Ubuntu 11.10, ISPConfig 3.0.4.1 needs some nginx.conf tweaks after following guide.

[talkingnews]

The guide at http://www.howtoforge.com/perfect-se...nx-ispconfig-3 is excellent and clear, as they always are.

When I came to running the site, it said "Access forbidden".

After a lot of trial, error and Reading TFM, I found that I had to alter the file

Code:

/etc/nginx/nginx.conf

At the top, I had to change

Code:

user nginx;

to

Code:

user  ispconfig;

and at the bottom of the file, I had to add the line

Code:

include /etc/nginx/sites-available/*.vhost;

just before the closing bracket. Save, then

Code:

Service nginx restart

and I'm in! Hope this helps others.

Incidentally, during the install I only saw one error:

Code:

Configuring Apps vhost
PHP Warning:  symlink(): No such file or directory in /tmp/ispconfig3_install/install/lib/installer_base.lib.php on line 1519
Configuring Bastille Firewall

Finally, As it'll only be me using the ispconfig to manage sites I run with no other users and as I'm not going to be using any functions like sendmail, smtp, squirrelmail, pop, imap, courier etc... what can I safely turn off? I've only got a 256Mb RAM VPS and all this clam, amavisd etc is using memory.

Thanks for a great tutorial!

[till]

The nginx user may never be the user "ispconfig" or you open a huge securiy hole as the user ispconfig is for the controlpabel only and is never used to host any websites or to run the webserver. The tutorial is complete, so no additional changes are required. If it did not work for you, then you might have missed a step, but changing the nginx user to ispconfig is not required and its very dangerous.

You should check each step again and undo the change of the nginx user.

Regarding the other services, ispconfig is completely modular, you have only to install and run the services that you require.

[talkingnews]

Quote:

Originally Posted by till

The nginx user may never be the user "ispconfig" or you open a huge securiy hole as the user ispconfig is for the controlpabel only and is never used to host any websites or to run the webserver. The tutorial is complete, so no additional changes are required. If it did not work for you, then you might have missed a step, but changing the nginx user to ispconfig is not required and its very dangerous.
You should check each step again and undo the change of the nginx user.

OK, I've undone the change, and as expected, I got 403 forbidden.

Again, I'm looking at this error at the end of installing ISPC and also the fact that I never got asked if I'd like to use ssh.

Code:

Configuring Apps vhost
PHP Warning:  symlink(): No such file or directory in /tmp/ispconfig3_install/install/lib/installer_base.lib.php on line 1519

The permissions for files in the /usr/local/ispconfig/interface/web/ dir are

-rwxr-x--- 1 ispconfig ispconfig 1753 2011-11-26 20:22 index.php

If the file to be served belongs to ispconfig user and group, how could nginx be allowed to see it? This goes counter to everything I thought I'd learnt about nginx over the last few months.

I also can't understand how ISPC could have been "seen" by nginx, when I had to manually add the line

include /etc/nginx/sites-available/*.vhost;

at the end of nginx.conf. How would it be able to see it again?

Here are the relevant users and groups.

Code:

users:
nginx:x:111:116:nginx user,,,:/nonexistent:/bin/false
ispapps:x:5002:5003::/var/www/apps:/bin/sh
ispconfig:x:5003:5004::/usr/local/ispconfig:/bin/sh

groups:
nginx:x:116:
ispapps:x:5003:www-data
ispconfig:x:5004:www-data

Here's the ISPConfig install log followed by my bash history

Code:

