun 11 04:18:57.835466 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tLIMIT 1
[Sat Jun 11 04:18:57.835468 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t made by require('wp-blog-header.php'), require_once('wp-load.php'), require_once('wp-config.php'), require_once('wp-settings.php'), do_action('wp_loaded'), WP_Hook->do_action, WP_Hook->apply_filters, {closure}, {closure}, WP_Theme_JSON_Resolver::get_merged_data, WP_Theme_JSON_Resolver::get_user_data, WP_Theme_JSON_Resolver::get_user_data_from_wp_global_styles, wp_get_recent_posts, get_posts, WP_Query->query, WP_Query->get_posts, WP_Tax_Query->get_sql, WP_Tax_Query->get_sql_clauses, WP_Tax_Query->get_sql_for_query, WP_Tax_Query->get_sql_for_clause, WP_Tax_Query->clean_query, WP_Tax_Query->transform_query, WP_Term_Query->query, WP_Term_Query->get_terms
[Sat Jun 11 04:48:48.539594 2022] [fcgid:warn] [pid 15151:tid 140169220634368] [client 162.158.163.22:21308] mod_fcgid: stderr: PHP Warning:  Unknown: Input variables exceeded 1000. To increase the limit change max_input_vars in php.ini. in Unknown on line 0, referer: https://site.domain.com/wp-admin/nav-menus.php?action=edit&menu=15
[Sat Jun 11 04:48:48.573874 2022] [fcgid:warn] [pid 15150:tid 140169067849472] [client 162.158.163.22:21318] mod_fcgid: stderr: PHP Warning:  Unknown: Input variables exceeded 1000. To increase the limit change max_input_vars in php.ini. in Unknown on line 0, referer: https://site.domain.com/wp-admin/nav-menus.php?action=edit&menu=15
[Sat Jun 11 22:35:55.645849 2022] [authz_core:error] [pid 6627:tid 140051065321216] [client 10.10.10.10:11538] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:35:59.499018 2022] [authz_core:error] [pid 6627:tid 140051056928512] [client 162.158.163.216:30198] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:27.717929 2022] [authz_core:error] [pid 6628:tid 140050956216064] [client 162.158.162.39:58156] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:30.104410 2022] [authz_core:error] [pid 6628:tid 140050947823360] [client 162.158.162.123:12182] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:30.405002 2022] [authz_core:error] [pid 6627:tid 140050964608768] [client 162.158.163.230:22958] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:36:30.664470 2022] [authz_core:error] [pid 6628:tid 140050939430656] [client 162.158.163.22:20408] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:30.887080 2022] [authz_core:error] [pid 6627:tid 140050939430656] [client 162.158.163.230:22958] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:42:53.066998 2022] [authz_core:error] [pid 6628:tid 140051048535808] [client 162.158.163.68:19514] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:42:53.436812 2022] [authz_core:error] [pid 6628:tid 140051183978240] [client 162.158.163.230:23526] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:42:57.633871 2022] [authz_core:error] [pid 6628:tid 140051056928512] [client 162.158.163.198:58164] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:42:57.875926 2022] [authz_core:error] [pid 6628:tid 140051065321216] [client 162.158.163.230:23526] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/?SFd
[Sat Jun 11 22:43:21.190817 2022] [authz_core:error] [pid 6628:tid 140050989786880] [client 162.158.163.198:58200] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:43:21.512913 2022] [authz_core:error] [pid 6628:tid 140050981394176] [client 162.158.163.230:23590] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/
[Sat Jun 11 22:44:26.950134 2022] [authz_core:error] [pid 6628:tid 140050939430656] [client 162.158.163.68:19764] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:44:27.344249 2022] [authz_core:error] [pid 6628:tid 140050931037952] [client 162.158.163.230:23678] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/
[Sat Jun 11 22:50:04.601796 2022] [authz_core:error] [pid 6628:tid 140051065321216] [client 162.158.163.198:58926] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:50:05.006553 2022] [authz_core:error] [pid 6628:tid 140051073713920] [client 162.158.163.230:24250] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/
[Sat Jun 11 22:50:07.320488 2022] [authz_core:error] [pid 6628:tid 140051082106624] [client 162.158.162.39:59036] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:50:07.591099 2022] [authz_core:error] [pid 6628:tid 140051023357696] [client 162.158.163.230:24250] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:52:09.209043 2022] [authz_core:error] [pid 6628:tid 140050964608768] [client 162.158.162.161:28196] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:52:09.632416 2022] [authz_core:error] [pid 6627:tid 140051031750400] [client 162.158.163.230:24496] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:55:09.905607 2022] [authz_core:error] [pid 6627:tid 140051098892032] [client 162.158.162.161:29106] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:55:10.309477 2022] [authz_core:error] [pid 6628:tid 140050939430656] [client 162.158.163.230:24846] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 23:14:18.992679 2022] [authz_core:error] [pid 6628:tid 140051183978240] [client 162.158.163.198:61920] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 23:14:19.923242 2022] [authz_core:error] [pid 6628:tid 140051192370944] [client 162.158.163.230:26952] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 23:19:19.476070 2022] [authz_core:error] [pid 6627:tid 140051192370944] [client 162.158.163.198:62592] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 23:19:19.985993 2022] [authz_core:error] [pid 6628:tid 140050931037952] [client 162.158.163.230:27558] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 23:26:37.228967 2022] [authz_core:error] [pid 6628:tid 140050931037952] [client 162.158.163.68:25548] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 23:29:04.915049 2022] [authz_core:error] [pid 6627:tid 140050939430656] [client 162.158.163.198:63886] AH01630: client denied by server configuration: /home/site, referer: https://10.10.10.10:19185/
[Sat Jun 11 23:29:05.698759 2022] [authz_core:error] [pid 6627:tid 140051031750400] [client 162.158.163.230:28652] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/

