Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

chmod problems with Apache


gray_bale

Recommended Posts

I've just installed oscommerce, and finally doing the security bit of chmod different files/dirs etc.

 

But in trying to change any of them, I keep getting an error message from SmartFTP.

 

typically as follows

 

CHMOD 777 images

504 Command not implemented for that parameter

 

I am running Apache and XP

 

Any ideas plz

Link to comment
Share on other sites

Try using WS FTP Home (30 day trial version) or FileZilla (free). SmartFTP is not that 'smart' actually - lots of people have had problems with it. If it doesn't work with WS FTP Home or FileZilla then post back here.

 

Vger

Link to comment
Share on other sites

WS FTP Home seems to have done the trick.

 

Thanks - If only everything was that simple.

 

Any ideas how to set up .htaccess

 

I know it says httpd.conf has to be modified, But why?? as what has this got to do with .htaccess

 

# This is used with Apache WebServers

#

# For this to work, you must include the parameter 'Options' to

# the AllowOverride configuration

#

# Example:

#

# <Directory "/usr/local/apache/htdocs">

# AllowOverride Options

# </Directory>

#

# 'All' with also work. (This configuration is in the

# apache/conf/httpd.conf file)

 

Thanks in advance

Link to comment
Share on other sites

Set up .htaccess for what? If you are talking about password protection of the admin folder you can usually do that from your web hosting control panel.

 

httpd.conf controls what you can use .htaccess for. For instance if mod_rewrite is not enabled in httpd.conf and the correct parameters also allowed then you can't use Chemo's Ultimate SEO URL's to rewrite standard osCommerce URL's

 

Vger

Link to comment
Share on other sites

Why do you say Set up .htaccess for what?, as the Post-Installation part of osCommerce Knowledge Base states.

 

The store admin directory on your server needs to be password protected using .htaccess. Most of the time the server you are hosting your store on has the ability to password protect directories through the server administration area so check with your host.

 

Unfortuneatly is does not tell you how too do it. I do not have a control panel on my server that would enable me to set up password protection.

 

Also I do not have any ref to enabling/disabling mod_rewrite in httpd.conf

Link to comment
Share on other sites

As an addition to my previous post.

 

Using the following code from httpd.conf

 

<Directory "C:/www/webroot/catalog/admin">

Options None

AllowOverride None

Order deny,allow

Deny from all

Allow from 127.0.0.1

</Directory>

 

I can get into the admin directory and display its control panel, as its located at

http://localhost/catalog/admin/index.php

 

But in selecting any of its links, they all come up with error 'Forbidden - You don't have permission to access /catalog/admin/configuration.php on this server.'

 

This is because all the links are http://www.mywebsite etc etc

 

Any help plz

Link to comment
Share on other sites

Why do you say Set up .htaccess for what?, as the Post-Installation part of osCommerce Knowledge Base states.

 

The store admin directory on your server needs to be password protected using .htaccess. Most of the time the server you are hosting your store on has the ability to password protect directories through the server administration area so check with your host.

 

Unfortuneatly is does not tell you how too do it. I do not have a control panel on my server that would enable me to set up password protection.

 

Also I do not have any ref to enabling/disabling mod_rewrite in httpd.conf

 

I had the same problem with my server e.g. no control panel so I E-mailed my server and asked them to password protect the admin directory which they did with no problems.

Link to comment
Share on other sites

All they would do, which is all the OP needs to do, is set up user permissions in a .htaccess file placed in your admin directory and then save the username:password into a .htpasswd file, outside of the root.

 

e.g

 

.htaccess

 

AuthName "Website Area Name"
AuthType Basic
AuthUserFile /full/path/to/saved/.htpasswd
require user john

 

.htpasswd

 

john:password

 

The password would (should) be encrypted by Apache's htpasswd command or you can encrypt it yourself with an online tool. Here is one:

 

http://www.4webhelp.net/us/password.php

Link to comment
Share on other sites

Great idea, but this is a Windows server, and .htaccess doesn't work on Windows servers.

 

The original poster could have licenced a control panel for their server - it just costs extra money that's all - but worth it for day to day administration.

 

Vger

All they would do, which is all the OP needs to do, is set up user permissions in a .htaccess file placed in your admin directory and then save the username:password into a .htpasswd file, outside of the root.

 

e.g

 

.htaccess

 

AuthName "Website Area Name"
AuthType Basic
AuthUserFile /full/path/to/saved/.htpasswd
require user john

 

.htpasswd

 

john:password

 

The password would (should) be encrypted by Apache's htpasswd command or you can encrypt it yourself with an online tool. Here is one:

 

http://www.4webhelp.net/us/password.php

Link to comment
Share on other sites

All they would do, which is all the OP needs to do, is set up user permissions in a .htaccess file placed in your admin directory and then save the username:password into a .htpasswd file, outside of the root.

 

e.g

 

.htaccess

 

AuthName "Website Area Name"
AuthType Basic
AuthUserFile /full/path/to/saved/.htpasswd
require user john

 

.htpasswd

 

john:password

 

The password would (should) be encrypted by Apache's htpasswd command or you can encrypt it yourself with an online tool. Here is one:

 

http://www.4webhelp.net/us/password.php

 

Sorry but that does not work. All I keep getting is the password/username dialog box. I enter username and password, but the password/username dialog box just keeps re-asking for the username and password.

 

Any other advice.

Link to comment
Share on other sites

There were 2 other options if that doesn't work for you, click on the other link I provided:

 

http://sniptools.com/tutorials/windows-apa...-authentication

Or do as Vger suggested:

 

I will give that link a good read, so I may be back in a bit.

 

Thanks for that link.

 

Is there a Windows XP / Apache control panel that is open source (ie free) ??

Link to comment
Share on other sites

I can get into the admin directory and display its control panel, as its located at

http://localhost/catalog/admin/index.php

But in selecting any of its links, they all come up with error 'Forbidden - You don't have permission to access /catalog/admin/configuration.php on this server.'

 

This is because all the links are http://www.mywebsite etc etc

Is there a Windows XP / Apache control panel that is open source (ie free) ??

 

What are you talking about here? A local install (Intranet) or an online install (Internet). If it's local then you don't need to password protect your admin panel.

 

And if it's local then your configure.php files should be configured to point to your local install and not to an online domain.

 

Vger

Link to comment
Share on other sites

I know that I am a bit stupid at times.

 

But as its my first venture using Oscommerce and the whims of .htaccess and .htpasswd

 

I had never thought of entering the encrypt'd password, until my 15 year old son said do it.

 

It now works ???

 

In this day and age of security, it seems a bit queer, as you have to enter the encrypt'd password, that any 'keylogger' could intercept. But then again its probably me.

 

:blush:

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...