Sponsor:

Server and Web Integrator
Link:
Kloxo-MR logo
6.5.0 or 7.0.0
Click for "How to install"
Donation/Sponsorship:
Kloxo-MR is open-source.
Donate and or Sponsorship always welcome.
Click to:
Click Here
Please login or register. 2017-11-07, 20:25:43

Author Topic: error saat pasang mod_security pada kloxo-mr  (Read 2581 times)

0 Members and 1 Guest are viewing this topic.

Offline amudy17

  • Senior Member
  • *
  • Posts: 246
  • Karma: +0/-1
    • View Profile
    • Alamudy
error saat pasang mod_security pada kloxo-mr
« on: 2014-03-04, 22:48:20 »
help me.. ada error pasang mod_security

Code: [Select]
[root@arrefahiyah ~]# sh /script/sysinfo

A. Kloxo-MR: 6.5.0.f-2014020301

B. OS: CentOS release 6.5 (Final) x86_64

C. Apps:
   1. MySQL: mysql-5.5.34-1.el6.x86_64
   2. PHP: php53u-5.3.28-1.ius.el6.x86_64
   3. Httpd: httpd-2.2.26-2.el6.x86_64
   4. Lighttpd: --uninstalled--
   5. Nginx: nginx-1.5.10-2.el6.x86_64
   6. Qmail: qmail-toaster-1.03-1.3.35.mr.el6.x86_64
      - with: courier-imap-toaster-4.1.2-1.3.14.mr.el6.x86_64
   7. Dns: djbdns-1.05-17.3.mr.el6.x86_64

D. Php-type (for Httpd/proxy): php-fpm_event

E. Memory:
                total       used       free     shared    buffers     cached
   Mem:          1974       1301        673          0         58        446
   -/+ buffers/cache:        796       1177
   Swap:         1022          0       1022


Code: [Select]
[root@arrefahiyah ~]# sh /script/restart-all
Stopping mysqld:                                           [  OK  ]
Starting mysqld:                                           [  OK  ]
Stopping Djbdns for:
  - axfrdns    [  OK  ]
  - tinydns    [  OK  ]
Starting Djbdns for:
  - axfrdns    [  OK  ]
  - tinydns    [  OK  ]
Stopping httpd:                                            [  OK  ]
Starting httpd: httpd.worker: Syntax error on line 63 of /etc/httpd/conf/httpd.conf: Syntax error on line 3 of /etc/httpd/conf.d/mod_security.conf: Cannot load /etc/httpd/modules/mod_security.so into server: /etc/httpd/modules/mod_security.so: cannot open shared object file: No such file or directory
                                                           [FAILED]
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
Stopping nginx:.                                           [  OK  ]
Starting nginx:                                            [  OK  ]
Stopping qmail-toaster: svscan qmail logging.
qmail-send: no process killed
Starting qmail-toaster: svscan.
Stopping xinetd:                                           [  OK  ]
Starting xinetd:                                           [  OK  ]
Stopping kloxo-phpcgi:                                     [  OK  ]
Starting kloxo-phpcgi:                                     [  OK  ]
Stopping kloxo-hiawatha:                                   [  OK  ]
Starting kloxo-hiawatha:                                   [  OK  ]
Stopping php-fpm:                                          [  OK  ]
Starting php-fpm:                                          [  OK  ]

kenapa saya setelah pasang mod_security ada error seperti itu? apa yang saya harus lakukan untuk membetulkan error?
« Last Edit: 2014-03-04, 23:03:20 by amudy17 »
Free, Fast and Secure CP => Kloxo-MR
Daily News Update => Click here to see website!

Offline MRatWork

  • Administrator
  • The Elite
  • *****
  • Posts: 15,381
  • Karma: +112/-9
  • Gender: Male
    • View Profile
    • MRatWork Forum
Re: error saat pasang mod_security pada kloxo-mr
« Reply #1 on: 2014-03-05, 03:11:56 »
Bisa jadi mod_security tidak terinstall biarpun mod_security.conf ada. File mod_security sendiri ada di /usr/lib64/httpd/modules sedangkan pengaturannya ada di /etc/httpd/conf.d/mod_security.conf.

