All I can offer is that you may want to try reinstalling what was removed, and hope for the best – and hope that your config files and stuff weren’t removed at the same time the apps were.
You can probably get a full list of what was removed in /var/log/dpkg.log.
Sounds like some packages may still be missing; I’d go through the dpkg.log file and make sure you have all of them, or you’ll be dealing with weird problems for quite awhile
Make sure you have both dovecot and webmin-virtual-server-theme installed… their absence could cause the above issues you’re describing.
I had to click “update selected operating system” and now virtualmin is back to normail w000t… postfix was down, i started it up in the control panel, and it said it failed to start… but its running and i can receive mail now!
I think suphp is the way to have hardened php… am I wrong? Can you point me to a good tutorial for suphp on virtualmin?
The application files, and the fcgi wrapper must be owned by the user, and must not be world or group writable (suexec will not execute them, if they are).
You also need to copy php.ini into the etc/php5 directory within the users home.
suphp is doing what suexec+fcgid is doing, just restricted to PHP while suexec+fcgid covers all CGI scripting languages.
That’s why I have been advocating suexec+mod_fcgid even before I learned that Virtualmin happens to use the same solution.
Note that Virtualmin will be using suexec+mod_fcgid anyway in the standard installation as far as I know (it did for me anyway).
I’d even avoid running suphp and suexec+modfcgid on the same machine: the functional overlap makes unwanted interactions (a.k.a. bugs) more likely. Also, since the combination is rarely used, it is less well tested.
I think you can configure Virtualmin for suexec+fcgid, and it will do all that’s necessary for you.
UPDATE: This seems to be available for Virtualmin Pro only. I didn’t find the option in Virtualmin GPL.
The newest relevant post on the topic seems to be on http://www.virtualmin.com/node/8462#comment-35141 .
Notes:
A umask of 027 is necessary instead of the more usual 022 if there are mutually untrusted parties on the same machine.
I’m not sure that that’s possible, but it would certainly be good to have the php5.fcgi file somewhere where it’s copied into every server that’s being setup.
you can use /etc/skel for that purpose and enable that in the server template. Files and directories under /etc/skel will be copied to every new server.
Files and directories under /etc/skel will be copied to every new server.
Actually once per Unix user, not once per server (you’d need to configure Virtualmin for a per-server skeleton directory).
The difference doesn’t matter in this case because Joe’s configuration is designed to work if installed once per Unix user, but it will matter in those cases where you really need a separate set of files for each domain.
[UPDATE: This should have gone as a reply to ronald’s post. Sorry for the mixup.]