backup-domain & restore-domain with certifications

Submitted by edwardsmarkf on Wed, 02/24/2016 - 19:21 Pro Licensee

hello -

when i use backup-domain and restore.domain, the ssl.ca file is not moved. an easy workaround is to just manually move the ssl.ca file into place on the new server. however, i dont feel comfortable doing this without verifying that a workaround is necessary.

backup command used to create the tgz files:

virtualmin  backup-domain  --domain  comptonpeslonline.com  --dest   /tmp/comptonpeslonline.com.tgz --all-features --except-feature  dir;
Backup completed successfully. Final size was 6.80 MB

here are the three files created:

http://edwardsmark.com/comptonpeslonline.com.tgz
http://edwardsmark.com/comptonpeslonline.com.tgz.info
http://edwardsmark.com/comptonpeslonline.com.tgz.dom

restore command used on the new server:

virtualmin  restore-domain  --source /home/mark/comptonpeslonline.com.tgz   --all-virtualmin --all-features  --all-domains ;
Restore completed successfully.

however, apache stays down after doing this:

systemctl status httpd.service
Feb 24 18:37:47 edwardsmark.info systemd[1]: Reload failed for The Apache HTTP Server.
Feb 24 18:39:10 edwardsmark.info httpd[14029]: AH00526: Syntax error on line 437 of /etc/httpd/conf/httpd.conf:
Feb 24 18:39:10 edwardsmark.info httpd[14029]: SSLCACertificateFile: file '/home/comptonpeslonline.com/ssl.ca' does not exist or is empty

workaround:

mv  /home/mark/ssl.ca    /home/comptonpeslonline.com/ssl.ca  ;
chown     comptonpeslonline.com:comptonpeslonline.com    /home/comptonpeslonline.com/ssl.ca  ;
systemctl restart  httpd  ;
systemctl status httpd.service  ;

NOTE - since comets, meteors and asteroids are named after the person who discovered it, i believe the virtualmin bugs should follow the same naming convention.

thank you.

Status: 
Closed (fixed)

Comments

Submitted by JamieCameron on Wed, 02/24/2016 - 23:18

That's unusual, as the backup should contain the domain's entire home directory. Unless this was a website-only backup?

Submitted by edwardsmarkf on Tue, 03/22/2016 - 18:43 Pro Licensee

yes it was a website-only backup.

this site is something like 25 gigs. i am doing a "test" migration without the large files. i would rather use tar for all the data.

IMPORTANT: this also "crashes" apache. i have to manually move the ssl.ca into place and then do

systemctl restart httpd;

to get apache running again.

systemctl status httpd.service;

Mar 22 19:28:30 edwardsmark.info systemd[1]: Reloaded The Apache HTTP Server.
Mar 22 19:29:55 edwardsmark.info httpd[8219]: AH00526: Syntax error on line 433 of /etc/httpd/conf/httpd.conf:
Mar 22 19:29:55 edwardsmark.info httpd[8219]: SSLCACertificateFile: file '/home/comptonpeslonline.com/ssl.ca' does not exist or is empty
Mar 22 19:29:55 edwardsmark.info systemd[1]: httpd.service: control process exited, code=exited status=1
Mar 22 19:29:55 edwardsmark.info systemd[1]: Reload failed for The Apache HTTP Server.
Mar 22 19:32:52 edwardsmark.info systemd[1]: Reloaded The Apache HTTP Server.
Mar 22 19:34:56 edwardsmark.info httpd[9131]: AH00526: Syntax error on line 433 of /etc/httpd/conf/httpd.conf:
Mar 22 19:34:56 edwardsmark.info httpd[9131]: SSLCACertificateFile: file '/home/comptonpeslonline.com/ssl.ca' does not exist or is empty
Mar 22 19:34:56 edwardsmark.info systemd[1]: httpd.service: control process exited, code=exited status=1
Mar 22 19:34:56 edwardsmark.info systemd[1]: Reload failed for The Apache HTTP Server.

Submitted by JamieCameron on Tue, 03/22/2016 - 22:04

Ok, that explains it - the restore process doesn't include the CA cert file when the home directory isn't included. This will be fixed in the next release.

Submitted by JamieCameron on Tue, 03/22/2016 - 22:04

Status: Active ยป Fixed

Submitted by edwardsmarkf on Wed, 03/23/2016 - 20:24 Pro Licensee

i remind you that it is customary to name a bug after the person who first discovered it. since its unlikely i will ever get a comet or asteroid named after me, the best i can hope for is virtualmin issues.