Manualshelf

System information

ManualsBrandsMACROMEDIA ManualsComputer equipmentCOLDFUSION 5 - INSTALING AND CONFIGURING SERVER
41424344454647484950
Adobe documentation - Confidential
RedirectMatch 404 (?i).*/WSRPProducer.*
Restart apache and test URIs that should be blocked.
Specify permissions for ColdFusion Directories
Next we will make cfuser the owner and root the group of the installation directory recursively.
chown -R cfuser:root /opt/cf11/
chmod -R 750 /opt/cf11/
You should consider a more restrictive file permission structure which removes any unnecessary write
permissions. The permissions specified above will allow ColdFusion to have full control over the files in
its own directories as needed by the CF administrator or hotfix installer - a more restrictive approach
while more secure may cause errors in ColdFusion administrator or elsewhere. If you do not make
changes in the ColdFusion administrator and only run the hotfix installer by root you can setup more
restrictive file security.
Now to allow access Apache to serve files in the /CFIDE we need to ensure that apache has execute
permissions on all parent folders so that it can traverse the directory structure:
chgrp webusers /opt/cf11/
chgrp webusers /opt/cf11/cfusion/
chgrp webusers /opt/cf11/cfusion/wwwroot/
chgrp -R webusers /opt/cf11/cfusion/wwwroot/CFIDE/
chmod 710 /opt/cf11/
chmod 710 /opt/cf11/cfusion/
chmod 510 /opt/cf11/cfusion/wwwroot/
chmod 550 /opt/cf11/cfusion/wwwroot/CFIDE/
chcon -R --reference=/var/www /opt/cf11/cfusion/wwwroot/CFIDE
Install Apache Connector
As root run the connector installer utility called wsconfig with the following options:
/opt/cf11/cfusion/runtime/bin/wsconfig -ws Apache \
-dir /etc/httpd/conf/ \
-cfide /opt/cf11/cfusion/wwwroot/CFIDE/ \
-bin /usr/sbin/httpd \
-script /etc/init.d/httpd
At this point you will find that with SELinux enabled Apache will fail to start because the mod_jk (the
Tomcat connector module for Apache) module does not have sufficient permissions, the error may look
something like this:
Starting httpd: httpd: Syntax error on line 1033 of
/etc/httpd/conf/httpd.conf: Syntax error on line 2 of
/etc/httpd/conf/mod_jk.conf: Cannot load
/opt/coldfusion10/config/wsconfig/1/mod_jk.so into server:
Adobe documentation - Confidential