Le 28/05/2013 07:40, Adrien Poupin a écrit :
Bonjour,Salut Tatousse, Merci pour vos aimables réponses. Alors du coup j'utilise fcgiwrap, que j'utilise déjà pour php. Voici le /etc/nginx/sites-available/default en pièce jointe. Comme vous le constaterez (si notre mailing list gère les pièces jointes), c'est un peu le souk niveau Mailman. J'arrive à une page d'erreur qui me dit : Access denied. J'ai l'impression que fcgiwrap ne prend pas en compte le python ^^ Voici les logs : /var/log/nginx/error.log : Je précise que j'ai fait un lien symbolique de /var/www/mailman vers /usr/lib/mailman.2013/05/31 13:24:01 [error] 18926#0: *284 FastCGI sent in stderr: "Access to the script '/var/www/mailman' has been denied (see security.limit_extensions)" while reading response header from upstream, client: 192.168.0.254, server: ******************, request: "GET /mailman HTTP/1.1", upstream: "fastcgi://127.0.0.1:9000", host: "************" Si vous avez des idées, je suis preneur ! Merci d'avance. --
Adrien ------------------------------------------- |
# You may add here your # server { # ... # } # statements for each of your virtual hosts to this file ## # You should look at the following URL's in order to grasp a solid understanding # of Nginx configuration files in order to fully unleash the power of Nginx. # http://wiki.nginx.org/Pitfalls # http://wiki.nginx.org/QuickStart # http://wiki.nginx.org/Configuration # # Generally, you will want to move this file somewhere, and start with a clean # file but keep this around for reference. Or just disable in sites-enabled. # # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. ## server { #listen 80; ## listen for ipv4; this line is default and implied #listen [::]:80 default_server ipv6only=on; ## listen for ipv6 #root /usr/share/nginx/www; root /var/www; index index.html index.htm index.php; # Make site accessible from http://**************** and http://************** server_name *****************; location / { # First attempt to serve request as file, then # as directory, then fall back to displaying a 404. try_files $uri $uri/ /index.html; # Uncomment to enable naxsi on this location # include /etc/nginx/naxsi.rules } location /doc/ { alias /usr/share/doc/; autoindex on; allow 127.0.0.1; allow ::1; deny all; } location /phpmyadmin { root /usr/share/; index index.php index.html index.htm; location ~ ^/phpmyadmin/(.+\.php)$ { try_files $uri =404; root /usr/share/; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param HTTPS on; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include /etc/nginx/fastcgi_params; } location ~* ^/phpmyadmin/(.+\.(jpg|jpeg|gif|css|png|js|ico|html|xml|txt))$ { root /usr/share/; } } location /phpMyAdmin { rewrite ^/* /phpmyadmin last; } # Dolibarr location /dolibarr { root /var/www/; index index.html index.php; location ~ ^/dolibarr/(.+\.php)$ { # try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include /etc/nginx/fastcgi_params; } location ~* ^/dolibarr/(.+\.(jpg|jpeg|gif|css|png|js|ico|html|xml|txt))$ { root /var/www/; } } location /Dolibarr { rewrite ^/* /dolibarr last; } location /mailman { include /etc/nginx/fastcgi_params; # Fastcgi socket # fastcgi_pass unix:/var/run/fcgiwrap.socket; fastcgi_pass 127.0.0.1:9000; # Disable gzip (it makes scripts feel slower since they have to complete # before getting gzipped) gzip off; } location /cgi-bin/mailman { root /usr/lib/; fastcgi_split_path_info (^/cgi-bin/mailman/[^/]*)(.*)$; include /etc/nginx/fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_param PATH_INFO $fastcgi_path_info; fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info; fastcgi_intercept_errors on; # fastcgi_pass unix:/var/run/fcgiwrap.socket; fastcgi_pass 127.0.0.1:9000; } location /images/mailman { alias /usr/share/images/mailman; } location /pipermail { alias /var/lib/mailman/archives/public; autoindex on; } # Only for nginx-naxsi used with nginx-naxsi-ui : process denied requests #location /RequestDenied { # proxy_pass http://127.0.0.1:8080; #} #error_page 404 /404.html; # redirect server error pages to the static page /50x.html # #error_page 500 502 503 504 /50x.html; #location = /50x.html { # root /usr/share/nginx/www; #} # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000 location ~ \.php$ { fastcgi_split_path_info ^(.+\.php)(/.+)$; # NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini # With php5-cgi alone: fastcgi_pass 127.0.0.1:9000; # With php5-fpm: #fastcgi_pass unix:/var/run/php5-fpm.sock; fastcgi_index index.php; include fastcgi_params; } # deny access to .htaccess files, if Apache's document root # concurs with nginx's one location ~ /\.ht { deny all; } } # another virtual host using mix of IP-, name-, and port-based configuration # #server { # listen 8000; # listen somename:8080; # server_name somename alias another.alias; # root html; # index index.html index.htm; # # location / { # try_files $uri $uri/ =404; # } #} # HTTPS server # #server { # listen 443; # server_name localhost; # # root html; # index index.html index.htm; # # ssl on; # ssl_certificate cert.pem; # ssl_certificate_key cert.key; # # ssl_session_timeout 5m; # # ssl_protocols SSLv3 TLSv1; # ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv3:+EXP; # ssl_prefer_server_ciphers on; # # location / { # try_files $uri $uri/ =404; # } #}
Attachment:
signature.asc
Description: OpenPGP digital signature