-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 28/12/2019 21.03, Knurpht-openSUSE wrote:
Op zaterdag 28 december 2019 20:54:09 CET schreef Carlos E. R.:
Current configuration:
/etc/apache2/vhosts.d/dyn.dns.conf:
<VirtualHost 192.168.1.1:50000> ServerAdmin webmaster@localhost ServerName dyn.dns
DocumentRoot /data/waterhoard/vhosts/dyn.dns/htdocs
ErrorLog /var/log/apache2/dyn.dns-error_log CustomLog /var/log/apache2/dyn.dns-access_log combined
HostnameLookups Off
UseCanonicalName Off
ServerSignature On
ScriptAlias /cgi-bin/ "/data/waterhoard/vhosts/dyn.dns/cgi-bin"
<Directory "/data/waterhoard/vhosts/dyn.dns/cgi-bin"> AllowOverride None Options +ExecCGI -Includes <IfModule !mod_access_compat.c> Require all granted </IfModule> <IfModule mod_access_compat.c> Order allow,deny Allow from all </IfModule> </Directory>
<Directory "/data/waterhoard/vhosts/dyn.dns/htdocs">
Options Indexes FollowSymLinks
AllowOverride None
# # Controls who can get stuff from this server. # <IfModule !mod_access_compat.c> Require all granted </IfModule> <IfModule mod_access_compat.c> Order allow,deny Allow from all </IfModule>
</Directory>
</VirtualHost>
Carlos, all the (sub)domains from my config run on 80/443. Their webroot is different though. Do you already have 80/443 forwarded to some host in your local network? They don't have to use their own ports. Why follow a *buntu instruction where it has a different apache setup?
I'm not following the Ubuntu instructions, I just read it for ideas :-) Rather, I followed the openSUSE wiki and the example config files in openSUSE apache install. <https://en.opensuse.org/SDB:Apache_installation#Virtual_Hosts> Also, notice that there is a router doing NAT. I can not configure it to handle port 80, apparently forbidden. So: http:dyn.dns:50000 --> router --> 192.168.16:50000 I can tell it to forward instead to port 80 inside, of course. What I have tried is the port based system. What is the difference in the apache configuration of port based or name based is not clear in the openSUSE wiki. Port based allows me to block/open the firewall easily to external traffic. If name based breaks, outside may get access to the default internal "view". When I browse to this server using my android phone inside the house, I can not use the server name, as the phone does not use the LAN DNS, but the outside DNS server via the router. So the apache will not see the name in the http request and will fail. As you can see, apparmour is blocking the attempt. Even if I stop it, I still get an apparmour error: [Sat Dec 28 21:34:12.215330 2019] [apparmor:warn] [pid 28047] (1)Operation not permitted: [client 192.168.1.1:43442] aa_change_hatv call failed [Sat Dec 28 21:34:12.216066 2019] [apparmor:error] [pid 28047] (1)Operation not permitted: [client 192.168.1.1:43442] Failed to change_hat to 'HANDLING_UNTRUSTED_INPUT' [Sat Dec 28 21:34:12.222859 2019] [apparmor:warn] [pid 28045] (1)Operation not permitted: [client 192.168.1.1:43444] aa_change_hatv call failed [Sat Dec 28 21:34:12.223417 2019] [apparmor:error] [pid 28045] (1)Operation not permitted: [client 192.168.1.1:43444] Failed to change_hat to 'HANDLING_UNTRUSTED_INPUT' [Sat Dec 28 21:34:12.225441 2019] [apparmor:warn] [pid 28043] (1)Operation not permitted: [client 192.168.1.1:43446] aa_change_hatv call failed [Sat Dec 28 21:34:12.225792 2019] [apparmor:error] [pid 28043] (1)Operation not permitted: [client 192.168.1.1:43446] Failed to change_hat to 'HANDLING_UNTRUSTED_INPUT' Now, what does that mean, what is wrong? I can possibly redo as name based instead of port based, but will that not hit the same problem? And it will break the phone and tablets access - they access <http:192.168.1.16/directory> - -- Cheers / Saludos, Carlos E. R. (from 15.1 x86_64 at Telcontar) -----BEGIN PGP SIGNATURE----- iF0EARECAB0WIQQZEb51mJKK1KpcU/W1MxgcbY1H1QUCXgfBMgAKCRC1MxgcbY1H 1bONAKCHl3Sjm/LKyaZy/iGn2zst18acyQCfe5hC5NRF3ltVkPLh+dc/JPKUbd8= =AJ5Y -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org