store | blogs | forums | twitter | facebook | wiki | downloads | support portal
Atomic Secure Linux
It is currently Tue Sep 02, 2014 12:15 am

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]




Post new topic Reply to topic  [ 16 posts ]  Go to page 1, 2  Next
Author Message
 Post subject: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 5:22 am 
Offline
Forum Regular
Forum Regular

Joined: Tue Dec 16, 2008 8:01 am
Posts: 369
Location: United Kingdom
We have a site built with Dreamweaver. Yesterday we discovered that the menus are not showing on the Home Page (or any other pages, if we go to any direct).

/var/www/vhosts/domain.co.uk/statistics/logs/error_log shows only one thing strange
Quote:
[Wed Aug 03 08:55:52 2011] [error] [client 109.224.207.33] File does not exist: /var/www/vhosts/domain.co.uk
[Wed Aug 03 09:14:41 2011] [error] [client 109.224.207.33] Directory index forbidden by Options directive: /var/www/vhosts/domain.co.uk/httpdocs/contents/


The site works fine with the client when on their local machine in the Dreamweaver programme, but when they FTP it, the menus disappear.

Can anyone help us get to the bottom of what is causing this please?


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 6:16 am 
Offline
Forum Regular
Forum Regular

Joined: Tue Dec 16, 2008 8:01 am
Posts: 369
Location: United Kingdom
If it helps, I have a Web Developer tool turned on on Firefox. When we go to the Home page, it reports an error:
Quote:
Expected ',' or '{' but found 'html'. Ruleset ignored due to bad selector


and in the source code for http://www.domain.co.uk/contents/styles/website.css, it highligts one line - shown below in bold/und with some addl code around it:
Quote:
html body, div, p, td, input, select /* font */{font-family:Verdana, Geneva, sans-serif;}
a{text-decoration:none;color:#0000FF;}
/* **** END: Base system colour styles and declarations **** */
/* ** BEGIN: Primary declarations ** */
* {margin:0;padding:0;} /* Forces all elements to default */
html {text-align:center;}
/*body, div, p, td, input, select {font-style:normal;}*/
body {font-size:12px;}
*html body {width:98%;}
html, body {height:100%;text-align:center;}
/* ** BEGIN: Website width and height ** */
/* Normally set to 770px (Fits on 800 x 600 screens) or 980px (Fits on 1024 x 768 screens). Larger or smaller sizes are possible, with sacrifice to legability of website text and loading times. */
#WebSite, #WebSiteHeader, #WebSiteContent, #WebSiteFooter, #WebSiteContent, #DesignImage1, #AppLogo, .WebSiteFootnote {width:980px;}
/* Sum of the following elements width must equal WebSite width. Check other values further down this file for other elements which my be affected by these settings. */
#SideBar_L{width:200px;font-size:12px;font-weight:bold;font-style:normal;} #Content {width:750px;margin:0 10px 0 20px;}
/* Minimum website height */
#WebSite, #WebSiteContent, #Content {min-height:415px;}
/* ** END: Website width and height ** */


Does that help at all?

We are going to try and disable Safebrowsing and see if that helps. If we comment out the relevant line in /etc/freshclam.conf and restart apache, is that sufficient? Not sure that this should help at all, but want to try it anyway.

Grateful for any other clues.


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 9:21 am 
Offline
Forum Regular
Forum Regular

Joined: Tue Dec 16, 2008 8:01 am
Posts: 369
Location: United Kingdom
Update 2:

We uploaded this website to a server that is not ours and the site works fine with its menus. Therefore, it is something on our server that is stripping out the menus. Can someone help as to what that might be?


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 10:13 am 
Offline
Forum Regular
Forum Regular

Joined: Sat Mar 28, 2009 6:58 pm
Posts: 853
Location: Germany
so is the root of the page
/var/www/vhosts/domain.co.uk/httpdocs/contents/
or
/var/www/vhosts/domain.co.uk/httpdocs/

How is your vhost configured? As Fcgi or Apache module?
How are the permission set?
do you have an index.php or index.html, index.htm file in /var/www/vhosts/domain.co.uk/httpdocs/contents/?
If not, create a new index.html file in that directory and post the erro in the log.
probably a permission error.


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 11:29 am 
Offline
Forum User
Forum User

Joined: Tue Jul 19, 2011 6:30 am
Posts: 69
Location: United Kingdom
(I'm working with coolemail)

The root index.html is in the main /httpd directory. We're using Apache.

The whole website functions offline perfectly - it contains no server-side scripts. Uploaded it to another host, worked perfectly. Nothing showing up in the httpd error logs that is relevant. Just checked the file and directory permissions... they're fine (read only) for html, execute for directories ( the website files show up) just the menu's which are included via javascript and flash get blocked on our server for some reason. =/ Cheers


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 11:49 am 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 3626
Location: Chantilly, VA
Whats the output of "asl -s" on the system?

_________________
Michael Shinn
Atomicorp - Security For Everyone

Co-Author of Troubleshooting Linux Firewalls.