Infokan saja hasil 'dir -ls /usr/lib64/httpd/modules' dan 'dir -ls /etc/httpd/conf.d'
..:: MRatWork (Mustafa Ramadhan Projects) ::..
-- Server/Web-integrator - Web Hosting (Kloxo-MR READY!) --

Offline amudy17

  • Senior Member
  • *
  • Posts: 246
  • Karma: +0/-1
    • View Profile
    • Alamudy
Re: error saat pasang mod_security pada kloxo-mr
« Reply #2 on: 2014-03-05, 22:46:12 »
Bisa jadi mod_security tidak terinstall biarpun mod_security.conf ada. File mod_security sendiri ada di /usr/lib64/httpd/modules sedangkan pengaturannya ada di /etc/httpd/conf.d/mod_security.conf.

Infokan saja hasil 'dir -ls /usr/lib64/httpd/modules' dan 'dir -ls /etc/httpd/conf.d'


Code: [Select]
[root@arrefahiyah ~]# dir -ls /usr/lib64/httpd/modules
total 7304
4496 -rwxr-xr-x 1 root root 4587864 Dec 19 07:59 libphp5.so
  12 -rwxr-xr-x 1 root root   10416 Feb 24 12:18 mod_actions.so
  16 -rwxr-xr-x 1 root root   14608 Feb 24 12:18 mod_alias.so
  12 -rwxr-xr-x 1 root root   10416 Feb 24 12:18 mod_asis.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_auth_basic.so
  32 -rwxr-xr-x 1 root root   31256 Feb 24 12:18 mod_auth_digest.so
  12 -rwxr-xr-x 1 root root   10456 Feb 24 12:18 mod_authn_alias.so
  12 -rwxr-xr-x 1 root root   10352 Feb 24 12:18 mod_authn_anon.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_authn_dbd.so
  12 -rwxr-xr-x 1 root root   10416 Feb 24 12:18 mod_authn_dbm.so
   8 -rwxr-xr-x 1 root root    6264 Feb 24 12:18 mod_authn_default.so
  12 -rwxr-xr-x 1 root root   10416 Feb 24 12:18 mod_authn_file.so
  32 -rwxr-xr-x 1 root root   31192 Feb 24 12:18 mod_authnz_ldap.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_authz_dbm.so
   8 -rwxr-xr-x 1 root root    6264 Feb 24 12:18 mod_authz_default.so
  12 -rwxr-xr-x 1 root root   10520 Feb 24 12:18 mod_authz_groupfile.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_authz_host.so
  12 -rwxr-xr-x 1 root root   10424 Feb 24 12:18 mod_authz_owner.so
  12 -rwxr-xr-x 1 root root   10384 Feb 24 12:18 mod_authz_user.so
  36 -rwxr-xr-x 1 root root   35472 Feb 24 12:18 mod_autoindex.so
  40 -rwxr-xr-x 1 root root   39696 Feb 24 12:18 mod_cache.so
  12 -rwxr-xr-x 1 root root   10480 Feb 24 12:18 mod_cern_meta.so
  32 -rwxr-xr-x 1 root root   31728 Feb 24 12:18 mod_cgid.so
  28 -rwxr-xr-x 1 root root   27312 Feb 24 12:18 mod_cgi.so
  56 -rwxr-xr-x 1 root root   52016 Feb 24 12:18 mod_dav_fs.so
  96 -rwxr-xr-x 1 root root   93328 Feb 24 12:18 mod_dav.so
  20 -rwxr-xr-x 1 root root   18800 Feb 24 12:18 mod_dbd.so
  24 -rwxr-xr-x 1 root root   22960 Feb 24 12:18 mod_deflate.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_dir.so
  24 -rwxr-xr-x 1 root root   22992 Feb 24 12:18 mod_disk_cache.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_dumpio.so