    Config files

    <VirtualHost 10.10.10.10:80>
    SuexecUserGroup #1006 #1006
    ServerName site.domain.com
    ServerAlias www.site.domain.com
    ServerAlias mail.site.domain.com
    ServerAlias webmail.site.domain.com
    ServerAlias admin.site.domain.com
    DocumentRoot /home/domain/domains/site.domain.com/public_html
    ErrorLog /var/log/virtualmin/site.domain.com_error_log
    CustomLog /var/log/virtualmin/site.domain.com_access_log combined
    ScriptAlias /cgi-bin/ /home/domain/domains/site.domain.com/cgi-bin/
    ScriptAlias /awstats/ /home/domain/domains/site.domain.com/cgi-bin/
    DirectoryIndex index.php index.php4 index.php5 index.htm index.html
    <Directory /home/domain/domains/site.domain.com/public_html>
        Options -Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch +ExecCGI
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
        AddType application/x-httpd-php .php
        AddHandler fcgid-script .php
        AddHandler fcgid-script .php7.4
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php7.4
    </Directory>
    <Directory /home/domain/domains/site.domain.com/cgi-bin>
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
    </Directory>
    RewriteEngine on
    RewriteCond %{HTTP_HOST} =webmail.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:20000/ [R]
    RewriteCond %{HTTP_HOST} =admin.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:10000/ [R]
    RemoveHandler .php
    RemoveHandler .php7.4
    FcgidMaxRequestLen 1073741824
    <Files awstats.pl>
        AuthName "site.domain.com statistics"
        AuthType Basic
        AuthUserFile /home/domain/domains/site.domain.com/.awstats-htpasswd
        require valid-user
    </Files>
    Alias /dav /home/domain/domains/site.domain.com/public_html
    <Location /dav>
        DAV on
        AuthType Basic
        AuthName "site.domain.com"
        AuthUserFile /home/domain/domains/site.domain.com/etc/dav.digest.passwd
        Require valid-user
        ForceType text/plain
        Satisfy All
        RemoveHandler .php
        RemoveHandler .php7.4
        RewriteEngine off
    </Location>
    IPCCommTimeout 301
</VirtualHost>
<VirtualHost 10.10.10.10:443>
    SuexecUserGroup #1006 #1006
    ServerName site.domain.com
    ServerAlias www.site.domain.com
    ServerAlias mail.site.domain.com
    ServerAlias webmail.site.domain.com
    ServerAlias admin.site.domain.com
    DocumentRoot /home/domain/domains/site.domain.com/public_html
    ErrorLog /var/log/virtualmin/site.domain.com_error_log
    CustomLog /var/log/virtualmin/site.domain.com_access_log combined
    ScriptAlias /cgi-bin/ /home/domain/domains/site.domain.com/cgi-bin/
    ScriptAlias /awstats/ /home/domain/domains/site.domain.com/cgi-bin/
    DirectoryIndex index.php index.php4 index.php5 index.htm index.html
    <Directory /home/domain/domains/site.domain.com/public_html>
        Options -Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch +ExecCGI
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
        AddType application/x-httpd-php .php
        AddHandler fcgid-script .php
        AddHandler fcgid-script .php7.4
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php7.4
    </Directory>
    <Directory /home/domain/domains/site.domain.com/cgi-bin>
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
    </Directory>
    RewriteEngine on
    RewriteCond %{HTTP_HOST} =webmail.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:20000/ [R]
    RewriteCond %{HTTP_HOST} =admin.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:10000/ [R]
    RemoveHandler .php
    RemoveHandler .php7.4
    FcgidMaxRequestLen 1073741824
    <Files awstats.pl>
        AuthName "site.domain.com statistics"
        AuthType Basic
        AuthUserFile /home/domain/domains/site.domain.com/.awstats-htpasswd
        require valid-user
    </Files>
    Alias /dav /home/domain/domains/site.domain.com/public_html
    <Location /dav>
        DAV on
        AuthType Basic
        AuthName "site.domain.com"
        AuthUserFile /home/domain/domains/site.domain.com/etc/dav.digest.passwd
        Require valid-user
        ForceType text/plain
        Satisfy All
        RemoveHandler .php
        RemoveHandler .php7.4
        RewriteEngine off
    </Location>
    IPCCommTimeout 301
    SSLEngine on
    SSLCertificateFile /etc/ssl/virtualmin/16549049453514/ssl.combined
    SSLCertificateKeyFile /etc/ssl/virtualmin/16549049453514/ssl.key
    SSLCACertificateFile /etc/ssl/virtualmin/16549049453514/ssl.ca
    SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
</VirtualHost>
    phenomlabundefined 1 Reply
    0
  • Hariundefined

