Just add this on your .htaccess in that directory and php will not be executed.
# Kill PHP Execution
<Files ~ "\.ph(?:p[345]?|t|tml)$">
deny from all
</Files>
January 16, 2019
How to deny execution of php on some directory
January 15, 2019
MySQL database exists on the server, but does not show up in the cPanel
I have created a database manually on server with user_dbname however won’t show up on cpanel / phpmyadmin .
The solution was to run this
/usr/local/cpanel/bin/dbmaptool cpanelusername --type mysql --dbs 'nameofdatabase' --dbusers 'dbusername'
November 22, 2018
Letsencrypt UnicodeDecodeError: ‘utf-8’ codec can’t decode byte 0xfc in positio
Well today I was trying to issue a ssl on a old server and find this
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/augeas.py”, line 147, in get
return dec(value.value)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/augeas.py”, line 65, in dec
return st.decode(AUGENC)
UnicodeDecodeError: ‘utf-8’ codec can’t decode byte 0xfc in position 15: invalid start byte
Please see the logfiles in /var/log/letsencrypt for more details.
A short workaround was to modify the
“/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/augeas.py”
the 65 line was something
return st.encode(AUGENC)
with
return st.decode(AUGENC, ‘ignore’)
It worked to get a new certificate .
March 12, 2018
Amazon ec2 ami certbot-auto problem
Today tried to renew some ssl and surprise
certbot-auto renew
Error: couldn’t get currently installed version for /opt/eff.org/certbot/venv/bin/letsencrypt:
Traceback (most recent call last):
File “/opt/eff.org/certbot/venv/bin/letsencrypt”, line 7, in <module>
from certbot.main import main
File “/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/certbot/main.py”, line 10, in <module>
import josepy as jose
File “/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/__init__.py”, line 41, in <module>
from josepy.interfaces import JSONDeSerializable
File “/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/interfaces.py”, line 8, in <module>
from josepy import errors, util
File “/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/util.py”, line 4, in <module>
import OpenSSL
File “/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/__init__.py”, line 8, in <module>
from OpenSSL import rand, crypto, SSL
File “/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/rand.py”, line 12, in <module>
from OpenSSL._util import (
File “/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/_util.py”, line 6, in <module>
from cryptography.hazmat.bindings.openssl.binding import Binding
ImportError: No module named cryptography.hazmat.bindings.openssl.binding
Well tryied everything
rm -rf /opt/eff.org ( didn’t worked for me )
Reinstalled same problem.
The only solution was this found on a comment on github
$ unset PYTHON_INSTALL_LAYOUT
$ /opt/eff.org/certbot/venv/local/bin/pip install –upgrade certbot
$ /opt/eff.org/certbot/venv/local/bin/certbot –help
February 6, 2018
Prevent SSL redirect loop using WordPress and HAProxy
I do have a haproxy that is serving the ssl frontend and the apache is on 80 port. But the wordpress see the 80 port and is not forcing to use the ssl as links for css/js
So to force wordpress to generate ssl internal links you need to add this into wp-config.php
define('FORCE_SSL_ADMIN', true);
define('FORCE_SSL_LOGIN', true);
if ($_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https')
$_SERVER['HTTPS']='on';
Offcourse on the haproxy you need to have
reqadd X-Forwarded-Proto:\ https