  12 -rwxr-xr-x 1 root root   10416 Feb 24 12:18 mod_env.so
  12 -rwxr-xr-x 1 root root   10512 Feb 24 12:18 mod_expires.so
  24 -rwxr-xr-x 1 root root   23120 Feb 24 12:18 mod_ext_filter.so
  84 -rwxr-xr-x 1 root root   81488 Apr 16  2013 mod_fastcgi.so
  96 -rwxr-xr-x 1 root root   93936 Oct  8 19:37 mod_fcgid.so
  16 -rwxr-xr-x 1 root root   14816 Feb 24 12:18 mod_file_cache.so
  20 -rwxr-xr-x 1 root root   18736 Feb 24 12:18 mod_filter.so
  20 -rwxr-xr-x 1 root root   18896 Feb 24 12:18 mod_headers.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_ident.so
  44 -rwxr-xr-x 1 root root   43600 Feb 24 12:18 mod_include.so
  20 -rwxr-xr-x 1 root root   19032 Feb 24 12:18 mod_info.so
  56 -rwxr-xr-x 1 root root   52048 Feb 24 12:18 mod_ldap.so
  28 -rwxr-xr-x 1 root root   27200 Feb 24 12:18 mod_log_config.so
  12 -rwxr-xr-x 1 root root   10488 Feb 24 12:18 mod_log_forensic.so
  12 -rwxr-xr-x 1 root root   10440 Feb 24 12:18 mod_logio.so
  28 -rwxr-xr-x 1 root root   27216 Feb 24 12:18 mod_mem_cache.so
  28 -rwxr-xr-x 1 root root   27672 Feb 24 12:18 mod_mime_magic.so
  20 -rwxr-xr-x 1 root root   18800 Feb 24 12:18 mod_mime.so
  32 -rwxr-xr-x 1 root root   31384 Feb 24 12:18 mod_negotiation.so
  40 -rwxr-xr-x 1 root root   39632 Feb 24 12:18 mod_proxy_ajp.so
  28 -rwxr-xr-x 1 root root   27160 Feb 24 12:18 mod_proxy_balancer.so
  12 -rwxr-xr-x 1 root root   10456 Feb 24 12:18 mod_proxy_connect.so
  36 -rwxr-xr-x 1 root root   35600 Feb 24 12:18 mod_proxy_ftp.so
  32 -rwxr-xr-x 1 root root   31472 Feb 24 12:18 mod_proxy_http.so
  20 -rwxr-xr-x 1 root root   18896 Feb 24 12:18 mod_proxy_scgi.so
  88 -rwxr-xr-x 1 root root   85296 Feb 24 12:18 mod_proxy.so
  16 -rwxr-xr-x 1 root root   14576 Feb 24 12:18 mod_reqtimeout.so
  68 -rwxr-xr-x 1 root root   64560 Feb 24 12:18 mod_rewrite.so
   8 -rwxr-xr-x 1 root root    8144 Jan 23  2013 mod_rpaf-2.0.so
  16 -rwxr-xr-x 1 root root   16176 Aug 17  2013 mod_ruid2.so
 868 -rwxr-xr-x 1 root root  881488 Aug 17  2013 mod_security2.so
  16 -rwxr-xr-x 1 root root   14608 Feb 24 12:18 mod_setenvif.so
  16 -rwxr-xr-x 1 root root   14608 Feb 24 12:18 mod_speling.so
 188 -rwxr-xr-x 1 root root  186096 Feb 24 12:18 mod_ssl.so
  24 -rwxr-xr-x 1 root root   22864 Feb 24 12:18 mod_status.so
  16 -rwxr-xr-x 1 root root   14608 Feb 24 12:18 mod_substitute.so
  12 -rwxr-xr-x 1 root root   10384 Feb 24 12:18 mod_suexec.so
  20 -rwxr-xr-x 1 root root   19768 Nov 18 17:55 mod_suphp.so
  12 -rwxr-xr-x 1 root root   10416 Feb 24 12:18 mod_unique_id.so
  12 -rwxr-xr-x 1 root root   10448 Feb 24 12:18 mod_userdir.so
  16 -rwxr-xr-x 1 root root   14608 Feb 24 12:18 mod_usertrack.so
  12 -rwxr-xr-x 1 root root   10416 Feb 24 12:18 mod_version.so
  12 -rwxr-xr-x 1 root root   10424 Feb 24 12:18 mod_vhost_alias.so