20:20:59Line 165: read in ispconfig3.sql
20:20:59Line 621: chmod on mysql-virtual_*.cf*
20:20:59Line 623: chgrp on mysql-virtual_*.cf*
20:20:59Line 627: EXECUTED: groupadd -g 5000 vmail
20:20:59Line 630: EXECUTED: useradd -g vmail -u 5000 vmail -d /var/vmail -m
20:21:00Line 689: EXECUTED: postconf -e myhostname = example..com
20:21:00Line 689: EXECUTED: postconf -e mydestination = example..com, localhost, localhost.localdomain
20:21:00Line 689: EXECUTED: postconf -e mynetworks = 127.0.0.0/8 [::1]/128
20:21:00Line 689: EXECUTED: postconf -e alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
20:21:00Line 689: EXECUTED: postconf -e alias_database = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
20:21:00Line 689: EXECUTED: postconf -e virtual_alias_domains =
20:21:00Line 689: EXECUTED: postconf -e virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, proxy:mysql:/etc/postfix/mysql-virtual_email2email.cf, hash:/var/lib/mailman/data/virtual-mailman
20:21:00Line 689: EXECUTED: postconf -e virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf
20:21:00Line 689: EXECUTED: postconf -e virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
20:21:00Line 689: EXECUTED: postconf -e virtual_mailbox_base = /var/vmail
20:21:00Line 689: EXECUTED: postconf -e virtual_uid_maps = static:5000
20:21:00Line 689: EXECUTED: postconf -e virtual_gid_maps = static:5000
20:21:00Line 689: EXECUTED: postconf -e smtpd_sasl_auth_enable = yes
20:21:00Line 689: EXECUTED: postconf -e broken_sasl_auth_clients = yes
20:21:00Line 689: EXECUTED: postconf -e smtpd_sasl_authenticated_header = yes
20:21:00Line 689: EXECUTED: postconf -e smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, reject_unauth_destination
20:21:00Line 689: EXECUTED: postconf -e smtpd_use_tls = yes
20:21:00Line 689: EXECUTED: postconf -e smtpd_tls_security_level = may
20:21:00Line 689: EXECUTED: postconf -e smtpd_tls_cert_file = /etc/postfix/smtpd.cert
20:21:00Line 689: EXECUTED: postconf -e smtpd_tls_key_file = /etc/postfix/smtpd.key
20:21:00Line 689: EXECUTED: postconf -e transport_maps = proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
20:21:00Line 689: EXECUTED: postconf -e relay_domains = mysql:/etc/postfix/mysql-virtual_relaydomains.cf
20:21:00Line 689: EXECUTED: postconf -e relay_recipient_maps = mysql:/etc/postfix/mysql-virtual_relayrecipientmaps.cf
20:21:00Line 689: EXECUTED: postconf -e proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps
20:21:00Line 689: EXECUTED: postconf -e smtpd_sender_restrictions = check_sender_access mysql:/etc/postfix/mysql-virtual_sender.cf
20:21:00Line 689: EXECUTED: postconf -e smtpd_client_restrictions = check_client_access mysql:/etc/postfix/mysql-virtual_client.cf
20:21:00Line 689: EXECUTED: postconf -e smtpd_client_message_rate_limit = 100
20:21:00Line 689: EXECUTED: postconf -e maildrop_destination_concurrency_limit = 1
20:21:00Line 689: EXECUTED: postconf -e maildrop_destination_recipient_limit   = 1
20:21:00Line 689: EXECUTED: postconf -e virtual_transport = maildrop
20:21:00Line 689: EXECUTED: postconf -e header_checks = regexp:/etc/postfix/header_checks
20:21:00Line 689: EXECUTED: postconf -e mime_header_checks = regexp:/etc/postfix/mime_header_checks
20:21:00Line 689: EXECUTED: postconf -e nested_header_checks = regexp:/etc/postfix/nested_header_checks
20:21:00Line 689: EXECUTED: postconf -e body_checks = regexp:/etc/postfix/body_checks
20:21:00Line 689: EXECUTED: postconf -e owner_request_special = no
20:21:20Line 699: EXECUTED: chmod o= /etc/postfix/smtpd.key
20:21:20Line 732: EXECUTED: mkdir /var/vmail/mailfilters
20:21:20Line 737: EXECUTED: chown vmail:vmail /var/vmail/.mailfilter
20:21:20Line 740: EXECUTED: chmod 600 /var/vmail/.mailfilter
20:21:20Line 943: EXECUTED: postconf -e content_filter = amavis:[127.0.0.1]:10024
20:21:20Line 943: EXECUTED: postconf -e receive_override_options = no_address_mappings
20:21:20Line 984: EXECUTED: useradd -d /etc/getmail getmail
20:21:20Line 987: EXECUTED: chown -R getmail /etc/getmail
20:21:20Line 990: EXECUTED: chmod -R 700 /etc/getmail
20:21:20Line 1230: EXECUTED: groupadd sshusers
20:21:20Line 1457: EXECUTED: groupadd ispapps
20:21:20Line 1460: EXECUTED: useradd -g ispapps -d /var/www/apps ispapps
20:21:20Line 1464: EXECUTED: adduser www-data ispapps
20:21:20Line 1307: cp -f tpl/bastille-firewall.cfg.master /etc/Bastille/bastille-firewall.cfg
20:21:20Line 1308: chmod 644 /etc/Bastille/bastille-firewall.cfg
20:21:20Line 1336: cp -f apps/bastille-firewall /etc/init.d
20:21:20Line 1337: chmod 700 /etc/init.d/bastille-firewall
20:21:21Line 1340: cp -f apps/bastille-ipchains /sbin
20:21:21Line 1341: chmod 700 /sbin/bastille-ipchains
20:21:21Line 1344: cp -f apps/bastille-netfilter /sbin
20:21:21Line 1345: chmod 700 /sbin/bastille-netfilter
20:21:21Line 1347: mkdir /var/lock/subsys
20:22:42Line 1559: EXECUTED: groupadd ispconfig
20:22:42Line 1562: EXECUTED: useradd -g ispconfig -d /usr/local/ispconfig ispconfig
20:22:43Line 1566: EXECUTED: cp -rf ../interface /usr/local/ispconfig
20:22:43Line 1570: EXECUTED: cp -rf ../server /usr/local/ispconfig
20:22:44Line 1708: EXECUTED: chmod -R 750 /usr/local/ispconfig
20:22:44Line 1712: EXECUTED: chown -R ispconfig:ispconfig /usr/local/ispconfig
20:22:44Line 1770: EXECUTED: adduser www-data ispconfig
20:22:44Line 1773: EXECUTED: adduser www-data ispapps
20:22:44Line 1779: EXECUTED: chmod +x /usr/local/ispconfig/server/scripts/create_daily_nginx_access_logs.sh /usr/local/ispconfig/server/scripts/create_jailkit_chroot.sh /usr/local/ispconfig/server/scripts/create_jailkit_programs.sh /usr/local/ispconfig/server/scripts/create_jailkit_user.sh /usr/local/ispconfig/server/scripts/ispconfig_update.sh /usr/local/ispconfig/server/scripts/run-getmail.sh /usr/local/ispconfig/server/scripts/update_from_svn.sh /usr/local/ispconfig/server/scripts/update_from_tgz.sh

