| Author |
Message |
gom
Regular
Joined: Apr 26, 2007
Posts: 81
|
 Posted:
Fri May 11, 2007 6:01 pm |
 
|
Below is what I received so I can past it into my .htaccess file.
Now from the HowToInstall I should see in the line of AuthUserFile : a USERNAME
[but my user name is not in it] .. I only have the god admin account as of now. Does this look right ? Also when I add new admin will I have to re-due this step every time and past into my .htaccess ?
And another ? what do you all recommend for a free text editor for editing my .htaccess file, etc. I have heard that notpad is not good to use.
Thanks for the time,
GOM
Save this in .htaccess :
# -------------------------------------------
# Start of NukeSentinel(tm) admin.php Auth
# -------------------------------------------
<Files .staccess>
deny from all
</Files>
<Files admin.php>
<Limit GET POST PUT>
require valid-user
</Limit>
AuthName "Restricted by NukeSentinel(tm)"
AuthType Basic
AuthUserFile .staccess
</Files>
# -------------------------------------------
# End of NukeSentinel(tm) admin.php Auth
# ------------------------------------------- |
|
|
|
|
persona_non_grata
Joined:
Posts: 0
|
| Posted:
Sat May 12, 2007 5:02 am |
|
yes,.....
and good editor to work with is textpad. |
|
|
|
|
|
gom
Regular
Joined: Apr 26, 2007
Posts: 81
|
| Posted:
Sat May 12, 2007 7:12 am |
|
Ya. I pick up the EDXOR that Raven posted about...
I am still having problems with the .htaccess & .staccess set up. I have looked all around the forums and have not found a answer to my question as of yet.
I beleive it's all do to the path to the .htaccess & .staccess. When I use any of the below paths,
/htdoc/BSUT/.htaccess
/BSUT/.htaccess
/htdoc/BSUT/.staccess
/BSUT/.staccess
NS give me [ File does not exist or is not correctly CHMODed. ] But the permissions are right. When I use just .htaccess & .staccess for the path, I do not get the warning message, and I proceed with the config. But as you can see from the above post I do not show a username in the [ AuthUserFile .staccess ] it just looks like what you see here. So when I past the info to my .htaccess and go to admin.php I get a page not found message & have to go back to my original .htaccess file to get back in to the site. I do not know what other paths to use as the path to my .htaccess & staccess. is /htdoc/BSUT/.htaccess, etc. but this does not work. I am lost now. I am using the CGIAuth.....
Any help would be nice.
thanks all.
GOM |
|
|
|
|
|
persona_non_grata
Joined:
Posts: 0
|
| Posted:
Sat May 12, 2007 7:15 am |
|
|
|
|
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1472
Location: In front of a screen....HELP! lol
|
| Posted:
Sat May 12, 2007 7:17 am |
|
AuthUserFile .staccess
Is correct, it maybe a typo in the installation, I will look at it later, but that line Just tells apache to look for all the usernames and passwords in the .staccess file. Now mind you that this wont work unless Sentinel is configured in the admin panel and has the .staccess absolute path set. Once this is done, add an admin through Nuke admin and then add an admin through Sentinels Protected Admin option, that will put the admin and admin password(can and should IMO be different from regular admin password). This option will set it so that Sentinel offers one more layer of protection to your admin panel. |
|
|
   
  |
|
gom
Regular
Joined: Apr 26, 2007
Posts: 81
|
| Posted:
Sat May 12, 2007 7:48 am |
|
| persona_non_grata wrote: | | is all in the root ? |
Yes, As my domain name point to BSUT and BSUT is root for site. |
|
|
|
|
|
gom
Regular
Joined: Apr 26, 2007
Posts: 81
|
| Posted:
Sat May 12, 2007 7:54 am |
|
| gregexp wrote: | AuthUserFile .staccess
Is correct, it maybe a typo in the installation, I will look at it later, but that line Just tells apache to look for all the usernames and passwords in the .staccess file. Now mind you that this wont work unless Sentinel is configured in the admin panel and has the .staccess absolute path set. Once this is done, add an admin through Nuke admin and then add an admin through Sentinels Protected Admin option, that will put the admin and admin password(can and should IMO be different from regular admin password). This option will set it so that Sentinel offers one more layer of protection to your admin panel. |
I do have different passwords for RN admin and NS admin passwords. I flowed the HowtoInstall and still not go. FileZilla shows my path to be /htdoc/BSUT/.htaccess and the same for .staccess, but this does not work.
Like I was saying my domain name point to BSUT as root. I do show two keys in the .staccess so when I built the .staccess it worked and put the keys in the file. crazy.... |
|
|
|
|
|
gom
Regular
Joined: Apr 26, 2007
Posts: 81
|
| Posted:
Sat May 12, 2007 8:25 am |
|
up date, sry this is the message I am getting when I try to access admin.php
Internal server error
We’re sorry for the inconvenience, but there has been an internal server error. Please click on the back button to return to the former page. |
|
|
|
|
|
gom
Regular
Joined: Apr 26, 2007
Posts: 81
|
| Posted:
Sat May 12, 2007 8:57 am |
|
Another ?
