tags:

views:

78

answers:

1
+1  Q: 

How do i disable openbase_dir restrictions over HTTPS?

I'm trying to enable a php file to access another file residing in a folder outside the root web directory over an HTTPS connection. This works fine over HTTP but for some reason HTTPS connections are failing to read the file.

I've enabled this over HTTP by disabling openbase_dir in a vhost.conf file, as follows:

php_admin_value open_basedir "/var/www/vhosts/my-domain.com/httpdocs:/usr/share/pear:/tmp:/var/www/vhosts/my-domain.com/my_folder/" php_admin_value open_basedir none

I've then tried both appending and replacing the contents of vhost.conf with the following:

php_admin_value open_basedir "/var/www/vhosts/my-domain.com/httpsdocs:/usr/share/pear:/tmp:/var/www/vhosts/my-domain.com/my_folder/" php_admin_value open_basedir none

However after reconfiguring the server to use the new vhost.conf file and restarting apache, attempts to have the test php file inside the web directory read the file residing in my_folder over an HTTPS connection continue to fail.

+1  A: 

It looks like you might be using Plesk, but that is just a guess. If so, then you also need to create a vhost_ssl.conf file with the same settings (and re-generate the httpd.include file using websrvmng).

If you are not using Plesk, the issue is likely to be the same thing, in that you may have separate virtual hosts configured for http and https, and you need to also modify the https one to remove the restriction.

Tom Haigh  2009-06-21 20:13:20
This is what I suspect, too. Is there a way to set up the SSL version of a site w/o giving it its own virtual host? (I guess you could include a common conf into each, but this still functions fundamentally as two separate site configs...)
grossvogel  2009-06-21 20:20:55
I don't think so, you have to do 'SSLEngine on' in the vhost, which I think stops plain http from working
Tom Haigh  2009-06-21 20:29:35
Tom, thanks so much for your answer, that worked perfectly. I am using plesk and was unaware this file was needed.
 2009-06-22 02:20:55

related questions

Obscuring network proxy password in plain text files on Linux/UNIX-likes
Why doesn't **find** find anything?
Getting stack traces on Unix systems, automatically
Differences between unix and windows files
How do you do a case insensitive search using a pattern modifier using less ?
Using Visual Studio to develop for C++ for Unix
How do I generate ASCII codes 2 and 3 in a Bash command line?
What's in your .procmailrc
Allow user to set up an SSH tunnel, but nothing else
What is PHP Safe Mode GID?
How to avoid redefining VERSION, PACKAGE, etc.
How can I encode xml files to xfdl (base64-gzip)?
Faster way to find duplicates conditioned by time
Date arithmetic in Unix shell scripts
Using Xming X Window Server over a VPN
Windows Equivalent of 'nice'
How do I configure and communicate with a serial port?
Choosing a static code analysis tool
What should a longtime Windows user know when starting to use Linux?
How do I use (n)curses in Ruby?
Process size on UNIX
Getting root permissions on a file inside of vi?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
Fastest way to get value of pi