And here's my bash history - it took me a while but I've gone through with the "perfect server" guide and all seems OK.

Code:

vi /etc/network/interfaces
dpkg-reconfigure dash
/etc/init.d/apparmor stop
update-rc.d -f apparmor remove
apt-get remove apparmor apparmor-utils
apt-get update
apt-get install ntp ntpdate
/etc/init.d/apparmor stop
update-rc.d -f apparmor remove
apt-get remove apparmor apparmor-utils
apt-get install postfix postfix-mysql postfix-doc mysql-client mysql-server courier-authdaemon courier-authlib-mysql courier-pop courier-pop-ssl courier-imap courier-imap-ssl libsasl2-2 libsasl2-modules libsasl2-modules-sql sasl2-bin libpam-mysql openssl getmail4 rkhunter binutils maildrop
vi /etc/mysql/my.cnf
nano /etc/mysql/my.cnf
/etc/init.d/mysql restart
netstat -tap | grep mysql
cd /etc/courier
rm -f /etc/courier/imapd.pem
rm -f /etc/courier/pop3d.pem
nano /etc/courier/imapd.cnf
nano /etc/courier/pop3d.cnf
mkimapdcert
mkpop3dcert
/etc/init.d/courier-imap-ssl restart
/etc/init.d/courier-pop-ssl restart
apt-get install amavisd-new spamassassin clamav clamav-daemon zoo unzip bzip2 arj nomarch lzop cabextract apt-listchanges libnet-ldap-perl libauthen-sasl-perl clamav-docs daemon libio-string-perl libio-socket-ssl-perl libnet-ident-perl zip libnet-dns-perl
/etc/init.d/spamassassin stop
update-rc.d -f spamassassin remove
apt-get install nginx
/etc/init.d/apache2 stop
/etc/init.d/nginx start
apt-get install php5-fpm
apt-cache search php5
apt-get install php5-mysql php5-curl php5-gd php5-intl php-pear php5-imagick php5-imap php5-mcrypt php5-memcache php5-ming php5-ps php5-pspell php5-recode php5-snmp php5-sqlite php5-tidy php5-xmlrpc php5-xsl php5-geoip  php-apc
/etc/init.d/php5-fpm restart
apt-get install fcgiwrap
apt-get install pure-ftpd-common pure-ftpd-mysql quota quotatool
/etc/default/pure-ftpd-common
nano /etc/default/pure-ftpd-common
echo 1 > /etc/pure-ftpd/conf/TLS
mkdir -p /etc/ssl/private/
openssl req -x509 -nodes -days 7300 -newkey rsa:2048 -keyout /etc/ssl/private/pure-ftpd.pem -out /etc/ssl/private/pure-ftpd.pem
chmod 600 /etc/ssl/private/pure-ftpd.pem
/etc/init.d/pure-ftpd-mysql restart
nano /etc/fstab
apt-get install bind9 dnsutils
apt-get install vlogger webalizer awstats geoip-database
nano /etc/cron.d/awstats
apt-get install build-essential autoconf automake1.9 libtool flex bison debhelper binutils-gold
cd /tmp
wget http://olivier.sessink.nl/jailkit/jailkit-2.14.tar.gz
tar xvfz jailkit-2.14.tar.gz
cd jailkit-2.14
./debian/rules binary
cd ..
dpkg -i jailkit_2.14-1_*.deb
rm -rf jailkit-2.14*
apt-get install fail2ban
vi /etc/fail2ban/jail.local
nano /etc/fail2ban/jail.local
nano /etc/fail2ban/filter.d/pureftpd.conf
nano /etc/fail2ban/filter.d/courierpop3.conf
nano /etc/fail2ban/filter.d/courierpop3s.conf
nano /etc/fail2ban/filter.d/courierimap.conf
nano /etc/fail2ban/filter.d/courierimaps.conf
nano /etc/fail2ban/filter.d/courierimaps.conf
/etc/init.d/fail2ban restart
apt-get install squirrelmail
/etc/init.d/apache2 stop
/etc/init.d/nginx restart
cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3-stable.tar.gz
tar xfz ISPConfig-3-stable.tar.gz
cd ispconfig3_install/install/
php -q install.php
ps -ef
nano /etc/nginx/sites-available/ispconfig.vhost
service nginx restart
cat /var/log/nginx/error.log
cat /var/log/ispconfig/ispconfig.log
nano /etc/nginx/sites-available/ispconfig.vhost
/etc/init.d/php5-fpm restart
nano /etc/nginx/sites-available/ispconfig.vhost
nano /etc/nginx/sites-available/ispconfig.vhost
htop
free -m
/etc/init.d/php5-fpm restart
service nginx restart
reboot now