I called my serves provider and my path is correct.
/.htaccess
/.staccess
or just
.htaccess
.staccess
But they where saying somethin like that the
/admin/index.html is 0 Filesize as I think that it should be ?
Also would I want to make my path to .htaccess to the admin .htaccess in my set up?
/admin/.htaccess ? |
|
|
|
|
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1472
Location: In front of a screen....HELP! lol
|
| Posted:
Sat May 12, 2007 1:35 pm |
|
Actually, your host is not giving you the correct path, you will need the FULL path.
if phpinfo function is available on your server, make a file called info.php
Put this in it:
| Code: |
<?php
echo $_SERVER["SCRIPT_FILENAME"];
?>
|
Upload it to the same directory as your .htaccess, then goto it.
Should be the same as your site root.
You will see a path like : D:/WebServ/wwwroot/htdocs/info.php
Once you see that, copy it off the page you goto, then replace the info.php with .htaccess, put that in for your .htaccess in Sentinel.
Even all that should be done in Sentinel admin, when setting up the location of .htaccess in Sentinel admin, you should see one that says, ussually : PATH/TO/.htaccess, PATH and TO will have the actual path there, should be there.
If Problems persist, I could go in, and set it up manually.
Then upload to same directory as your .htaccess
Then: look fo |
|
|
|
|
|
gom
Regular
Joined: Apr 26, 2007
Posts: 81
|
| Posted:
Sat May 12, 2007 2:13 pm |
|
Gregexp,
YOU DA MAN......
Thank you so much, all as of now is working....
GOM |
|
|
|
|
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1472
Location: In front of a screen....HELP! lol
|
| Posted:
Sat May 12, 2007 2:54 pm |
|
Excellent, Glad to hear it.
 |
|
|
|
|
|
shotokan
Worker
Joined: Aug 27, 2006
Posts: 153
|
| Posted:
Sun May 13, 2007 8:18 pm |
|
I have just finish installing the 2.0.5.8 version for the first time and seems to be fine.
Now i try to upload the .htaccess and once i do that I can't get access to my admin page anymore and all my path is OK. Also on the admim page at this message "You MUST set ALL admin passwords before activating HTTPAuth or CGIAuth! " when i click on the MUST to set the password it always goes back to sentinel admin main page. I think this is my issue to access my site once i upload the .htaccess file isn't it? |
|
|
|
|
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1472
Location: In front of a screen....HELP! lol
|
| Posted:
Mon May 14, 2007 12:41 pm |
|
your issue is more then likely your .staccess not being populated.
deactivate the Http or CGI auth and then setup the admins in Sentinel admin link.
Then activate it, it will ask for username and password of each admin. |
|
|
|
|
|
shotokan
Worker
Joined: Aug 27, 2006
Posts: 153
|
| Posted:
Mon May 14, 2007 1:22 pm |
|
That's is my problem. The "Admin Auth List" option on the Sentinel Adinistrtion panel is disabled. I can see but not click.
I guess there is something missing on my part to activate that link right?
All these option are disbled for me right now:
Admin Auth List
Scan for New Admins
Database Maintenance
|
|
|
|
|
|
FireATST
Involved
Joined: Jun 12, 2004
Posts: 496
Location: Ohio
|
| Posted:
Mon May 14, 2007 2:57 pm |
|
Sounds like you are not logged in as the "God" admin to me.....just a regular admin. I believe those links are only available to the "God" admin if I remember correctly. (That is the very first admin created who installed the site) |
|
|
|
|
|
shotokan
Worker
Joined: Aug 27, 2006
Posts: 153
|
| Posted:
Mon May 14, 2007 3:59 pm |
|
HUmmmm. Finaly. That's exactly it. Worked.
Did i missed that on the documentation? I mean that i should be logged as the "God" admin? |
|
|
|
|
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1472
Location: In front of a screen....HELP! lol
|
| Posted:
Mon May 14, 2007 6:21 pm |
|
Yup, its in Plain old english lol.
Actually it says that you should be logged in as God admin for any and all configuration of Sentinel, its true, you should be. |
|
|
|
|
|
shotokan
Worker
Joined: Aug 27, 2006
Posts: 153
|
| Posted:
Mon May 14, 2007 6:26 pm |
|
It's says to logon to your admin but never mentioned as the "God" admin... I think.
Anyways let's not take it to far because i am stupid enought not to try it anyways. 