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 11:58 am 
Offline
Forum User
Forum User

Joined: Tue Jul 19, 2011 6:30 am
Posts: 69
Location: United Kingdom
Code:
Starting Atomic Secured Linux scan, please be patient...

Checking Kernel security settings
  ASL kernel: detected [OK]
  Runtime module loading: disabled [OK]
  GRsecurity administrative password: not set [INFO]
  GRsecurity ACL database: not found [INFO]
  Executable anonymous mapping: no [OK]
  Executable bss: no [OK]
  Executable data: no [OK]
  Executable heap: no [OK]
  Executable stack: no [OK]
  Executable anonymous mapping (mprotect): no [OK]
  Executable bss  (mprotect): no [OK]
  Executable data  (mprotect): no [OK]
  Executable heap  (mprotect): no [OK]
  Executable shared library bss (mprotect): no [OK]
  Executable shared library data (mprotect): no [OK]
  Executable stack (mprotect): no [OK]
  Anonymous mapping randomisation test: no [OK]
  Heap randomisation test (ET_EXEC): no [OK]
  Heap randomisation test (ET_DYN): no [OK]
  Main executable randomisation (ET_EXEC): no [OK]
  Shared library randomisation test: no [OK]
  Stack randomisation test (SEGMEXEC): no [OK]
  Stack randomisation test (PAGEEXEC): no [OK]
  Executable shared library bss: no [OK]
  Executable shared library data: no [OK]
  Writable text segments: no [OK]

  Kernel Enforced Security Policies
  Trusted Path Execution(TPE): enforced [OK]
    TPE Mode: Unless Deny, Allow [INFO]
  Disable Privileged I/O: enforced [OK]
  Audit mount() events: not enforced [INFO]
  Audit chdir() events: not enforced [INFO]
  Audit ptrace() events: enforced [OK]
  Audit text relocation events: not enforced [INFO]
  Restrict chroot() capabilities: enforced [OK]
  Chroot restrictions, deny chmod(): enforced [OK]
  Chroot restrictions, deny chroot(): enforced [OK]
  Chroot restrictions, deny fchdir(): enforced [OK]
  Chroot restrictions, deny mknod(): enforced [OK]
  Chroot restrictions, deny mount(): enforced [OK]
  Chroot restrictions, deny pivot(): enforced [OK]
  Chroot restrictions, deny external shmem access: enforced [OK]
  Chroot restrictions, deny sysctl: enforced [OK]
  Chroot restrictions, deny unix domain sockets: enforced [OK]
  Chroot restrictions, set cwd to chroot dir: enforced [OK]
  Chroot restrictions, process controls: enforced [OK]
  Restrict dmesg: enforced [OK]
  Restrict resource limits on execve(): enforced [OK]
  Enhanced FIFO restrictions: enforced [OK]
  Fork() failure logging: enforced [OK]
  Harden ptrace(): not enforced [MODERATE]
  Network Stack, IP Blackhole policy: enforced [OK]
  Linking Restrictions: enforced [OK]
  Resource Logging: not enforced [INFO]
  RWX map Logging: not enforced [INFO]
  Signal Logging: not enforced [INFO]
  Timechange Logging: enforced [OK]

Checking General security settings
Checking for unnecessary services
    Service apmd: disabled [OK]
    Service autofs: disabled [OK]
    Service avahi-daemon: disabled [OK]
    Service bluetooth: disabled [OK]
    Service cups: disabled [OK]
    Service gpm: disabled [OK]
    Service haldaemon: disabled [OK]
    Service hidd: disabled [OK]
    Service hplip: disabled [OK]
    Service isdn: disabled [OK]
    Service kdump: disabled [OK]
    Service mcstrans: disabled [OK]
    Service nfs: disabled [OK]
    Service nfslock: disabled [OK]
    Service pcscd: disabled [OK]
    Service portmap: disabled [OK]
    Service rpcidmapd: disabled [OK]
    Service xfs: disabled [OK]
    Service X11: disabled [OK]

Checking for End of Life (EOL) operating systems
    centos/5: Supported [OK]
Checking for updater: yum detected [OK]
Checking for updates: system is up to date [OK]

Checking General Plesk settings
  Plesk SQL Injection vulnerability SA26741: not detected [OK]
  Horde Turba Vulnerability CVE-2008-0807: not detected [OK]
  Horde Vulnerability SA28382: not detected [OK]
  Horde Turba Vulnerability SA28382: not detected [OK]
  Horde Mnemo Vulnerability SA28382: not detected [OK]
  Horde Kronolith Vulnerability SA28382: not detected [OK]
  Horde Vulnerability CVE-2007-6018: not detected [OK]
  Horde Vulnerability CVE-2008-1284: not detected [OK]
  Horde Kronolith Vulnerabilty BugtraqID 28898: not detected [OK]
  Proftp Vulnerability SA33842: not detected [OK]
  Proftp Vulnerability SA42052: not detected [OK]
  Verify SSLv2 disabled in Plesk Daemon: verified [OK]
  Verify TLS enabled in proftp: enabled [OK]
  Verify ClamAV enabled in proftp: enabled [OK]
  Set proftp scoreboard to default: yes [OK]
  Checking for weak SMTP_AUTH passwords: 10 found [MODERATE]
  See/var/asl/reports/password.report for more details
  Verify SSLv2 disabled in Qmail: verified [OK]
  Verify SSLv2 disabled in Courier IMAP: verified [OK]
  Verify SSLv2 disabled in Courier POP3d: verified [OK]
  Verify expose_php set to off:  [OK]

