wk2 apache

Question 1

To find the port that Apache is listening on, you should first check …

Answer 1

“Apache non-SSL IP/port” and “ Apache SSL Port” options in WHM Home&raquo_space; Server Configuration&raquo_space; Tweak Settings.

Question 2

SSP (a script that runs) will tell you if Apache is listening on an alternate port. If neither tweak settings nor SSP can find the alternative port, then what?

Answer 2

use lsof or netstat

Question 3

What are the two ways apache can extend its basic functionality

Answer 3

It can either use compiled-in extra modules, or it can hand tasks off to external programs using the Common Gateway Interface (CGI).

Question 4

How are compiled-in modules run?

Answer 4

Compiled in modules are run inside Apache as the Apache user (usually the user “nobody”) and can be configured using the Apache configuration files (including .htaccess files).

Question 5

How to see what modules are installed?

Answer 5

httpd -M

Question 6

Give an example of a module used to extend basic php functionality

Answer 6

An example of a module used to extend basic Apache functionality is when PHP is compiled in with Apache as a dynamic shared object (when you use the DSO handler for PHP).

Other examples include items that we think of as being part of Apache, like mod_userdir and helper extensions like mod_speling.

Question 7

When is the CGI (Common Gateway Interface) used?

Answer 7

The Common Gateway Interface is used when Apache hands off to external programs.

Question 8

How is the mod_lsapi module unique?

Answer 8

The mod_lsapi module hands off the work to lsphp processes. While these processes are spawned as needed by Apache, they are not Apache children.

Additionally, each user’s lsphp processes are kept in their own LVE/CageFS, so users cannot interfere with each other. If there are no requests for sites from that user in lsapi_backend_pgrp_max_idle seconds, the process will be terminated and need to be respawned when the next request comes in.

Note:
mod_lsapi is only available with CloudLinux.

Question 9

The Apache binary file.

Answer 9

/usr/sbin/httpd —

Question 10

This directory contains all the logs for the apache2 file and all the access logs.

Answer 10

/var/log/apache2/ —

Question 11

This directory contains the configuration directory for Apache and contains all directories for Apache includes, modules, and configuration files. This directory does not contain log files.

Answer 11

/etc/apache2/ —

Question 12

The primary Apache configuration file.

Answer 12

/etc/apache2/conf/httpd.conf —

Question 13

This directory contains an alias to the /var/log/apache2/ directory.

Answer 13

/etc/apache2/logs/ —

Question 14

This directory contains all of the dynamic modules for Apache.

Answer 14

/usr/lib64/apache2/modules/ —

Question 15

This file contains HTTP requests that the server received and that did not go to a domain.

Answer 15

/etc/apache2/logs/access_log/ —

Question 16

The primary Apache configuration file directory.

Answer 16

/etc/apache2/conf.d/ —

Question 17

The directory that contains the include files that add content to the httpd.conf file. You can modify these configuration files via the command line interface (CLI) or WHM’s Include Editor interface (WHM&raquo_space; Home&raquo_space; Service Configuration&raquo_space; Apache Configuration&raquo_space; Include Editor).

Answer 17

/etc/apache2/conf.d/includes/ —

Question 18

This file contains error information.

Answer 18

/etc/apache2/logs/error_log/ —

Question 19

This directory contains an alias to the /usr/lib64/apache2/modules/ directory.

Answer 19

/etc/apache2/modules/ —

Question 20

Break down this log

[Thu Sep 25 17:34:34.185015 2014] [mpm_prefork:notice] [pid 25070] AH00169: caught SIGTERM, shutting down

Answer 20

This entry contains two additional details - what module and pid generated the message:

timestamp = [Thu Sep 25 17:34:34.185015 2014]
module severity level = [mpm_prefork:notice]
process id: [pid 25070]
message: AH00169: caught SIGTERM, shutting down

note: The Apache error log contains all messages from Apache itself that are not logs of requests, so you may see many logs that are not actually errors at all. There are other logs, such as the suexec and suPHP logs, that have their own logs with their own formats.

