Powered by Invision Power Board


  Reply to this topicStart new topicStart Poll

> SymLinks
Lord
  Posted: Jan 27 2004, 09:19 AM
Quote Post





Group: Members
Posts: 102
Member No.: 54
Joined: 3-September 02



Hello,

This thread is related to the one about cURL and SSL certificates.

The domain name in question is hosted on a VPS (the Schmolie Special, subscription #179).

Now that the cURL issue was fixed (big thanks to andy) and the SSL certificate is successfully installed and configured, we may need to create SymLinks in order to let osCommerce (the cause of all these discussions!) to looks for files when using SSL from /httpsdocs/ to /httpdocs/

I found 2 different alternatives. I want to know if they are safe and possible please. Also, any other suggestion is welcome.

QUOTE
Alternative #1
SSH into your server

su for root

cd /home/httpd/vhosts/domain.com

cp -R httpsdocs httpsdocs.bak (just incase)

rm -rf httpsdocs

ln -s httpdocs httpsdocs

chown ftpuser:psaserv httpsdocs


QUOTE
Alternative #2
1- Log into your server.

2- cd /home/httpd/vhosts/domain.com/conf/

Create this file:

pico vhost_ssl.conf

Add this line:

DocumentRoot /home/httpd/vhosts/domain.com/httpdocs

This will change where Plesk looks for your html files when using SSL from httpsdocs to httpdocs

Save the file and run this script:

/usr/local/psa/admin/sbin/my_apci_rst

Your httpd.conf will be re-read and configurations updated to point to the correct DocumentRoot!


Btw, we know that PLESK uses 2 directories: /httpdocs/ and /httpsdocs/ for secure transactions. If I copy all the files of osCommerce that are in /httpdocs/ to /httpsdocs/ then the shop will run very slow.

Last question, in the Apache configuration, is the option FollowSymLinks enadbled for httpsdocs directory?

Thanks.
PM
Top
andy
Posted: Jan 27 2004, 12:21 PM
Quote Post





Group: Advantagecom Staff
Posts: 4,340
Member No.: 9
Joined: 12-July 02



Alternative #1 is what we use regularly on our own Linux/Plesk servers, so we know that works well. Just be sure that when using the chown command that you select the correct username and group name for the ownership of the symlink. You'll want to use the username and group name found on the original httpsdocs directory, so be sure to take note of it before removing it.

I haven't used Alternative #2, so I don't know if there are any potential problems with that approach. In theory, though, it looks to be a sound and reasonable approach to the problem that should work. In fact, it might be more compatible with the Plesk provided server backup and restore scripts since it stays within the expected operation of Plesk and uses the expected methods for making custom configurations for an individual domain. The only issue I see is that the end user could get confused and attempt to upload to the httpsdocs folder and then wonder why those files they uploaded aren't visible from the web. That is a relatively minor issue, though.

QUOTE
Last question, in the Apache configuration, is the option FollowSymLinks enadbled for httpsdocs directory?


This varies from server to server. What you should do is take a look at the contents of /etc/httpd/conf/httpd.conf and search for FollowSymLinks (or some shortened version). Take a look to see if it is enabled for the global settings. It usually is, but not always. For settings specific to that directory, you will want to look at /etc/httpd/conf/httpd.include (a Plesk specific Apache configuration file).


--------------------
Sincerely,
Andrew Kinney
CTO, Advantagecom Networks

Please do not private message me. My regular management duties preclude responding to every customer that sends me a support issue. Instead, post on the forum or contact tech support.
PMUsers Website
Top
Lord
Posted: Jan 27 2004, 12:40 PM
Quote Post





Group: Members
Posts: 102
Member No.: 54
Joined: 3-September 02



Thank you so much andy for your very usefull reply.

I'll do some tests and see if everything will work fine. I'm going to test Alternative #1.
PM
Top
Lord
Posted: Jan 29 2004, 02:05 PM
Quote Post





Group: Members
Posts: 102
Member No.: 54
Joined: 3-September 02



Ok andy, I went with Alternative #1 and everything seems to be working fine.

But we still getting this warning message: "This page contains both secure and non secure items..."

Any idea how to fix that please?

Thanks.
PM
Top
andy
Posted: Jan 29 2004, 03:24 PM
Quote Post





Group: Advantagecom Staff
Posts: 4,340
Member No.: 9
Joined: 12-July 02



QUOTE
"This page contains both secure and non secure items..."


This usually means that the page is being loaded with https:// , but some of the images are being loaded with http:// or vice versa. The usual solution is to use relative links (partial URL with just the path to the filename and no server or protocol information in the URL) to image sources instead of absolute links (the full URL).


--------------------
Sincerely,
Andrew Kinney
CTO, Advantagecom Networks

Please do not private message me. My regular management duties preclude responding to every customer that sends me a support issue. Instead, post on the forum or contact tech support.
PMUsers Website
Top
Lord
Posted: Jan 29 2004, 03:47 PM
Quote Post





Group: Members
Posts: 102
Member No.: 54
Joined: 3-September 02



QUOTE (andy @ Jan 29 2004, 06:24 PM)
This usually means that the page is being loaded with https:// , but some of the images are being loaded with http:// or vice versa.

Yes, I know but I used SymLinks for all the /httpdocs/ files and /httpsdocs/

It is supposed to fix this issue even for the images?!!

Anyway, I will try your solution and find if there is any absolute links.

Thanks.
PM
Top
andy
Posted: Jan 29 2004, 05:41 PM
Quote Post





Group: Advantagecom Staff
Posts: 4,340
Member No.: 9
Joined: 12-July 02



QUOTE
Yes, I know but I used SymLinks for all the /httpdocs/ files and /httpsdocs/


Right, but this has no bearing on the HTML code itself. It only makes it so you don't have to upload secure documents to different location.


--------------------
Sincerely,
Andrew Kinney
CTO, Advantagecom Networks

Please do not private message me. My regular management duties preclude responding to every customer that sends me a support issue. Instead, post on the forum or contact tech support.
PMUsers Website
Top
Lord
Posted: Jan 29 2004, 07:05 PM
Quote Post





Group: Members
Posts: 102
Member No.: 54
Joined: 3-September 02



I fixed this issue! It was due to the Comodo's TrustLogo image.

I used now a relative link and everything is ok.

Thanks again andy for your great support.
PM
Top
Matt
Posted: Jun 18 2008, 01:36 PM
Quote Post





Group: Members
Posts: 1,103
Member No.: 342
Joined: 25-November 03



We now have available a Basic one year SSL certificate (99.8% browser compatibility) for $50.00 per year. Purchase of the SSL certificate includes free installation. You can purchase the Basic one-year SSL certificate in our store at:

https://manage.speedingbits.com/store/index.cgi/sid,14399

We also have advanced SSL certificates available, with insurance policies, identity validation web site graphics, Extra Validation (EV) SSL certificates, and more. Contact our sales department at sales@advantagecom.net for pricing.


--------------------
Matt B.
Advantagecom Technical Support

Private messages are ignored unless solicited. If you have a support question, please email support@advantagecom.net, post in the appropriate section of the forum, or call if your service plan allows support by phone.
PMUsers Website
Top
0 User(s) are reading this topic (0 Guests and 0 Anonymous Users)
0 Members:

Topic Options Reply to this topicStart new topicStart Poll