[till]

It might be that apache is installed on your server, so that your system is configured for apache and not nginx. Please post the output of:

which apache2
which apache
which httpd

[talkingnews]

Quote:

Originally Posted by till

It might be that apache is installed on your server, so that your system is configured for apache and not nginx. Please post the output of:

which apache2
which apache
which httpd

Oh no, definitely no apache! I started with a blank vps, and didn't even install squirrelmail or phpmyadmin because they wanted to install apache.

But here's the output anyway:

root@vmxxx:~# which apache2
root@vmxxx:~# which apache
root@vmxxx:~# which httpd

Nothing, nada, zilch!

[till]

Pleawe uninstall ispconfig with the uninstall script that is located in the same folder then install.php. Then install ispconfig again with the install.php script and check if ispconfig reports that nginx is configured or that apache is configured.

[talkingnews]

Thanks for your quick replies and time.

Quote:

Originally Posted by till

Pleawe uninstall ispconfig with the uninstall script that is located in the same folder then install.php.

Well, php is already installed and running. Attempting to re-install tells me there's nothing to do. As I mentioned, if I just change the nginx user to ispconfig, I can get into the admin, add a site, all working perfectly.

But I uninstalled as you asked and then...

Quote:

Originally Posted by till

Then install ispconfig again with the install.php script and check if ispconfig reports that nginx is configured or that apache is configured.

Again, same as before - it just went ahead and did it with 2 errors which were:

PHP Warning: symlink(): No such file or directory in /tmp/ispconfig3_install/install/lib/installer_base.lib.php on line 1519

which is
symlink($vhost_conf_dir.'/apps.vhost',$vhost_conf_enabled_dir.'/000-apps.vhost');

Also
PHP Warning: symlink(): No such file or directory in /tmp/ispconfig3_install/install/lib/installer_base.lib.php on line 1869

which is
symlink($vhost_conf_dir.'/ispconfig.vhost',$vhost_conf_enabled_dir.'/000-ispconfig.vhost');

And back to the same place as last time - access denied, unless I change the nginx user to match the user/group of the files it's trying to read.