    //update// since this is happening when a virtualmin server is moved to subserver i have made the sub server back to main server

    now i am getting Error 521

    trying to solve it using this guide https://bobcares.com/blog/cloudflare-error-521/#:~:text=What causes Cloudflare error 521,received a connection refused error.

    Edit: i have tried multiple ways to fix it at a moment i have felt it is very hard to manage Virtualmin the settings are confusing 😄 now taken the backup of my files and DB and destroyed the doplet

    phenomlabundefined 1 Reply
    0
  • phenomlabundefined

    @Hari said in Virtualmin Setup DigitalOcean:

    @phenomlab apache error log

    [Sat Jun 11 04:18:57.835413 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: WordPress database error Table 'site.wp_terms' doesn't exist for query 
[Sat Jun 11 04:18:57.835457 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tSELECT  t.term_id
[Sat Jun 11 04:18:57.835460 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tFROM wp_terms AS t  INNER JOIN wp_term_taxonomy AS tt ON t.term_id = tt.term_id
[Sat Jun 11 04:18:57.835462 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tWHERE tt.taxonomy IN ('wp_theme') AND t.name IN ('twentytwentyone-child')
[Sat Jun 11 04:18:57.835464 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\t
[Sat Jun 11 04:18:57.835466 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tLIMIT 1
[Sat Jun 11 04:18:57.835468 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t made by require('wp-blog-header.php'), require_once('wp-load.php'), require_once('wp-config.php'), require_once('wp-settings.php'), do_action('wp_loaded'), WP_Hook->do_action, WP_Hook->apply_filters, {closure}, {closure}, WP_Theme_JSON_Resolver::get_merged_data, WP_Theme_JSON_Resolver::get_user_data, WP_Theme_JSON_Resolver::get_user_data_from_wp_global_styles, wp_get_recent_posts, get_posts, WP_Query->query, WP_Query->get_posts, WP_Tax_Query->get_sql, WP_Tax_Query->get_sql_clauses, WP_Tax_Query->get_sql_for_query, WP_Tax_Query->get_sql_for_clause, WP_Tax_Query->clean_query, WP_Tax_Query->transform_query, WP_Term_Query->query, WP_Term_Query->get_terms
[Sat Jun 11 04:48:48.539594 2022] [fcgid:warn] [pid 15151:tid 140169220634368] [client 162.158.163.22:21308] mod_fcgid: stderr: PHP Warning:  Unknown: Input variables exceeded 1000. To increase the limit change max_input_vars in php.ini. in Unknown on line 0, referer: https://site.domain.com/wp-admin/nav-menus.php?action=edit&menu=15
[Sat Jun 11 04:48:48.573874 2022] [fcgid:warn] [pid 15150:tid 140169067849472] [client 162.158.163.22:21318] mod_fcgid: stderr: PHP Warning:  Unknown: Input variables exceeded 1000. To increase the limit change max_input_vars in php.ini. in Unknown on line 0, referer: https://site.domain.com/wp-admin/nav-menus.php?action=edit&menu=15
[Sat Jun 11 22:35:55.645849 2022] [authz_core:error] [pid 6627:tid 140051065321216] [client 10.10.10.10:11538] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:35:59.499018 2022] [authz_core:error] [pid 6627:tid 140051056928512] [client 162.158.163.216:30198] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:27.717929 2022] [authz_core:error] [pid 6628:tid 140050956216064] [client 162.158.162.39:58156] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:30.104410 2022] [authz_core:error] [pid 6628:tid 140050947823360] [client 162.158.162.123:12182] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:30.405002 2022] [authz_core:error] [pid 6627:tid 140050964608768] [client 162.158.163.230:22958] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:36:30.664470 2022] [authz_core:error] [pid 6628:tid 140050939430656] [client 162.158.163.22:20408] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:36:30.887080 2022] [authz_core:error] [pid 6627:tid 140050939430656] [client 