Client in /etc/group added without www-data

Hi,

i'm running a fresh install of ISPConfig (3.1.1p1) on Ubuntu 16.04, the System is up to date and running pretty smooth until we added a protected folder, we got a error message:

[core:crit] [pid 13441] (13)Permission denied: [client 79.241.107.53:64033] AH00529: /var/www/clients/client2/web1/web/.htaccess pcfg_openfile: unable to check htaccess file, ensure it is readable and that '/var/www/clients/client2/web1/web/' is executable, referer:​

When we chmod the .htaccess and .htpasswd-file to 755 everything works fine. I've check /etc/group and noticed that all client entries are missing the group member www-data. I've added manually www-data and the .htaccess works as usual.

I've then played around, added clients, resellers in all variants and settings but without success, whatever i do, entries in /etc/group are looking always like this:

sshusers:x:5002:web1
ispapps:x:5003:www-data
ispconfig:x:5004:www-data
client2:x:5006:www-data
nogroup:x:65534:
client1:x:5007:
ispconfigend:x:20000:​

I would appreciate any feedback how to solve this or point me in the right direction.

Thanks in advance

Chris

 

Correct.



i even tried it with security medium, high and some other combinations.

Chris

 

Already did that, i also deleted all customers to check if /etc/groups get cleaned up (it did) and also resynced ISPconfig. No success. I googled for hours to find other reports about that issue but found nothing, this board was my last resort ;-)

Chris

 

I already switched to debug but didn't executed server.sh via console. Thanks for that hint.

I've added another customer and site:

[email protected]:/tmp# /usr/local/ispconfig/server/server.sh
09.01.2017-14:28 - DEBUG - Calling function 'check_phpini_changes' from plugin 'webserver_plugin' raised by action 'server_plugins_loaded'.
09.01.2017-14:28 - DEBUG - Found 5 changes, starting update process.
09.01.2017-14:28 - DEBUG - Processed datalog_id 253
09.01.2017-14:28 - DEBUG - Processed datalog_id 254
09.01.2017-14:28 - DEBUG - Processed datalog_id 255
09.01.2017-14:28 - DEBUG - Processed datalog_id 256
09.01.2017-14:28 - DEBUG - Calling function 'ssl' from plugin 'apache2_plugin' raised by event 'web_domain_insert'.
09.01.2017-14:28 - DEBUG - Calling function 'insert' from plugin 'apache2_plugin' raised by event 'web_domain_insert'.
09.01.2017-14:28 - DEBUG - Adding the group: client6
09.01.2017-14:28 - DEBUG - Adding the user: web14
09.01.2017-14:28 - DEBUG - Creating symlink: ln -s /var/www/clients/client6/web14/ /var/www/test.vwcamper.de
09.01.2017-14:28 - DEBUG - Creating symlink: ln -s /var/www/clients/client6/web14/ /var/www/clients/client6/test.vwcamper.de
09.01.2017-14:28 - DEBUG - exec: chown -R web14:client6 /var/www/clients/client6/web14/web
09.01.2017-14:28 - DEBUG - exec: chown root:root /var/www/clients/client6/web14/web
09.01.2017-14:28 - DEBUG - Writing the vhost file: /etc/apache2/sites-available/test.vwcamper.de.vhost
09.01.2017-14:28 - DEBUG - Creating symlink: /etc/apache2/sites-enabled/100-test.vwcamper.de.vhost->/etc/apache2/sites-available/test.vwcamper.de.vhost
09.01.2017-14:28 - DEBUG - Apache status is: running
09.01.2017-14:28 - DEBUG - Calling function 'restartHttpd' from module 'web_module'.
09.01.2017-14:28 - DEBUG - Restarting httpd: systemctl restart apache2.service
09.01.2017-14:28 - DEBUG - Apache restart return value is: 0
09.01.2017-14:28 - DEBUG - Apache online status after restart is: running
09.01.2017-14:28 - DEBUG - Processed datalog_id 257
09.01.2017-14:28 - DEBUG - Remove Lock: /usr/local/ispconfig/server/temp/.ispconfig_lock
finished.​

After that i added a protected folder to the above site:

[email protected]:/tmp# /usr/local/ispconfig/server/server.sh
09.01.2017-14:30 - DEBUG - Calling function 'check_phpini_changes' from plugin 'webserver_plugin' raised by action 'server_plugins_loaded'.
09.01.2017-14:30 - DEBUG - Found 2 changes, starting update process.
09.01.2017-14:30 - DEBUG - Processed datalog_id 258
09.01.2017-14:30 - DEBUG - Calling function 'web_folder_user' from plugin 'apache2_plugin' raised by event 'web_folder_user_insert'.
09.01.2017-14:30 - DEBUG - Created file /var/www/clients/client6/web14/web/.htpasswd
09.01.2017-14:30 - DEBUG - Added or updated user: testuser
09.01.2017-14:30 - DEBUG - Created/modified file /var/www/clients/client6/web14/web/.htaccess
09.01.2017-14:30 - DEBUG - Processed datalog_id 259
09.01.2017-14:30 - DEBUG - Remove Lock: /usr/local/ispconfig/server/temp/.ispconfig_lock​

Output from /etc/group:

sshusers:x:5002:web1,web13,web14
ispapps:x:5003:www-data
ispconfig:x:5004:www-data
client2:x:5006:www-data
nogroup:x:65534:
client1:x:5007:www-data
ispconfigend:x:20000:
client6:x:10014:​

Again no www-data for client6 but web14 is added to the sshusers. To make the protected folder work i have to add the group www-data to client6 and chmod both .htaccess and .htpasswd to 755.

I also played around with several combinations of the permission settings but again without success:



Chris