Question 21

Describe the categories of error codes that apache sends to the web browser

Answer 21

1xx Informational codes. We never see these.
2xx Success codes. It’s working, no problem to process.
3xx Redirection. You’ll see these referenced in .htaccess files, but they are not a source of issues.
4xx Client Errors
404 File not found. Most commonly seen when there are tomcat issues, mod_userdir issues, or document root issues.
5xx Server Errors
500 Internal Server Error. Most commonly seen when there are permission or script issues. Check the error logs for more information. Sometimes seen with CloudLinux when a site reaches a memory or processor limit part way through processing a request.
503 Service Unavailable. Most commonly seen with CloudLinux when a site reaches one of its limits at an expected juncture.

Question 22

Describe the different sections of apache documentation: The parts of the Apache documentation you’re most likely to need are the Syntax, Defaults, and Context.

Answer 22

Syntax tells you what the directive should look like, Default tells you what happens when the directive is not explicitly set, and Context tells you where you can set it. Note that the full description (under the short box) does contain valuable information.

Question 23

What user do apache children run as?

Answer 23

Apache children run as nobody (or the user if using mod_ruid2)

Question 24

What user do apache children run as?

Answer 24

Apache children run as nobody (or the user if using mod_ruid2)

Question 25

What’s the command used to provision and install an easy apache profile on the command line?

(yes, you would normally do this through the whm interface)

Answer 25

/usr/local/bin/ea_current_to_profile

/usr/local/bin/ea_current_to_profile - -output=/etc/cpanel/ea4/profiles/custom/test.json

/usr/local/bin/ea_install_profile - -install /etc/cpanel/ea4/profiles/custom/test.json

Question 26

How would you manually create a profile?

Answer 26

Manually creating a profile is a little different. For that, you must navigate to /etc/cpanel/ea4/profiles/custom and then create a json file with the correct structure (see below).

{“version”:”1.2”,”name”:”SuperHost Profile”,”tags”:[“Apache 2.4”,”PHP 5.4”,”tomorrow comes
knocking”,”…”],”desc”:”This profile will allow you to have super high density on your
system”,”pkgs”:[“ea-mod_xyz”,”ea-php54”,”ea-php56”,”ea-your_frog”,”…”]}

Question 27

How would you manually create a profile?

Answer 27

Manually creating a profile is a little different. For that, you must navigate to /etc/cpanel/ea4/profiles/custom and then create a json file with the correct structure (see below).

{“version”:”1.2”,”name”:”SuperHost Profile”,”tags”:[“Apache 2.4”,”PHP 5.4”,”tomorrow comes
knocking”,”…”],”desc”:”This profile will allow you to have super high density on your
system”,”pkgs”:[“ea-mod_xyz”,”ea-php54”,”ea-php56”,”ea-your_frog”,”…”]}

Question 28

Where are the main templates for easy apache configuration files located?

Answer 28

/var/cpaenl/templates/apache2_{2,4}

From there, everything outside of virtual hosts can be found in ea4_main.default. Secure virtual hosts are in ssl_vhost.default and normal virtual hosts are vhost.default.

User configurations will be found in /var/cpanel/userdata/$USERNAME/{main, $DOMAIN}.

It is also important to note that SSL configurations are in a separate file:

# ls -1 /var/cpanel/userdata/cptest/{main,cptest.domain{,_SSL}}
/var/cpanel/userdata/cptest/cptest.domain
/var/cpanel/userdata/cptest/cptest.domain_SSL
/var/cpanel/userdata/cptest/main

Question 29

Global includes from /etc/apache2/conf.d/includes can be managed in WHM under

Answer 29

Home&raquo_space; Service Configuration&raquo_space; Apache Configuration&raquo_space; Include Editor.

Question 30

Domain configuration include files are found in

Answer 30

/etc/apache2/conf.d/userdata

Question 31

Domain configuration include files are found in

Answer 31

/etc/apache2/conf.d/userdata. Structure of the include files are as follows:

All virtual domains with SSL: userdata/ssl/2_4/.conf
All virtual domains without SSL: userdata/std/2_4/.conf

Users’ virtual domains with SSL: userdata/ssl/2_4/$USER/*.conf

Users’ virtual domains without SSL: userdata/std/2_4/$USER/.conf
Virtual domain with SSL: userdata/ssl/2_4/$USER/$DOMAIN/.conf
Virtual domain without SSL: userdata/std/2_4/$USER/$DOMAIN/*conf

These must end in .conf and be owned by root. They must also always have 600 permissions. Includes are appended to the end of the virtual host with an include configuration line.