162.158.163.230:22958] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:42:53.066998 2022] [authz_core:error] [pid 6628:tid 140051048535808] [client 162.158.163.68:19514] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:42:53.436812 2022] [authz_core:error] [pid 6628:tid 140051183978240] [client 162.158.163.230:23526] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:42:57.633871 2022] [authz_core:error] [pid 6628:tid 140051056928512] [client 162.158.163.198:58164] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:42:57.875926 2022] [authz_core:error] [pid 6628:tid 140051065321216] [client 162.158.163.230:23526] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/?SFd
[Sat Jun 11 22:43:21.190817 2022] [authz_core:error] [pid 6628:tid 140050989786880] [client 162.158.163.198:58200] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:43:21.512913 2022] [authz_core:error] [pid 6628:tid 140050981394176] [client 162.158.163.230:23590] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/
[Sat Jun 11 22:44:26.950134 2022] [authz_core:error] [pid 6628:tid 140050939430656] [client 162.158.163.68:19764] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:44:27.344249 2022] [authz_core:error] [pid 6628:tid 140050931037952] [client 162.158.163.230:23678] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/
[Sat Jun 11 22:50:04.601796 2022] [authz_core:error] [pid 6628:tid 140051065321216] [client 162.158.163.198:58926] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:50:05.006553 2022] [authz_core:error] [pid 6628:tid 140051073713920] [client 162.158.163.230:24250] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/
[Sat Jun 11 22:50:07.320488 2022] [authz_core:error] [pid 6628:tid 140051082106624] [client 162.158.162.39:59036] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:50:07.591099 2022] [authz_core:error] [pid 6628:tid 140051023357696] [client 162.158.163.230:24250] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:52:09.209043 2022] [authz_core:error] [pid 6628:tid 140050964608768] [client 162.158.162.161:28196] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:52:09.632416 2022] [authz_core:error] [pid 6627:tid 140051031750400] [client 162.158.163.230:24496] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 22:55:09.905607 2022] [authz_core:error] [pid 6627:tid 140051098892032] [client 162.158.162.161:29106] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 22:55:10.309477 2022] [authz_core:error] [pid 6628:tid 140050939430656] [client 162.158.163.230:24846] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 23:14:18.992679 2022] [authz_core:error] [pid 6628:tid 140051183978240] [client 162.158.163.198:61920] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 23:14:19.923242 2022] [authz_core:error] [pid 6628:tid 140051192370944] [client 162.158.163.230:26952] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 23:19:19.476070 2022] [authz_core:error] [pid 6627:tid 140051192370944] [client 162.158.163.198:62592] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 23:19:19.985993 2022] [authz_core:error] [pid 6628:tid 140050931037952] [client 162.158.163.230:27558] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/
[Sat Jun 11 23:26:37.228967 2022] [authz_core:error] [pid 6628:tid 140050931037952] [client 162.158.163.68:25548] AH01630: client denied by server configuration: /home/site
[Sat Jun 11 23:29:04.915049 2022] [authz_core:error] [pid 6627:tid 140050939430656] [client 162.158.163.198:63886] AH01630: client denied by server configuration: /home/site, referer: https://10.10.10.10:19185/
[Sat Jun 11 23:29:05.698759 2022] [authz_core:error] [pid 6627:tid 140051031750400] [client 162.158.163.230:28652] AH01630: client denied by server configuration: /home/site, referer: https://site.domain.com/phpmyadmin/