Checking mod_security settings
  Checking for mod_security installation: installed [OK]
  mod_security set to: enabled [OK]
  Server Signature set to: Apache [OK]
  SecUploadDir set to: /var/asl/data/suspicious [OK]
  SecUploadKeepFiles set to: off [OK]
  Logfile set to: audit_log [OK]
  Logging set to: Concurrent [OK]
  Audit Logging to: /var/asl/data/audit [OK]
  Logging elements set to: ABIFHZ [OK]
  SecRequestBodyInMemoryLimit set to: 131072 [OK]
  SecRequestBodyLimit set to: 134217728 [OK]
  SecResponseBodyLimit set to: 2621440 [OK]
  SecResponseBodyLimitAction set to: ProcessPartial [OK]
  SecDataDir set to: /var/asl/data/msa [OK]
  SecTmpDir set to: /tmp [OK]

  Checking rule class settings 
    RBL Ruleset: off [LOW]
    Whitelist Ruleset: off [OK]
    Anti-Malware Ruleset: on [OK]
    Generic Attack Ruleset: on [OK]
    Advanced Attack Ruleset: off [HIGH]
    Brute Force Protection Ruleset: on [OK]
    Malicious Useragents Ruleset: on [OK]
    Anti-Spam Ruleset: on [OK]
    Rootkit Detection Ruleset: on [OK]
    Reconnaissance Attacks Ruleset: on [OK]
    Data Leak Prevention Ruleset: on [OK]
    Just In Time Patches: on [OK]
    Malicious Output Logging Ruleset: on [OK]
    Malicious Output Removal Ruleset: off [MODERATE]
    Malicious Output Detector: on [OK]
    Web Malware Upload Scanner: on [OK]

  Checking for disabled rules

Checking php settings
  Checking for php installation: installed [OK]
  Allow URL fopen: yes [HIGH]

Checking for High-Risk functions
  Function curl_exec: not allowed [OK]
  Function curl_multi_exec: not allowed [OK]
  Function dl: not allowed [OK]
  Function exec: allowed [HIGH]
  Function fsockopen: allowed [HIGH]
  Function passthru: not allowed [OK]
  Function pcntl_exec: not allowed [OK]
  Function pfsockopen: not allowed [OK]
  Function popen: allowed [HIGH]
  Function posix_kill: not allowed [OK]
  Function posix_mkfifo: not allowed [OK]
  Function posix_setuid: not allowed [OK]
  Function proc_close: not allowed [OK]
  Function proc_open: not allowed [OK]
  Function proc_terminate: not allowed [OK]
  Function shell_exec: not allowed [OK]
  Function system: not allowed [OK]

Checking for Moderate-Risk functions
  Function ftp_exec: not allowed [OK]
  Function leak: not allowed [OK]
  Function posix_setpgid: not allowed [OK]
  Function posix_setsid: not allowed [OK]
  Function proc_get_status: not allowed [OK]
  Function proc_nice: not allowed [OK]
  Function show_source: not allowed [OK]

Checking for Low-Risk functions
  Function escapeshellcmd: allowed [LOW]
  Function phpinfo: allowed [LOW]

 Checking executable stack flag on PHP extensions
  /usr/lib64/php/ioncube/ioncube_loader_lin_5.3.so :  [OK]

Checking ossec-hids settings
  Checking for ossec-hids installation: installed [OK]
  ossec-hids set to: enabled [OK]
  OSSEC is configured in server mode.
    Checking for server installation: installed [OK]
    Email notification: disabled [OK]
    Active Response: enabled [OK]
    Active Response timeout: 600 [OK]

    Verifying OSSEC whitelists[snipped]

    Checking for monitored log files
      [snipped by mike]


Checking rkhunter settings
   [snipped by mike]

Checking ssh settings
  [snipped by mike]



Checking httpd settings
  Verify HTTP TRACE disabled: verified [OK]
  Verify SSLv2 disabled: verified [OK]

Checking mod_evasive settings
  Checking for mod_evasive installation: installed [OK]
  mod_evasive set to: enabled [OK]
  DOSHashTableSize set to: 4096 [OK]
  DOSPageCount set to: 5 [OK]
  DOSSiteCount set to: 200 [OK]
  DOSPageInterval set to: 2 [OK]
  DOSSiteInterval set to: 2 [OK]
  DOSBlockingPeriod set to: 25 [OK]

