This caused the error log to collect....
[Wed Oct 27 10:09:00 2010] [error] [client 184.108.40.206] PHP Warning: file_exists() [<a href='function.file-exists'>function.file-exists</a>]: open_basedir restriction in effect. File(/var/www/vhosts/XXXXX.co.uk/httpdocs/install) is not within the allowed path(s): (/var/www/vhosts/XXXXX.co.uk/httpdocs:/tmp) in /home/vhosts/XXXXX.co.uk/httpdocs/includes/header.php on line 19
but worse the backups failed and other operations on files, images etc failed.
So, after much browsing the web for a solution on oscommerce sites and php sites I gradually collected enough snippets of information to gracefully resolve the situation.
I say gracefully, because it appeared that I needed to restart the server from time to time and the consequence of one restart failed to restart the web services (no one could see the store), leaving me with the need to rapidly find out what I had done incorrectly.
Because I had such difficulty resolving this, and because it seemed a common issue, I though it would be useful on this forum to collect all actions together..
To sum up in beginners terms and describe the resolution of this problem see below.
Background: (or what you need to appreciate)
I am running oscommerce on a dedicated linux server using centos-5 with a plesk conrol panel for managing the system, as the server hosts a number of different domains.
PHP initialisation and things:
PHP uses a php.ini script generally in /etc/php.ini
Depending on the system the php system configuration is further adjusted by additional scripts such as httpd.include and vhost.conf
This allows the php configuration to vary depending on the hosted domain.
So domain1 can remain very secure while domain2 can have less safe options set for php scripts.
php.ini resides in /etc directory (don’t change this as it would effect all domains, which is probably not what is ideal).
My plesk server hosts domains under /var/www/vhosts
So in that directory resides domain1.co.uk domain2.co.uk etc
Command 'cd domain1.co.uk' moves to that folder and we see a number of directories (folders) cgi-bin, httpdocs, conf, and statistics, etc.
Directory httpdocs is where the web site files are held (index.php etc).
the statistics directory holds the error_log within a logs sub directory.
In the conf directory resides httpd.include.
This appears to be the configuration file that is called for the domain.
It has warnings within it as it is over written whenever changes are main to the domain set up from the plesk control panel.
OK: lets start.
Within the store admin, via ‘tools’ and ‘server info’ I can see that open_basedir was set to
and from snippets I had determined it needed to be ‘none’.
To do this I did the following…..
1. Logon to server via ‘putty’ as root.
2. Change directory; cd /var/www/vhosts
3. Command ls displays the domain names.
4. cd domain1.co.uk
5. cd conf
6. Command ls displays only ‘httpd.include’ (if vhost.conf already exists go to line 14)
7. Run command ‘touch vhost.conf’
8. this creates an empty vhost.conf file.
9. Type less httpd.include
10. this displays the content of the https.include file, note that no reference is made to vhost.conf
11. Go to Plesk control panel for the domain and select ‘Web Hosting Settings’
12. Exit via OK button (not cancel, this rewrites httpd.include and adds vhost.conf).
13. Now re-run less http.include command and note the addition of ‘Include /var/www/vhosts/domain1.co.uk/conf/vhost.conf’. Plesk has rebuilt the configuration file and detecting the existence of the vhost.conf file has included it. This means that when the server or the Apache service is restarted the php configuration for domain1.co.uk will now use vhost.conf.
14. The vhost.conf file needs to contain (from browse snippets):
php_admin_flag engine on
php_admin_value open_basedir none
15. Use vi (etc) to edit the vhost.conf file and then run the command
This will test that the syntax of the apache configuration file are usable.
It should respond Syntax OK or provide you with error information.
16. Correct any errors.
17. So to conclude we have created a final php initialisation file called vhost.conf for the appropriate domain and ensured that the Plesk control system has recognised it and includes it. We have checked that the scripts are acceptable.
18. We just need to restart the apache web service to use the vhost.conf file and set up php for this domain.
19. I used the command
apachectl –k gracefully
This restarts the web service with the new setting without interrupting your site operation.
You are advised to wait 10 to 15 minutes after this command for all to settle, but I immediately reopened my store admin, viewed the server info via tools and there was the open_basedir settings set to no value.
20. I then ran a database backup and it worked! This was a ‘Eureka Moment’ for as it had taken quite a while for a newbie linux guy coming from windwows to finally resolve.
Hope that helps.
P.S. I just have a magic quotes issue to resolve now!
Edited by computaphile, 04 November 2010 - 13:47.