    Config files

    <VirtualHost 10.10.10.10:80>
    SuexecUserGroup #1006 #1006
    ServerName site.domain.com
    ServerAlias www.site.domain.com
    ServerAlias mail.site.domain.com
    ServerAlias webmail.site.domain.com
    ServerAlias admin.site.domain.com
    DocumentRoot /home/domain/domains/site.domain.com/public_html
    ErrorLog /var/log/virtualmin/site.domain.com_error_log
    CustomLog /var/log/virtualmin/site.domain.com_access_log combined
    ScriptAlias /cgi-bin/ /home/domain/domains/site.domain.com/cgi-bin/
    ScriptAlias /awstats/ /home/domain/domains/site.domain.com/cgi-bin/
    DirectoryIndex index.php index.php4 index.php5 index.htm index.html
    <Directory /home/domain/domains/site.domain.com/public_html>
        Options -Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch +ExecCGI
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
        AddType application/x-httpd-php .php
        AddHandler fcgid-script .php
        AddHandler fcgid-script .php7.4
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php7.4
    </Directory>
    <Directory /home/domain/domains/site.domain.com/cgi-bin>
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
    </Directory>
    RewriteEngine on
    RewriteCond %{HTTP_HOST} =webmail.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:20000/ [R]
    RewriteCond %{HTTP_HOST} =admin.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:10000/ [R]
    RemoveHandler .php
    RemoveHandler .php7.4
    FcgidMaxRequestLen 1073741824
    <Files awstats.pl>
        AuthName "site.domain.com statistics"
        AuthType Basic
        AuthUserFile /home/domain/domains/site.domain.com/.awstats-htpasswd
        require valid-user
    </Files>
    Alias /dav /home/domain/domains/site.domain.com/public_html
    <Location /dav>
        DAV on
        AuthType Basic
        AuthName "site.domain.com"
        AuthUserFile /home/domain/domains/site.domain.com/etc/dav.digest.passwd
        Require valid-user
        ForceType text/plain
        Satisfy All
        RemoveHandler .php
        RemoveHandler .php7.4
        RewriteEngine off
    </Location>
    IPCCommTimeout 301
</VirtualHost>
<VirtualHost 10.10.10.10:443>
    SuexecUserGroup #1006 #1006
    ServerName site.domain.com
    ServerAlias www.site.domain.com
    ServerAlias mail.site.domain.com
    ServerAlias webmail.site.domain.com
    ServerAlias admin.site.domain.com
    DocumentRoot /home/domain/domains/site.domain.com/public_html
    ErrorLog /var/log/virtualmin/site.domain.com_error_log
    CustomLog /var/log/virtualmin/site.domain.com_access_log combined
    ScriptAlias /cgi-bin/ /home/domain/domains/site.domain.com/cgi-bin/
    ScriptAlias /awstats/ /home/domain/domains/site.domain.com/cgi-bin/
    DirectoryIndex index.php index.php4 index.php5 index.htm index.html
    <Directory /home/domain/domains/site.domain.com/public_html>
        Options -Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch +ExecCGI
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
        AddType application/x-httpd-php .php
        AddHandler fcgid-script .php
        AddHandler fcgid-script .php7.4
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php
        FCGIWrapper /home/domain/domains/site.domain.com/fcgi-bin/php7.4.fcgi .php7.4
    </Directory>
    <Directory /home/domain/domains/site.domain.com/cgi-bin>
        allow from all
        AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
        Require all granted
    </Directory>
    RewriteEngine on
    RewriteCond %{HTTP_HOST} =webmail.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:20000/ [R]
    RewriteCond %{HTTP_HOST} =admin.site.domain.com
    RewriteRule ^(?!/.well-known)(.*) https://site.domain.com:10000/ [R]
    RemoveHandler .php
    RemoveHandler .php7.4
    FcgidMaxRequestLen 1073741824
    <Files awstats.pl>
        AuthName "site.domain.com statistics"
        AuthType Basic
        AuthUserFile /home/domain/domains/site.domain.com/.awstats-htpasswd
        require valid-user
    </Files>
    Alias /dav /home/domain/domains/site.domain.com/public_html
    <Location /dav>
        DAV on
        AuthType Basic
        AuthName "site.domain.com"
        AuthUserFile /home/domain/domains/site.domain.com/etc/dav.digest.passwd
        Require valid-user
        ForceType text/plain
        Satisfy All
        RemoveHandler .php
        RemoveHandler .php7.4
        RewriteEngine off
    </Location>
    IPCCommTimeout 301
    SSLEngine on
    SSLCertificateFile /etc/ssl/virtualmin/16549049453514/ssl.combined
    SSLCertificateKeyFile /etc/ssl/virtualmin/16549049453514/ssl.key
    SSLCACertificateFile /etc/ssl/virtualmin/16549049453514/ssl.ca
    SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
</VirtualHost>