Checking clamav settings
  Checking for clamav installation: installed [OK]
  ClamAV set to: enabled [OK]
  Clamd listen address: 127.0.0.1 [OK]
  Clamd log to syslog: yes [OK]

  Clamav is in: application-only mode


Checking psmon settings
  Checking for psmon installation: installed [OK]
  psmon set to: enabled [OK]
  Notifications to: office@hostname.com [OK]
  From line set to: psmon@plesk3.hostname.co.uk [OK]

Checking System services monitored by psmon
  clamd: monitored [OK]
  courier-imap: monitored [OK]
  crond: monitored [OK]
  mysqld: monitored [OK]
  sshd: monitored [OK]
  xinetd: monitored [OK]
  ossec-dbd: monitored [OK]


Generating Report: Complete


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 12:16 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 3626
Location: Chantilly, VA
Well thats a dead end, the only component in ASL that could modify web output is disabled on your system (and thats only on the fly, not in the files themselves), so it doesnt look like ASL is doing anything to your content.

Can you confirm that the files are unchanged when they are uploaded to your server? (hashes are best for this, md5sum for example)

Have you confirmed that the web server configuration is identical between your test environment and this environment? If not, I'd start there to eliminate all variables on the server itself. The errors you have posted so far look like path and permission issues, which would be caused by a server config issue, or even a local patch issue in the web code itself.

_________________
Michael Shinn
Atomicorp - Security For Everyone

Co-Author of Troubleshooting Linux Firewalls.


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 12:36 pm 
Offline
Forum Regular
Forum Regular

Joined: Tue Dec 16, 2008 8:01 am
Posts: 369
Location: United Kingdom
In php.ini, we have
Quote:
[root@plesk3 ~]# grep disable_functions /etc/php.ini
disable_functions = , curl_exec , curl_multi_exec , dl , passthru , pcntl_exec , pfsockopen , posix_kill , posix_mkfifo , posix_setuid , proc_close , proc_open , proc_terminate , shell_exec , system , ftp_exec , leak , posix_setpgid , posix_setsid , proc_get_status , proc_nice , show_source
[root@plesk3 ~]#


Would it be OK to comment out the
disable_functions
in /etc/php.ini and see if that resolves it?

Would we need to restart apache to make it take effect?


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 12:53 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 3626
Location: Chantilly, VA
Quote:
In php.ini, we have

[root@plesk3 ~]# grep disable_functions /etc/php.ini
disable_functions = , curl_exec , curl_multi_exec , dl , passthru , pcntl_exec , pfsockopen , posix_kill , posix_mkfifo , posix_setuid , proc_close , proc_open , proc_terminate , shell_exec , system , ftp_exec , leak , posix_setpgid , posix_setsid , proc_get_status , proc_nice , show_source
[root@plesk3 ~]#


So that looks like ASL is managing your PHP settings correctly, its possible one of those functions may be necessary for your web application to work. I'd re-enable all your PHP functions and see if eliminating that variable gets you closer to the source. If that doesnt resolve it, the only other part of ASL that could intercept web requests is the DOS protection system, which is the option MODEV_ENABLED to "no". And if that doesnt resolve it then you have run out of ASL causes.

Quote:
Would it be OK to comment out the
disable_functions
in /etc/php.ini and see if that resolves it?


You could, but if you have ASL configured to enforce those settings they will get re-enabled. Just log into ASL and set PHP_CHECKS to "no", that will disable anything ASL has been configured to do to your PHP configuration.

Quote:
Would we need to restart apache to make it take effect?


Yes.

_________________
Michael Shinn
Atomicorp - Security For Everyone

Co-Author of Troubleshooting Linux Firewalls.


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 1:38 pm 
Offline
Forum Regular
Forum Regular

Joined: Tue Dec 16, 2008 8:01 am
Posts: 369
Location: United Kingdom
I have set PHP_CHECKS to No on ASL GUI and clicked Update.
Then I commented out disable_functions:
Quote:
[root@plesk3 ~]# grep disable_functions /etc/php.ini
#disable_functions = , curl_exec , curl_multi_exec , dl , passthru , pcntl_exec , pfsockopen , posix_kill , posix_mkfifo , posix_setuid , proc_close , proc_open , proc_terminate , shell_exec , system , ftp_exec
[root@plesk3 ~]#

restarted httpd
and still the menu is not showing on our own server.

Then set MODEV_ENABLED to "no", clicked Update, restarted apache and still no joy.

I have reversed both the above, but would welcome, please some more help.

The 3rd party server onto which we copied the website is not ours so not really possible for us to see all the differences. However, 3rd Party is using:
Quote:
PHP Version 5.2.6-1+lenny13
System Linux dynamic-web3.hostingweb.co.uk 2.6.32.6ai-build #2 SMP Thu Jan 28 17:16:47 GMT 2010 x86_64
Build Date Jul 1 2011 15:58:32


and we are using:
Quote:
PHP Version 5.3.6
System Linux plesk3.emailitis.co.uk 2.6.32.43-6.art.x86_64 #1 SMP Thu Jul 14 14:14:48 EDT 2011 x86_64
Build Date Apr 19 2011 13:21:29


if that gives any clue?