Rather than post the log this time, I'll paste in the terminal output:

Code:

root@vmxxxxx:/tmp/ispconfig3_install/install# php -q install.php
PHP Deprecated:  Comments starting with '#' are deprecated in /etc/php5/cli/conf.d/ming.ini on line 1 in Unknown on line 0


--------------------------------------------------------------------------------
 _____ ___________   _____              __ _         ____
|_   _/  ___| ___ \ /  __ \            / _(_)       /__  \
  | | \ `--.| |_/ / | /  \/ ___  _ __ | |_ _  __ _    _/ /
  | |  `--. \  __/  | |    / _ \| '_ \|  _| |/ _` |  |_ |
 _| |_/\__/ / |     | \__/\ (_) | | | | | | | (_| | ___\ \
 \___/\____/\_|      \____/\___/|_| |_|_| |_|\__, | \____/
                                              __/ |
                                             |___/
--------------------------------------------------------------------------------


>> Initial configuration

Operating System: Debian or compatible, unknown version.

    Following will be a few questions for primary configuration so be careful.
    Default values are in [brackets] and can be accepted with <ENTER>.
    Tap in "quit" (without the quotes) to stop the installer.


Select language (en,de) [en]:

Installation mode (standard,expert) [standard]:

Full qualified hostname (FQDN) of the server, eg server1.domain.tld  [vmxxxxx.vps.xxxxx.com]:

MySQL server hostname [localhost]:

MySQL root username [root]:

MySQL root password []: xxxxx

MySQL database to create [dbispconfig]:

MySQL charset [utf8]:

Generating a 2048 bit RSA private key
..+++
.............................................................................................................................................+++
writing new private key to 'smtpd.key'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:
State or Province Name (full name) [Some-State]:
Locality Name (eg, city) []:
Organization Name (eg, company) [Internet Widgits Pty Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) []:
Email Address []:
Configuring Jailkit
Configuring SASL
Configuring PAM
Configuring Courier
Configuring Spamassassin
Configuring Amavisd
Configuring Getmail
Configuring Pureftpd
Configuring BIND
Configuring nginx
Configuring Vlogger
Configuring Apps vhost
PHP Warning:  symlink(): No such file or directory in /tmp/ispconfig3_install/install/lib/installer_base.lib.php on line 1519
Configuring Bastille Firewall
Configuring Fail2ban
Installing ISPConfig
ISPConfig Port [8080]:

Do you want a secure (SSL) connection to the ISPConfig web interface (y,n) [y]: y

Generating RSA private key, 4096 bit long modulus
.............................................++
...................................++
e is 65537 (0x10001)
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:
State or Province Name (full name) [Some-State]:
Locality Name (eg, city) []:
Organization Name (eg, company) [Internet Widgits Pty Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) []:
Email Address []:

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
writing RSA key
PHP Warning:  symlink(): No such file or directory in /tmp/ispconfig3_install/install/lib/installer_base.lib.php on line 1869
Configuring DBServer
Installing ISPConfig crontab
Restarting services ...
 * Stopping MySQL database server mysqld
   ...done.
 * Starting MySQL database server mysqld
   ...done.
 * Checking for tables which need an upgrade, are corrupt or were
not closed cleanly.
 * Stopping Postfix Mail Transport Agent postfix
   ...done.
 * Starting Postfix Mail Transport Agent postfix
   ...done.
 * Stopping SASL Authentication Daemon saslauthd
   ...done.
 * Starting SASL Authentication Daemon saslauthd
   ...done.
Stopping amavisd: (not running).
Starting amavisd: changed ownership of `/var/run/amavis' to amavis:amavis
amavisd-new.
 * Stopping ClamAV daemon clamd
   ...done.
 * Starting ClamAV daemon clamd
   ...done.
 * Stopping Courier authentication services authdaemond
/var/run/courier/authdaemon/pid.lock: No such file or directory
 * Stopping Courier IMAP server imapd
   ...done.
 * Starting Courier IMAP server imapd
   ...done.
 * Stopping Courier IMAP-SSL server imapd-ssl
   ...done.
 * Starting Courier IMAP-SSL server imapd-ssl
   ...done.
 * Stopping Courier POP3 server...
   ...done.
 * Starting Courier POP3 server...
   ...done.
 * Stopping Courier POP3-SSL server...
   ...done.
 * Starting Courier POP3-SSL server...
   ...done.
 * Reloading PHP5 FastCGI Process Manager php5-fpm
   ...done.
 * Reloading nginx nginx
   ...done.
Restarting ftp server: Running: /usr/sbin/pure-ftpd-mysql-virtualchroot -l mysql:/etc/pure-ftpd/db/mysql.conf -l pam -D -A -H -u 1000 -O clf:/var/l                                 og/pure-ftpd/transfer.log -b -8 UTF-8 -Y 1 -E -B
Installation completed.
root@vmxxxxx:/tmp/ispconfig3_install/install# nano /tmp/ispconfig3_install/install/lib/installer_base.lib.php