Code: [Select]
[root@arrefahiyah ~]# dir -ls /etc/httpd/conf.d
total 108
4 -rw-r--r-- 1 root root  346 Mar  5 05:24 fastcgi.conf
4 -rw-r--r-- 1 root root 1510 Apr 16  2013 fastcgi.conf.rpmnew
4 -rw-r--r-- 1 root root  346 Mar  5 02:32 fastcgi.conf.rpmsave
4 -rw-r--r-- 1 root root  104 Mar  5 05:24 fcgid.conf
4 -rw-r--r-- 1 root root  455 Oct  8 19:37 fcgid.conf.rpmnew
4 -rw-r--r-- 1 root root  104 Mar  5 02:32 fcgid.conf.rpmsave
4 -rw-r--r-- 1 root root 2005 Mar  6 00:24 ~lxcenter.conf
4 -rw-r--r-- 1 root root 3048 Aug 25  2012 mod_security.conf
4 -rw-r--r-- 1 root root 3705 Mar  5 03:31 mod_security.conf.rpmsave
4 -rw-r--r-- 1 root root  153 Feb 25 17:45 monitorix.conf
4 -rw-r--r-- 1 root root  675 Dec 19 07:58 php.conf
4 -rw-r--r-- 1 root root  104 Mar  5 05:24 php.conf.rpmorig
4 -rw-r--r-- 1 root root  104 Mar  5 02:32 php.conf.rpmsave
4 -rw-r--r-- 1 root root  566 Dec  6  2005 proxy_ajp.conf
4 -rw-r--r-- 1 root root  104 Mar  5 05:24 proxy_fcgi.conf
4 -rw-r--r-- 1 root root  392 Feb 24 12:18 README
4 -rw-r--r-- 1 root root  308 Feb 22 06:00 rpaf.conf
4 -rw-r--r-- 1 root root  104 Mar  5 05:24 ruid2.conf
4 -rw-r--r-- 1 root root  789 Mar  6 00:24 ssl.conf
4 -rw-r--r-- 1 root root  789 Mar  5 05:03 ssl.conf.rpmsave
4 -rw-r--r-- 1 root root  331 Mar  5 05:24 suphp52.conf
4 -rw-r--r-- 1 root root  104 Mar  5 05:24 suphp.conf
4 -rw-r--r-- 1 root root 1683 Nov 18 17:55 suphp.conf.rpmnew
4 -rw-r--r-- 1 root root  104 Mar  5 02:33 suphp.conf.rpmsave
4 -rw-r--r-- 1 root root   87 Mar  6 00:24 __version.conf
4 -rw-r--r-- 1 root root  352 Sep  9  2004 webalizer.conf
4 -rw-r--r-- 1 root root  299 Sep  9  2004 welcome.conf
Free, Fast and Secure CP => Kloxo-MR
Daily News Update => Click here to see website!

Offline MRatWork

  • Administrator
  • The Elite
  • *****
  • Posts: 15,381
  • Karma: +112/-9
  • Gender: Male
    • View Profile
    • MRatWork Forum
Re: error saat pasang mod_security pada kloxo-mr
« Reply #3 on: 2014-03-06, 05:49:01 »
Module sudah ada (mod_security2.so) dan begitu juga confignya (mod_security.conf).
..:: MRatWork (Mustafa Ramadhan Projects) ::..
-- Server/Web-integrator - Web Hosting (Kloxo-MR READY!) --

Offline MRatWork

  • Administrator
  • The Elite
  • *****
  • Posts: 15,381
  • Karma: +112/-9
  • Gender: Male
    • View Profile
    • MRatWork Forum
Re: error saat pasang mod_security pada kloxo-mr
« Reply #4 on: 2014-03-06, 05:52:34 »
Jika pakai nginx-proxy atau hiawatha-proxy, mod_security tidak diperlukan lagi karena nginx dan hiawatha punya mekanisme 'ban' yang lebih baik. Jangan-jangan malah jika dipasang di -proxy malah mengganggu.
..:: MRatWork (Mustafa Ramadhan Projects) ::..
-- Server/Web-integrator - Web Hosting (Kloxo-MR READY!) --