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 1:51 pm 
Offline
Forum Regular
Forum Regular

Joined: Sat Mar 28, 2009 6:58 pm
Posts: 853
Location: Germany
you didn't answer some questions...so once again like above:

so is the root of the page (also in the vhost config)
/var/www/vhosts/domain.co.uk/httpdocs/contents/
or
/var/www/vhosts/domain.co.uk/httpdocs/


and how is your vhost configured? As Fcgi or Apache module?
How are the permission set?
do you have an index.php or index.html, index.htm file in /var/www/vhosts/domain.co.uk/httpdocs/contents/?
If not, create a new index.html file in that directory and post the error in the log.
probably a permission error.


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 2:12 pm 
Offline
Forum Regular
Forum Regular

Joined: Tue Dec 16, 2008 8:01 am
Posts: 369
Location: United Kingdom
Thank you BruceLee for coming back so fast,

Sorry, douglaseggleton is working with me and he answered most of your queries - I think
douglaseggleton wrote:
(I'm working with coolemail)

The root index.html is in the main /httpd directory. We're using Apache.

The whole website functions offline perfectly - it contains no server-side scripts. Uploaded it to another host, worked perfectly. Nothing showing up in the httpd error logs that is relevant. Just checked the file and directory permissions... they're fine (read only) for html, execute for directories ( the website files show up) just the menu's which are included via javascript and flash get blocked on our server for some reason. =/ Cheers


There was no index file in /var/www/vhosts/domain.co.uk/httpdocs/contents/ (sent you a PM with the URLs before creating one there, because the website works on a server which is not ours, and on ours the page is there but just no menu)

I have listed main permissions below:
Quote:
[root@plesk3 ~]# ls -l /var/www/vhosts/domain.co.uk
total 48
drwxr-x--- 5 domainftp psaserv 4096 Jun 13 14:19 anon_ftp
drwxr-x--- 3 domainftp psacln 4096 Oct 22 2009 cgi-bin
drwxr-x--- 2 root psaserv 4096 Jul 22 08:59 conf
drwxr-xr-x 2 root psaserv 4096 Feb 28 12:34 error_docs
drwxr-xr-x 2 root root 4096 Jun 15 20:28 etc
drwxr-x--- 9 domainftp psaserv 4096 Aug 2 16:22 httpdocs
drwxr-x--- 7 domainftp psaserv 4096 Oct 22 2009 httpsdocs
drwxr-x--- 2 root psaserv 4096 Jun 13 14:19 pd
drwx------ 2 domainftp root 4096 Oct 22 2009 private
dr-xr-x--- 7 root psaserv 4096 Jun 13 14:19 statistics
drwxr-xr-x 2 root psaserv 4096 Jun 13 14:19 subdomains
drwxr-xr-x 2 root psaserv 4096 Jun 13 14:19 web_users
[root@plesk3 ~]#



