Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ v2.5.x
Author Message
jetlampitt
New Member
New Member


Joined: Feb 22, 2007
Posts: 6

PostPosted: Thu Feb 22, 2007 7:29 am Reply with quote

I have Nuke Sentinel version 2.5.02.
I was trying to setup the Admin Auth: Admin CGIAuth/AdminHTTP Auth
It said that I had to enter the locations of my:
.ftaccess
.staccess
.htaccess
(So I did)

The problem is that I only have these access files.
sample.ftaccess
sample.htaccess
sample.staccess
.htaccess

So I entered the locations for .htaccess and it said:
Normally: <<path removed by admin>>/.htaccess
File does not exist or is not correctly CHMODed.

So what do I do?
I dnt mind if I have HTTP Auth or CGI Auth working, whichever is the most secure.
 
View user's profile Send private message
jakec
Site Admin


Joined: Feb 06, 2006
Posts: 3048
Location: United Kingdom

PostPosted: Thu Feb 22, 2007 9:16 am Reply with quote

HTTP auth is easier to setup, so if you have the option then I would use that.
 
View user's profile Send private message
jakec
PostPosted: Thu Feb 22, 2007 9:19 am Reply with quote

I should add that the .ftaccess and .staccess are for CGIAUTH and the sample files are what you would use as a base to set it up.
 
jetlampitt
PostPosted: Thu Feb 22, 2007 12:39 pm Reply with quote

Ok thank you for that, Ill use the HTTP auth

But I still get an error in the Sentinel administration saying that the file does not exist or is not correctly CHMODed.

Also i no the HTTP auth is easier to setup, but is the Admin CGI Auth more secure then?

Plus if I wanted to make the:
.staccess
.ftaccess

Would I just rename the follwing files:
/public_html/sample.staccess -> .staccess
/public_html/sample.ftaccess -> .ftaccess
 
Gremmie
Former Moderator in Good Standing


Joined: Apr 06, 2006
Posts: 2415
Location: Iowa, USA

PostPosted: Thu Feb 22, 2007 12:57 pm Reply with quote

jetlampitt wrote:

But I still get an error in the Sentinel administration saying that the file does not exist or is not correctly CHMODed.


So chmod it.

jetlampitt wrote:

Plus if I wanted to make the:
.staccess
.ftaccess

Would I just rename the follwing files:
/public_html/sample.staccess -> .staccess
/public_html/sample.ftaccess -> .ftaccess


Yes.

I have some questions too. When I first started using Sentinel, I don't think it had .ftaccess. What is this used for? I don't have one right now.

Why does .staccess need to be writable? When does Sentinel need to update it? I just put in the login/password into mine, uploaded it and made it read-only.

_________________
Only registered users can see links on this board! Get registered or login! - An Event Calendar for PHP-Nuke
Only registered users can see links on this board! Get registered or login! - A Google Maps Nuke Module 
View user's profile Send private message
jetlampitt
PostPosted: Thu Feb 22, 2007 1:40 pm Reply with quote

How do I CHMODed These files, can someone give me the nubers that I need
/public_html/.htaccess
/public_html/.ftaccess
/public_html/.staccess


Eg
/public_html/.htaccess -----> CHMODed = 777

tnx
 
jakec
PostPosted: Thu Feb 22, 2007 4:32 pm Reply with quote

I believe they should be CHMODed to 777, it should be in the documentation somewhere.

If you choose CGIAUTH make sure you read all the docs about setting it.

I asked a few questions from the experts (thanks G) and both methods should as secure as each other.
 
Gremmie
PostPosted: Thu Feb 22, 2007 5:32 pm Reply with quote

777 is a bit overkill, you don't need execute permissions. You'll probably want 666.
 
montego
Site Admin


Joined: Aug 29, 2004
Posts: 9457
Location: Arizona

PostPosted: Thu Feb 22, 2007 6:43 pm Reply with quote

Ok, let me help clear some things up (I hope). I'll do it by "topic":

HTTPAuth vs. CGIAuth - Absolutely correct in that either way is just as good, HOWEVER, if you have HTTPAuth in your list there is a good chance that you have register globals turned on. If you are using RavenNuke, I'd suggest NOT doing that. It is unnecessary and just raises the risk level of your server environment. (I am being generic because there are just TOO many combinations of scripts to discuss the whys and wherefors).

.ftaccess - This was added a few NS releases back to store the flood blocker IPs addresses. Unfortunately, for most installations, 666 will be required in order for Apache/PHP to be able to write to it. If you don't use the Flood Blocker, you don't need it.

.htaccess - Needs to be 666 in order for Apache/PHP to be able to write to it. However, if you do not plan on having NS write the IP deny statements to this file, it does NOT have to be 666. It could be 644 instead. In addition, if you are using CGIAuth, you MUST have the .htaccess file.

.staccess - Not using CGIAuth? Then, you don't need it. If you are using CGIAuth, you need it and it needs to be 666 only I believe and really only when you are adding a new admin and need to have NukeSentinel write the hash to it. Otherwise, you could probably get away with 644.

This is JMO. It comes with no warranties either expressed nor implied.
ROTFL

_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
jetlampitt
PostPosted: Thu Feb 22, 2007 8:11 pm Reply with quote

Ok Thank you very much for that, Ive modded those files that you mentioned but it still comes up saying there is an error in Nuke Sentinel Administration.
Is there any way I can sort this, maybe you could have a look and see what ive done wrong some time? =(
 
montego
PostPosted: Fri Feb 23, 2007 6:26 am Reply with quote

The key is, is everything working? Mine also gives me this message on my .staccess file as I choose not to have the "proper permissions". When I add a new admin (very rare occassion), I simply change the permissions back to 666, make the update, and set it back.

You should ONLY be seeing this "chmod error" on the .staccess file. If you have it on any of the other two, then you have either not set the correct full path to these files or you have not set them to 666.
 
jetlampitt
PostPosted: Fri Feb 23, 2007 2:12 pm Reply with quote

The Path is correct:
/public_html/.htaccess
/public_html/.staccess
/public_html/.ftaccess

And they are all moded to 666
But i still get an error, soomethings not rite, and now I can not use floood protection.
 
montego
PostPosted: Sun Feb 25, 2007 5:26 pm Reply with quote

Is this on a shared server? If so, that path does not look correct. Unfortunately, you must give the full absolute path. It might be something like this:

/home/mysite/public_html/.htaccess

or even longer.
 
jetlampitt
PostPosted: Mon Feb 26, 2007 2:16 am Reply with quote

Ok, Thankyou verymutch for that; as I only had access to public_html on my ftp, i thought that <<path details removed by admin>>/.ftaccess must be incorrect. now since i CHMODed it and put the correct path in its working fine =).
 
montego
PostPosted: Mon Feb 26, 2007 10:29 pm Reply with quote

Excellent. Glad to have been of some assistance.

Dance-Stick
 
Display posts from previous:       
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ v2.5.x

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©