Now that it's working i just needs to setup them and i came across those options. What would be your recommentation to set those paramers below:
Admin Blocker:
CLIKE Blocker:
UNION Blocker:
FILTER Blocker:
Harvester Blocker:
Referer Blocker:
Scripting Blocker:
Request Method Blocker:
String Blocker:
I just don't want to over do it but would like to know the recommended ones to turn ON.
Thanks a lot, |
|
|
|
|
|
ncochise
New Member
Joined: Nov 16, 2007
Posts: 6
|
| Posted:
Fri Nov 16, 2007 4:57 pm |
|
Well... well... well...
After literally TWO DAYS of messing with this, reading dozens if not more forum posts, all very educational, but none resulting in the FIX for the problem I was having.
The problem? I installed nukesentinel on my server as instructed, made additions to all core files, waited to rename and make writable (666 and or 777) my .htaccess, .staccess and .ftaccess files, entered the NukeSentinel Administration Menu, searched for current admins, set my PATHS using the code string and instructions below, graciously provided by gregxp.
| Code: | <?php
echo $_SERVER["SCRIPT_FILENAME"];
?> |
(cut and paste code above into a text file and name that file path.php, then upload that to the directory where your .htaccess, .staccess and ftaccess files reside... then use a browser to call on and THAT will be the PATH you enter in the NukeSentinel Admin Console as well as your .htaccess file as shown below)
| Code: | Options All -Indexes
DirectoryIndex index.php index.htm index.html
# -------------------------------------------
# Start of NukeSentinel(tm) admin.php Auth
# -------------------------------------------
<Files .ftaccess>
deny from all
</Files>
<Files .staccess>
deny from all
</Files>
<Files admin.php>
<Limit GET POST PUT>
require valid-user
</Limit>
AuthName "Restricted"
AuthType Basic
AuthUserFile /home7/sub003/YourInfo/www/YourNukeRoot/.staccess
</Files>
# -------------------------------------------
# Start of NukeSentinel(tm) DENY FROM area
# -------------------------------------------
|
AFTER DOING ALL OF THAT EXACTLY AS I SHOULD... IT STILL DID NOT WORK.
No matter what I did, I could not get the NukeSentinel Admin Console to WRITE TO THE .STACCESS FILE!!!!
Everytime I clicked ADMIN AUTH LIST and then RESENT ADMIN into to the .staccess, IT NEVER WORKED!!! IT NEVER WROTE TO THE FILE ITSELF!!!
AND THEN I SAW IT! RIGHT THERE IN FRONT OF MY EYES, YET NOBODY HAD EVER MENTIONED IT IN ANY FORUM I HAD READ... THE FIX!!!
If the PATH has been set right in the .htaccess and the .htaccess, ftaccess and staccess files have been made WRITABLE and you have entered the CORRECT PATH into your Nuke Admin Console, then and only then go to...
Admin Auth List (enter that menu)
THEN find the icons to the RIGHT of your admin handles, right under the PROTECTED FUNCTION listing, CLICK the button to RESEND your ADMIN information.
AND NOW.. AND NOW... THE MOST IMPORTANT PART, THE PART I COULD NOT FIND ANYWHERE IN ANY FORUM (may have been there somewhere, but I never found it)
***THE FIX!!!*** Look DIRECTLY ABOVE the admin -- auth login -- auth password -- protected functions listings and you will see...
"Build CGIAuth file: /home7/sub003/YourINfo/www/YourNukeRoot/.staccess"
CLICK THE LINK TO THE RIGHT OF "BUILD CGIAuth" and THAT WILL WRITE YOUR HANDLE AND PASSWORD TO THE .STACCESS FILE!!!!
AND THAT'S THAT!!! ALL FIXED!!!
If you check your .staccess file on in your Nuke Root now, you will see your handle and password have been written to it and NOW you can access your admin.php file and your site.
Thanks to all who contributed to THE FIX!!! |
|
|
|
|
|
montego
Site Admin
Joined: Aug 29, 2004
Posts: 7481
Location: Arizona
|
| Posted:
Fri Nov 16, 2007 5:56 pm |
|
Also, once you have it established, you can change the file back to 644 permissions. When you want to add another admin or change your admin password, just change it back to 666 prior to updating that. Once written, change it back. |
|
|
|
|
|
express
Client
Joined: Jan 03, 2007
Posts: 62
|
| Posted:
Sat Nov 17, 2007 1:26 am |
|
You and I should have been talking together this past couple of days. I just went thru that EXACT same thing too and at the sametime as you. It does pay to be tenacious. I too was becoming very frustrated with it and spent hours researching threads. It was with conitnued preservance and trial and error that I was able to come to the same conclusion as you.
This thread will definitely help others with this little oversight. Perhaps Raven can add this tidbit into the next HowToInstall revision.
Take care,
Express |
|
|
|
|
|
|
|
|
|
![[Valid RSS]](http://ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