[root@plesk3 ~]# ls -l /var/www/vhosts/domain.co.uk/httpdocs
total 92
drwxr-xr-x 7 domainftp psacln 4096 Aug 2 16:29 contents
drwxr-xr-x 2 domainftp psacln 4096 Oct 22 2009 css
-rwxr-xr-x 1 domainftp psacln 17542 Oct 22 2009 favicon.ico
drwxr-xr-x 6 domainftp psacln 4096 Oct 22 2009 img
-rw-r--r-- 1 domainftp psacln 2868 Feb 11 2010 index1.html
-rwxr-xr-x 1 domainftp psacln 13057 Aug 2 16:29 index.html
-rw-r--r-- 1 domainftp psacln 249 Aug 2 16:22 MTI-980-header.xml
drwxr-xr-x 2 domainftp psacln 4096 Oct 22 2009 picture_library
drwxr-xr-x 2 root root 4096 Oct 22 2009 plesk-stat
-rw-r--r-- 1 domainftp psacln 522 Aug 2 16:29 robots.txt
drwxr-xr-x 2 domainftp psacln 4096 Feb 23 2010 shared_files
-rw-r--r-- 1 domainftp psacln 5193 Aug 2 16:29 sitemap.xml
drwxr-xr-x 11 domainftp psacln 4096 Oct 22 2009 test
-rw-rw---- 1 root apache 1444 May 4 22:42 web_sitemap_affa0eb8_000.xml.gz
-rw-rw---- 1 root apache 274 May 4 22:42 web_sitemap_affa0eb8.xml.gz
[root@plesk3 ~]# ls -l /var/www/vhosts/domain.co.uk/httpdocs/contents
total 412
-rw-r--r-- 1 domainftp psacln 3175 Aug 2 16:22 cload.html
-rw-r--r-- 1 domainftp psacln 77705 Aug 2 16:22 core.html
-rw-r--r-- 1 domainftp psacln 2827 Aug 2 16:22 core.js
-rw-r--r-- 1 domainftp psacln 641 Aug 2 16:22 date.js
-rw-r--r-- 1 domainftp psacln 289 Aug 2 16:22 dynamic.html
drwxr-xr-x 2 domainftp psacln 4096 Aug 2 16:29 en-uk
-rw-r--r-- 1 domainftp psacln 2868 Aug 2 16:25 extra.html
-rw-r--r-- 1 domainftp psacln 15279 Aug 2 16:25 grey.html
-rw-r--r-- 1 domainftp psacln 3345 Aug 2 16:25 init.js
-rw-r--r-- 1 domainftp psacln 720 Feb 11 2010 lang_enter.js
-rw-r--r-- 1 domainftp psacln 11867 Aug 2 16:25 lang_en-uk.js
-rw-r--r-- 1 domainftp psacln 493 Aug 2 16:25 lang.html
-rw-r--r-- 1 domainftp psacln 1057 Aug 2 16:25 load_dynamic_js.js
-rw-r--r-- 1 domainftp psacln 22145 Aug 2 16:25 loader.js
-rw-r--r-- 1 domainftp psacln 479 Aug 2 16:25 loadjs.html
-rw-r--r-- 1 domainftp psacln 1103 Aug 2 16:25 load_login.html
-rw-r--r-- 1 domainftp psacln 10800 Aug 2 16:25 load_minicart.html
-rw-r--r-- 1 domainftp psacln 1310 Aug 2 16:25 load_switchcurrency.html
drwxr-xr-x 2 domainftp psacln 12288 Feb 23 2010 media
-rw-r--r-- 1 domainftp psacln 2831 Aug 2 16:29 net.js
-rw-r--r-- 1 domainftp psacln 9325 Aug 2 16:29 pconfirm.html
drwxr-xr-x 2 domainftp psacln 4096 Aug 2 16:29 phpsearch
-rw-r--r-- 1 domainftp psacln 277 Aug 2 16:29 progress.html
-rw-r--r-- 1 domainftp psacln 997 Aug 2 16:29 provider.html
drwxr-xr-x 2 domainftp psacln 4096 Feb 23 2010 prpgmap
-rw-r--r-- 1 domainftp psacln 1580 Aug 2 16:29 reseller.html
-rw-r--r-- 1 domainftp psacln 2133 Feb 11 2010 sec.html
-rw-r--r-- 1 domainftp psacln 3045 Feb 11 2010 sec.js
-rw-r--r-- 1 domainftp psacln 107977 Aug 2 16:29 sf.js
-rw-r--r-- 1 domainftp psacln 300 Aug 2 16:29 stat.html
-rw-r--r-- 1 domainftp psacln 5388 Aug 2 16:29 stat.js
drwxr-xr-x 2 domainftp psacln 4096 Feb 23 2010 styles
-rw-r--r-- 1 domainftp psacln 1919 Aug 2 16:29 ups.html
-rw-r--r-- 1 domainftp psacln 24630 Aug 2 16:29 utils.html
[root@plesk3 ~]# ls -l /var/www/vhosts/domain.co.uk/httpdocs/contents/en-uk
total 1300
-rw-r--r-- 1 domainftp psacln 14879 Aug 2 16:22 about.html
-rw-r--r-- 1 domainftp psacln 732 Aug 2 16:22 about_.js
-rw-r--r-- 1 domainftp psacln 24073 Aug 2 16:22 basket.html
-rw-r--r-- 1 domainftp psacln 735 Aug 2 16:22 basket_.js
-rw-r--r-- 1 domainftp psacln 9135 Aug 2 16:22 changecurrency.html
-rw-r--r-- 1 domainftp psacln 10971 Aug 2 16:23 clearterms.html
-rw-r--r-- 1 domainftp psacln 8376 Aug 2 16:23 cntyList.js
-rw-r--r-- 1 domainftp psacln 3422 Aug 2 16:23 conf.html
-rw-r--r-- 1 domainftp psacln 89 Aug 2 16:23 contactus_address.js
-rw-r--r-- 1 domainftp psacln 9489 Aug 2 16:23 customerdtl.html
-rw-r--r-- 1 domainftp psacln 750 Aug 2 16:23 customerdtl_.js
-rw-r--r-- 1 domainftp psacln 34618 Aug 2 16:23 d1_01.html
-rw-r--r-- 1 domainftp psacln 1773 Aug 2 16:23 d1__01.js
-rw-r--r-- 1 domainftp psacln 10740 Aug 2 16:23 d10.html
-rw-r--r-- 1 domainftp psacln 726 Aug 2 16:23 d10_.js
-rw-r--r-- 1 domainftp psacln 38677 Aug 2 16:23 d1.html
-rw-r--r-- 1 domainftp psacln 1995 Aug 2 16:23 d1_.js
-rw-r--r-- 1 domainftp psacln 18293 Aug 2 16:23 d2_01.html
-rw-r--r-- 1 domainftp psacln 993 Aug 2 16:23 d2__01.js
-rw-r--r-- 1 domainftp psacln 36959 Aug 2 16:23 d2.html
-rw-r--r-- 1 domainftp psacln 1997 Aug 2 16:23 d2_.js
-rw-r--r-- 1 domainftp psacln 27519 Aug 2 16:23 d3.html
-rw-r--r-- 1 domainftp psacln 1376 Aug 2 16:23 d3_.js