Question 32

EA4 builds each VirtualHost tag from the following components:

Answer 32

Custom templates in the subdirectories in the /var/cpanel/templates/2_{2,4} directory

Account information for each domain – When you make a configuration change to an account or domain in the cPanel or WHM interfaces, cPanel & WHM changes the content of the appropriate file in the /var/cpanel/userdata/$USERNAME directory

Additional include files for each account, user or domain – EasyApache includes the files in the appropriate /etc/apache2/conf.c/userdata/ directory for each domain to build the configuration of each VirtualHost tag

Question 33

How many php installations are on a standard cpanel environment.

Answer 33

2

There are the primary PHP installations that are used for Apache to interact with and serve production PHP content, and then there’s the Internal PHP installation that cPanel specifically uses for its own internal operations that require PHP.

Question 34

The default path to the internal PHP binary is:

Answer 34

/usr/local/cpanel/3rdparty/bin/php.

Question 35

The cPanel default profile includes what PHP versions

Answer 35

7.1 and 7.2.

Question 36

EasyApache 4 supports PHP versions what

Answer 36

5.4, 5.5, 5.6, 7.0, 7.1, 7.2, and 7.3.

Question 37

How would you install a particular php version on your system?

Answer 37

Use the yum install command to install your desired PHP version. You can select from the following PHP packages:

ea-php54
ea-php55
ea-php56
ea-php70
ea-php71
ea-php72
Any custom PHP package name.

Question 38

To change a domain’s PHP version, perform the following steps:

Answer 38

Select the checkbox for the domain that you wish to change.
Select the desired version of PHP from the PHP Version menu. To always use the system default, select inherit.
Click Apply. The system will change the selected domain’s PHP version.

Question 39

What does a php “handler” do?

Answer 39

This is a module that tells Apache how to handle the PHP scripts because Apache does not natively support PHP scripts.

Question 40

What script is used to change php handlers?

Answer 40

/usr/local/cpanel/bin/rebuild_phpconf –help

Question 41

If your php handler script errors out, what log can you check?

Answer 41

/usr/local/cpanel/logs/error_log

Question 42

What happens if you misconfigure an apache custom template?

Answer 42

A messed up (invalid) httpd.conf will be generated and then apache will not be able to accept any requests.

“if they’re misconfigured (syntactically invalid) the apache conf will fail to rebuild with /scripts/rebuildhttpdconf”

Question 43

What is a “must” for virtualhost includes?

Answer 43

It is important to note that the file must end in .conf, be owned by root, and have 600 permissions!

Question 44

This interface allows you to enable/disable the Apache mod_userdir module’s functionality for end-users.

Warning

We strongly recommend that customers disable this access for most of their users. Before you use this interface, make certain that you read the Security Implications and Warnings sections below.

If someone has enabled Apache’s ruby24-mod_passenger module in WHM’s EasyApache 4 interface (WHM >> Home >> Software >> EasyApache 4), the system disables Apache’s module by default.

A person must enable this feature to allow accounts to use shared SSL certificates.

Answer 44

what about mod_userdir? look up more information in the wiki so that I can understand this and make flashcards out of it

Question 45

What does mod_userdir do?

Answer 45

The Apache mod_userdir module allows visitors to access a user’s website via a URL that contains that user’s username. For example, the following URLs point to the username directory:

https: //host.example.com/~username
https: //example.net/~username 
https: //192.168.0.20/~username

Question 46

How is mod_userdir used most of the time?

Answer 46

Most servers use the Apache mod_userdir module as a temporary URL system that allows users to view their websites. This temporary URL system functions even if the system does not possess a configured DNS or the domain does not yet point to the server.

When you enable the Apache mod_userdir module, any virtual host can access any website that uses the same IP address. It does not function only with the hostname.

Question 47

What’s the recommended way to customize an apache configuration

Answer 47

With includes!

Question 48

How do you change MPM from the command line for easyapache 4?

Answer 48

yum shell

reference the cheat sheet (it’s an image)