Offline amudy17

  • Senior Member
  • *
  • Posts: 246
  • Karma: +0/-1
    • View Profile
    • Alamudy
Re: error saat pasang mod_security pada kloxo-mr
« Reply #5 on: 2014-03-06, 09:04:45 »
baiklah... saya sudah remove 'mod_sequrity' karena jika saya uninstall dan 'sh /script/cleanup; sh /script/restart-all' semua kembali normal
Free, Fast and Secure CP => Kloxo-MR
Daily News Update => Click here to see website!

Offline MRatWork

  • Administrator
  • The Elite
  • *****
  • Posts: 15,381
  • Karma: +112/-9
  • Gender: Male
    • View Profile
    • MRatWork Forum
Re: error saat pasang mod_security pada kloxo-mr
« Reply #6 on: 2014-03-06, 09:08:02 »
Ingat, komunikasi nginx dengan apache pada nginx-proxy melalui IP 127.0.0.1. Nah jika anda pasang mod_security di apache maka port 127.0.0.1 akan kena 'ban' oleh mod_security karena terlalu banyak koneksi.

Itulah sebab jika anda restart kembali normal karena list 'ban' di-clear.
..:: MRatWork (Mustafa Ramadhan Projects) ::..
-- Server/Web-integrator - Web Hosting (Kloxo-MR READY!) --

Offline amudy17

  • Senior Member
  • *
  • Posts: 246
  • Karma: +0/-1
    • View Profile
    • Alamudy
Re: error saat pasang mod_security pada kloxo-mr
« Reply #7 on: 2014-03-07, 10:11:32 »
baiklah berarti ini penemuan kalau kloxo-mr tidak cocok dengan mod_security
Free, Fast and Secure CP => Kloxo-MR
Daily News Update => Click here to see website!

Offline MRatWork

  • Administrator
  • The Elite
  • *****
  • Posts: 15,381
  • Karma: +112/-9
  • Gender: Male
    • View Profile
    • MRatWork Forum
Re: error saat pasang mod_security pada kloxo-mr
« Reply #8 on: 2014-03-07, 11:13:52 »
Bukan tidak cocok tapi adalah salah kalau mod_security dipasang di -proxy (nginx-proxy atau yang lain).

Juga, mekanisme 'ban' di nginx dan hiawatha lebih baik daripada mod_security.
..:: MRatWork (Mustafa Ramadhan Projects) ::..
-- Server/Web-integrator - Web Hosting (Kloxo-MR READY!) --

Offline amudy17

  • Senior Member
  • *
  • Posts: 246
  • Karma: +0/-1
    • View Profile
    • Alamudy
Re: error saat pasang mod_security pada kloxo-mr
« Reply #9 on: 2014-03-08, 15:40:22 »
nice info pak, saya sudah remove dan beralih menggunakan csf & lfd, hasilnya lumayan kalau ada yang serang server pasti ada notifikasi email
Free, Fast and Secure CP => Kloxo-MR
Daily News Update => Click here to see website!

Offline MRatWork

  • Administrator
  • The Elite
  • *****
  • Posts: 15,381
  • Karma: +112/-9
  • Gender: Male
    • View Profile
    • MRatWork Forum
Re: error saat pasang mod_security pada kloxo-mr
« Reply #10 on: 2014-03-08, 15:49:23 »
Server untuk forum ini malah firewallnya dimatikan. Cukup pakai lxguard (bawaan sendiri) dan mekanisme 'ban' di nginx/hiawatha sendiri.
..:: MRatWork (Mustafa Ramadhan Projects) ::..
-- Server/Web-integrator - Web Hosting (Kloxo-MR READY!) --

 


Top 4 Global Search Engines:    Google    Bing    Baidu    Yahoo

Page created in 0.039 seconds with 17 queries.

web stats analysis
 
Mirror created by MasterkinG32.CoM