-rw-r--r-- 1 domainftp psacln 25583 Aug 2 16:23 d4.html
-rw-r--r-- 1 domainftp psacln 1245 Aug 2 16:23 d4_.js
-rw-r--r-- 1 domainftp psacln 22609 Aug 2 16:23 d5.html
-rw-r--r-- 1 domainftp psacln 1247 Aug 2 16:23 d5_.js
-rw-r--r-- 1 domainftp psacln 25344 Aug 2 16:23 d6.html
-rw-r--r-- 1 domainftp psacln 1249 Aug 2 16:23 d6_.js
-rw-r--r-- 1 domainftp psacln 42997 Aug 2 16:23 d9.html
-rw-r--r-- 1 domainftp psacln 2126 Aug 2 16:23 d9_.js
-rw-r--r-- 1 domainftp psacln 19626 Aug 2 16:23 favorites.html
-rw-r--r-- 1 domainftp psacln 744 Aug 2 16:23 favorites_.js
-rw-r--r-- 1 domainftp psacln 13084 Aug 2 16:23 front.html
-rw-r--r-- 1 domainftp psacln 732 Aug 2 16:23 front_.js
-rw-r--r-- 1 domainftp psacln 13121 Feb 11 2010 image_viewer.html
-rw-r--r-- 1 domainftp psacln 8298 Aug 2 16:23 index.html
-rw-r--r-- 1 domainftp psacln 2918 Aug 2 16:23 load_index1.html
-rw-r--r-- 1 domainftp psacln 3100 Aug 2 16:23 load_index2.html
-rw-r--r-- 1 domainftp psacln 3242 Aug 2 16:23 load_search.html
-rw-r--r-- 1 domainftp psacln 1593 Aug 2 16:23 load_switchlang.html
-rw-r--r-- 1 domainftp psacln 8888 Aug 2 16:23 login.html
-rw-r--r-- 1 domainftp psacln 7732 Aug 2 16:23 orderterms.html
-rw-r--r-- 1 domainftp psacln 31544 Aug 2 16:23 ordertotal.html
-rw-r--r-- 1 domainftp psacln 8463 Aug 2 16:23 otherurl.html
-rw-r--r-- 1 domainftp psacln 18846 Feb 11 2010 p10.html
-rw-r--r-- 1 domainftp psacln 13207 Aug 2 16:23 p11.html
-rw-r--r-- 1 domainftp psacln 13213 Aug 2 16:23 p12.html
-rw-r--r-- 1 domainftp psacln 13164 Aug 2 16:23 p13.html
-rw-r--r-- 1 domainftp psacln 13292 Aug 2 16:23 p14.html
-rw-r--r-- 1 domainftp psacln 13511 Aug 2 16:23 p15.html
-rw-r--r-- 1 domainftp psacln 13263 Aug 2 16:24 p16.html
-rw-r--r-- 1 domainftp psacln 13273 Aug 2 16:24 p17.html
-rw-r--r-- 1 domainftp psacln 18810 Feb 11 2010 p18.html
-rw-r--r-- 1 domainftp psacln 13434 Aug 2 16:23 p1.html
-rw-r--r-- 1 domainftp psacln 14510 Aug 2 16:24 p21.html
-rw-r--r-- 1 domainftp psacln 14524 Aug 2 16:24 p22.html
-rw-r--r-- 1 domainftp psacln 14616 Aug 2 16:24 p23.html
-rw-r--r-- 1 domainftp psacln 14538 Aug 2 16:24 p24.html
-rw-r--r-- 1 domainftp psacln 15131 Aug 2 16:24 p25.html
-rw-r--r-- 1 domainftp psacln 15128 Aug 2 16:24 p26.html
-rw-r--r-- 1 domainftp psacln 15068 Aug 2 16:24 p27.html
-rw-r--r-- 1 domainftp psacln 15569 Aug 2 16:24 p28.html
-rw-r--r-- 1 domainftp psacln 13355 Aug 2 16:24 p2.html
-rw-r--r-- 1 domainftp psacln 13356 Aug 2 16:24 p4.html
-rw-r--r-- 1 domainftp psacln 18611 Feb 11 2010 p5.html
-rw-r--r-- 1 domainftp psacln 13344 Aug 2 16:24 p6.html
-rw-r--r-- 1 domainftp psacln 13167 Aug 2 16:24 p7.html
-rw-r--r-- 1 domainftp psacln 13174 Aug 2 16:24 p8.html
-rw-r--r-- 1 domainftp psacln 13406 Aug 2 16:24 p9.html
-rw-r--r-- 1 domainftp psacln 10795 Aug 2 16:24 privacy.html
-rw-r--r-- 1 domainftp psacln 738 Aug 2 16:24 privacy_.js
-rw-r--r-- 1 domainftp psacln 69469 Aug 2 16:24 search.csv
-rw-r--r-- 1 domainftp psacln 12814 Aug 2 16:24 search.html
-rw-r--r-- 1 domainftp psacln 1898 Aug 2 16:24 search_map.10.js
-rw-r--r-- 1 domainftp psacln 2404 Aug 2 16:24 search_map.1.js
-rw-r--r-- 1 domainftp psacln 3558 Aug 2 16:24 search_map.2.js
-rw-r--r-- 1 domainftp psacln 3130 Aug 2 16:24 search_map.3.js
-rw-r--r-- 1 domainftp psacln 2916 Aug 2 16:24 search_map.4.js
-rw-r--r-- 1 domainftp psacln 1217 Aug 2 16:24 search_map.5.js
-rw-r--r-- 1 domainftp psacln 3323 Aug 2 16:24 search_map.6.js
-rw-r--r-- 1 domainftp psacln 4575 Aug 2 16:24 search_map.7.js
-rw-r--r-- 1 domainftp psacln 1524 Aug 2 16:24 search_map.8.js
-rw-r--r-- 1 domainftp psacln 2911 Aug 2 16:24 search_map.9.js
-rw-r--r-- 1 domainftp psacln 9563 Aug 2 16:25 search_map.js
-rw-r--r-- 1 domainftp psacln 1099 Feb 11 2010 search_result.html
-rw-r--r-- 1 domainftp psacln 3182 Aug 2 16:25 secure_shopping_message.html
-rw-r--r-- 1 domainftp psacln 30038 Aug 2 16:25 shipping_charge.html
-rw-r--r-- 1 domainftp psacln 10751 Aug 2 16:25 terms_email.html
-rw-r--r-- 1 domainftp psacln 19953 Aug 2 16:25 terms.html
-rw-r--r-- 1 domainftp psacln 732 Aug 2 16:25 terms_.js
-rw-r--r-- 1 domainftp psacln 10743 Aug 2 16:25 thankyou.html
-rw-r--r-- 1 domainftp psacln 741 Aug 2 16:25 thankyou_.js
-rw-r--r-- 1 domainftp psacln 9109 Aug 2 16:25 unsuccessful.html
-rw-r--r-- 1 domainftp psacln 753 Aug 2 16:25 unsuccessful_.js
-rw-r--r-- 1 domainftp psacln 403 Aug 2 16:22 V6No.html
-rw-r--r-- 1 domainftp psacln 396 Aug 2 16:22 V6Yes.html
-rw-r--r-- 1 domainftp psacln 8531 Aug 2 16:25 website.html
[root@plesk3 ~]#