    You’re getting the 500 HTTP error because your database is in accessible

    [Sat Jun 11 04:18:57.835413 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: WordPress database error Table 'site.wp_terms' doesn't exist for query 
[Sat Jun 11 04:18:57.835457 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tSELECT  t.term_id
[Sat Jun 11 04:18:57.835460 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tFROM wp_terms AS t  INNER JOIN wp_term_taxonomy AS tt ON t.term_id = tt.term_id
[Sat Jun 11 04:18:57.835462 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tWHERE tt.taxonomy IN ('wp_theme') AND t.name IN ('twentytwentyone-child')
[Sat Jun 11 04:18:57.835464 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\t
[Sat Jun 11 04:18:57.835466 2022] [fcgid:warn] [pid 15150:tid 140169000707840] [client 10.10.10.10:21926] mod_fcgid: stderr: \t\t\tLIMIT 1

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    0
  • phenomlabundefined

    @Hari said in Virtualmin Setup DigitalOcean:

    i have felt it is very hard to manage Virtualmin the settings are confusing

    It’s a bit of a learning curve, admittedly, but very powerful and easy to use provided you understand the implications of what you are doing. For example, moving a VirtualMin server to subserver and then back again without changing underlying components that rely on the correct placement of the server, of course it will no longer work.

    Author of OGProxy, Swatch, Threaded, Card, and most of Sudonix's bugs…

    1
  • Hariundefined Hari has marked this topic as solved on

Did this solution help you?
Did you find the suggested solution useful? Why not buy me a coffee? It's a nice gesture, and a great way to show your appreciation 💗

Related Topics
  • Madchatthewundefined

    Blog Setup

    Solved Customisation
    17
    8 Votes
    17 Posts
    1k Views
    Madchatthewundefined

    Here is an update. So one of the problems is that I was coding on windows - duh right? Windows was changing one of the forward slashes into a backslash when it got to the files folder where the image was being held. So I then booted up my virtualbox instance of ubuntu server and set it up on there. And will wonders never cease - it worked. The other thing was is that there are more than one spot to grab the templates. I was grabbing the template from the widget when I should have been grabbing it from the other templates folder and grabbing the code from the actual theme for the plugin. If any of that makes sense.

    I was able to set it up so it will go to mydomain/blog and I don’t have to forward it to the user/username/blog. Now I am in the process of styling it to the way I want it to look. I wish that there was a way to use a new version of bootstrap. There are so many more new options. I suppose I could install the newer version or add the cdn in the header, but I don’t want it to cause conflicts. Bootstrap 3 is a little lacking. I believe that v2 of nodebb uses a new version of bootstrap or they have made it so you can use any framework that you want for styling. I would have to double check though.

    Thanks for your help @phenomlab! I really appreciate it. I am sure I will have more questions so never fear I won’t be going away . . . ever, hahaha.

    Thanks again!

  • Hariundefined

    how to use CF tunnels with Virtualmin?

    Solved Configure
    10
    3 Votes
    10 Posts
    1k Views
    phenomlabundefined

    @Hari DDoS protection is not just a switch, or one component. It’s a collection of different and often disparate technologies that when grouped together form the basis of a combined toolset that can be used in defence.