EDITED TO ADD:

Here's the last few lines of a site error, for example:

2011/11/27 20:41:44 [error] 4933#0: *25 open() "/var/www/xxx/web/error/403.html" failed (13: Permission denied), client: 91.x, server: xxx.co.uk, request: "GET /favicon.ico HTTP/1.1", host: "www.xxx.co.uk"

And in nginx's log is pretty much the same. Nothing related in php5-fpm log.

And here's what php5-fpm is doing

Code:

root      5289     1  3 20:45 ?        00:00:00 php-fpm: master process (/etc/php5/fpm/php-fpm.conf)
www-data  5290  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5291  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5292  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5295  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5296  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5297  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5298  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5299  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5300  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5301  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5302  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5303  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5304  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5305  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5306  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5307  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5308  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5309  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5310  5289  0 20:45 ?        00:00:00 php-fpm: pool www
www-data  5311  5289  0 20:45 ?        00:00:00 php-fpm: pool www
web1      5312  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5313  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5314  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5315  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5316  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5317  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5318  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5319  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5320  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5321  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5322  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5323  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5324  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5325  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5326  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5327  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5328  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5329  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5330  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
web1      5331  5289  0 20:45 ?        00:00:00 php-fpm: pool web1
ispapps   5332  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5333  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5334  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5335  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5336  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5337  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5338  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5339  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5340  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5341  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5342  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5343  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5344  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5345  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5346  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5347  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5348  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5349  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5350  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
ispapps   5351  5289  0 20:45 ?        00:00:00 php-fpm: pool apps
5003      5352  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5353  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5354  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5355  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5356  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5357  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5358  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5359  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5360  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5361  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5362  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5363  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5364  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5365  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5366  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5367  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5368  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5369  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5370  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig
5003      5371  5289  0 20:45 ?        00:00:00 php-fpm: pool ispconfig

[till]

Which nginx package do you have installed? ISPConfig requires the one from the ubuntu repositories as described in the perfect setup guide. If you use a different repo on your server like a repo from nginx.org, then the setup will not work. Please post your /etc/apt/sources.list file.

[talkingnews]

I'm using the current, stable version of nginx - 1.0.10.

Unfortunately, as I posted in this thread, the version that the standard repo wants to install is horribly old - something like 1.0.3 from way back in May IIRC.

Same went for php, so I had to add

Code:

deb http://nginx.org/packages/ubuntu/ lucid nginx
deb-src http://nginx.org/packages/ubuntu/ lucid nginx

deb http://packages.dotdeb.org stable all
deb-src http://packages.dotdeb.org stable all

Then I could get the current stable versions of php-fpm and nginx.

I couldn't see anything about having to use old versions of Nginx - all the instructions said was that:

Quote:

"If you want to use nginx instead of Apache with ISPConfig, please note that your nginx version must be at least 0.8.21, and you must install PHP-FPM as well. For CGI/Perl support, you must use fcgiwrap. This is all covered by this tutorial".

Now, of course, a lot of work went into ISPC and I'm very grateful, but mention in the docs of not being able to use the current stable release of nginx might have saved some time for us both

So, bearing in mind the application I'm writing REQUIRES features of the current stable version*, is there any way we can get round this now?

I'm happy to head over to the Nginx forums and ask there - but what should I be asking? Where do you think the problem is coming in? Should I file this as a bug in the ISPC bug tracker?

*(In case anyone is wondering: I need the http_mp4_module introduced in 1.0.7, more importantly the bugfix for it in 1.0.10, and "decrease of memory consumption if SSL is used" from 1.0.9).

[till]

Quote:

Now, of course, a lot of work went into ISPC and I'm very grateful, but mention in the docs of not being able to use the current stable release of nginx might have saved some time for us both

If you would have mentioned that you did not follow the guide would have saved us a lot of time indeed.

Supported in ISPConfig is what you find in the perfect setuo guide. Everything that you do not find in the guide is NOT supported. Using nginx from the nginx.org repo is not mentioned there, so its not supported.

Ubuntu has a include to the sites-enabled directory in its default confi and it runs under user and group www-data. There might be more differences as you get errors with the apps vhost as well.