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Wed Aug 03, 2011 2:13 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 3626
Location: Chantilly, VA
Quote:
restarted httpd
and still the menu is not showing on our own server.

Then set MODEV_ENABLED to "no", clicked Update, restarted apache and still no joy.

I have reversed both the above, but would welcome, please some more help.


Well, thats it for ASL, you've disabled all the ASL features that could play a role in this and its still happening, so by process of elimination you can rule that out.

The errors you orignally posted:
Quote:
[Wed Aug 03 08:55:52 2011] [error] [client 109.224.207.33] File does not exist: /var/www/vhosts/domain.co.uk
[Wed Aug 03 09:14:41 2011] [error] [client 109.224.207.33] Directory index forbidden by Options directive: /var/www/vhosts/domain.co.uk/httpdocs/contents/


Can be caused by a error in your web code (path maybe?) and/or configuration issues with your web servers setup (certainly the last one if configuration based). See Bruceless questions.

The two versions of PHP you are using are sufficiently different, but generally if 5.3 doesnt support something you will get an error. So I'd check for PHP errors too, turn on all the PHP logging in /etc/php.ini.

_________________
Michael Shinn
Atomicorp - Security For Everyone

Co-Author of Troubleshooting Linux Firewalls.


Top
 Profile  
 
 Post subject: Re: Dreamweaver menu being stripped
Unread postPosted: Thu Aug 04, 2011 1:39 am 
Offline
Forum User
Forum User

Joined: Tue Jul 19, 2011 6:30 am
Posts: 69
Location: United Kingdom
The website can run offline completely fine (i.e. not in a server) so doesn't rely on anything to do with php? It's all clientside - so the PHP settings shouldn't make a difference. However, the strange thing is I have just tried to access the website again at home - it runs fine. Not sure if coolemail managed to fix it, but will check again from work.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 16 posts ]  Go to page 1, 2  Next

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: Bing [Bot] and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group