    Typically these consist of IDS (Instrusion Detection System) and IPS (Intrusion Prevention System) components that detect irregularities in network traffic, and will take decisive action based on predefined rulesets, or in the case of more modern systems, AI and ML.

    Traditional “traffic shaping” technology is also deployed, so if an attack cannot be easily identified as malicious, the bandwidth available to that connection is severely limited to nothing more than a trickle rather than a full flow.

    Years ago, ISP’s used traffic shaping (also called “policers”) as an effective means of stopping applications such as BearShare, eDonkey, Napster, and other P2P based sharing systems from functioning correctly - essentially reducing the “appeal” of distributing and seeding illegal downloads. This was essentially the ISP’s way of saying “stop what you are doing please” without actually pulling the plug.

    These days, DDoS attacks are designed to overwhelm - not assume control of - webservers and other public facing components. It’s rare for small entities to be attacked unless there is some form of political agenda driven by your site or product. A classic example is governmental institutions or lawmakers who effectively are classed as “enforcers” and those who disagree are effectively making a statement in the form of Denial of Service.

    DDoS protection is effectively the responsibility of the hosting provider, but you shouldn’t just assume that they will protect you or your site. Their responsibility stops at their infrastructure, so it’s then up to you too decide how you full the gap in between your host and the website.

    Typically, you’d leverage something like Imunify360 which you can get for Plesk (and something I’d strongly recommend) but it’s not free, and is a paid (not expensive per month) subscription. If you want to use VirtualMin then there are a variety of tools readily available out of the box such as firewalls and fail2ban.

  • Hariundefined

    Issues getting Flarum to work on new host

    Solved Configure
    65
    14 Votes
    65 Posts
    6k Views
    phenomlabundefined

    @crazycells huh. Thanks. Will need to check that as well.

  • Hariundefined

    how to increase upload DB file size in virtualmin

    Solved Configure
    2
    1 Votes
    2 Posts
    406 Views
    Hariundefined

    @Hari this helped

  • Hariundefined

    how to configure DNS records virtualmin?

    Solved Linux
    26
    11 Votes
    26 Posts
    2k Views
    Hariundefined

    i think we can mark this discussion as solved

    learned how to install virtualmin with NGINX We can easily point the DNS by mentioning server IP at CF a name record learned how to install SSL
  • justoverclockundefined

    SSl expired on virtualmin

    Solved Configure
    18
    3 Votes
    18 Posts
    1k Views
    phenomlabundefined

    @justoverclock Not necessarily. You only need to use this if it fails from the Virtualmin window

  • JACundefined

    Email issue (virturalmin)

    Solved Hosting
    5
    0 Votes
    5 Posts
    413 Views
    JACundefined

    @gotwf said in Email issue (virturalmin):

    @jac Typically you want your domain’s MX records to point to FQDN server name, e.g. foo.example.eg

    % drill stockportcounty.fans mx ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 63911 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; stockportcounty.fans. IN MX ;; ANSWER SECTION: stockportcounty.fans. 600 IN MX 10 stockportcounty.fans.

    Yours do not. Although a bit more drillin’ and reverse lookup indicates thusly;

    % drill stockportcounty.fans ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 160 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; stockportcounty.fans. IN A ;; ANSWER SECTION: stockportcounty.fans. 600 IN A 65.108.63.35 ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 127 msec ;; SERVER: 204.8.232.207 ;; WHEN: Sun Oct 10 19:37:02 2021 ;; MSG SIZE rcvd: 54 <kvg@loon:~>% drill -x 65.108.63.35 ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 57802 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; 35.63.108.65.in-addr.arpa. IN PTR ;; ANSWER SECTION: 35.63.108.65.in-addr.arpa. 86400 IN PTR vps.stockportcounty.fans.

    I think you probably want your mx record to point to vps.stockportcountry.fans.

    It is important for forward and reverse lookups for MX records jive. Maybe you are looking like a spammer in that they do not?

    Edit: But at least you have a reverse record, many spammers do not, so that is a big red flag.

    Thanks for the advice, will look into it all later once back home.

  • Ash3Tundefined

    SASL LOGIN authentication failed: generic failure

    Moved Solved Linux
    5
    0 Votes
    5 Posts
    1k Views
    phenomlabundefined

    @Ash3T I’m going to mark this post as solved as I’ve not heard from you in a while. Let me know if this isn’t the case and you need more help.