cschantz/Linux-Server-Management-Toolkit
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
dev
Linux-Server-Management-Too…/STANDALONE_CRITICAL_ISSUES.md
T
Developer 551e32444c docs: Document critical standalone server support gaps 
CRITICAL ISSUES FOUND:
1. Domain discovery broken for standalone servers
   - get_user_domains() returns empty for standalone
   - No method to find domains on non-control-panel systems
   - Shows 'Domains: 0' in detection summary

2. Log discovery completely disabled
   - build_logs_section() is empty (commented out)
   - No log file locations cached
   - Log tailing tools cannot function

IMPACT:
- Tools fail on standalone: malware-scanner, bot-analyzer, website-diagnostics
- Tools work on standalone: system-health-check, mysql-analyzer, hardware-check

CAUSE:
- No implementation for parsing Apache/Nginx configs on standalone
- No safe log discovery mechanism (was disabled due to hangs)

RECOMMENDATION:
Implement standalone domain/log discovery (11-17 hours total effort)
2026-03-19 21:21:30 -04:00

6.8 KiB
Raw Permalink Blame History

CRITICAL: Standalone Server Support Broken

Date: March 19, 2026 Severity: 🔴 CRITICAL - Toolkit cannot function on standalone servers Scope: Domain discovery, Log discovery, Analysis tools Status: IDENTIFIED - Needs implementation

The Problem

The toolkit detects standalone servers correctly but then FAILS to discover domains and logs. This means:

  • Detection shows "Standalone (no control panel)"
  • System info is displayed (OS, web server, database, PHP)
  • Domains: 0 (should show actual domains)
  • Logs: none (should show log file locations)
  • Analysis tools cannot run (they need domains/logs)

Issue #1: Domain Discovery Returns Empty

File: lib/user-manager.sh (lines 239-256) Function: get_user_domains()

Code:

get_user_domains() {
    [ -z "$1" ] && return 1
    local username="$1"

    case "$SYS_CONTROL_PANEL" in
        cpanel)
            get_cpanel_user_domains "$username"
            ;;
        plesk)
            get_plesk_user_domains "$username"
            ;;
        interworx)
            get_interworx_user_domains "$username"
            ;;
        *)
            echo ""        # ← RETURNS EMPTY FOR STANDALONE!
            ;;
    esac
}

Impact:

  • When SYS_CONTROL_PANEL="none" (standalone), this function returns nothing
  • The reference database building process in lib/reference-db.sh relies on this function
  • Result: 0 domains found for standalone servers

What Should Happen: For standalone servers, the function should:

  1. Parse Apache VirtualHost configurations
  2. Check Nginx server blocks
  3. Query Apache httpd configs for domain information
  4. Look in /etc/apache2/sites-enabled/ or /etc/httpd/conf.d/

Current Status: NOT IMPLEMENTED for standalone

Issue #2: Log Discovery Disabled

File: lib/reference-db.sh (lines 549-557) Function: build_logs_section()

Code:

build_logs_section() {
    echo "[LOGS]" >> "$SYSREF_DB"

    # Apache/Web server logs
    # Temporarily disabled - causes hangs with large log directories
    # TODO: Implement log scanning with progress indicator and limits

    echo "" >> "$SYSREF_DB"
}

Impact:

  • The entire log discovery section is disabled
  • No log file locations are cached
  • Log tailing tools cannot find logs

Why It's Disabled: Comment says "causes hangs with large log directories" - needs safe filesystem scanning with:

  • Progress indicator
  • Depth limits
  • File count limits
  • Timeout protection

Current Status: NOT IMPLEMENTED

Broken Call Chain for Standalone

Here's what happens when building the reference database for a standalone server:

build_domains_section()
  ↓
For each user in $users array:
  ↓
get_user_domains("username")  ← Returns EMPTY for standalone
  ↓
Loop processes 0 domains
  ↓
Result: Domain count = 0, No logs found

In Detail (reference-db.sh lines 325-481):

  1. Lines 336-342: Count total domains

    • Tries to access /var/cpanel/userdata/$user (doesn't exist on standalone)
    • Count returns 0

  2. Lines 345-414: cPanel-specific parsing

    • Skipped (userdata_dir doesn't exist)

  3. Lines 416-441: Fallback domain discovery

    • Calls get_user_domains()
    • Gets empty result ← CHAIN BROKEN HERE
    • Loop never executes
    • No domains processed

Impact on Tools

Tools that FAIL on standalone:

  • malware-scanner.sh (needs domains to scan)
  • bot-analyzer.sh (needs logs to analyze)
  • website-slowness-diagnostics.sh (needs domain mapping)
  • website-error-analyzer.sh (needs logs)
  • live-attack-monitor.sh (needs domain/log mapping)
  • 500-error-tracker.sh (needs logs)
  • tail-apache-access.sh (needs log paths)
  • tail-apache-error.sh (needs log paths)
  • tail-mail-log.sh (needs log paths)
  • Any tool that queries cached domains/logs

Tools that WORK on standalone:

  • system-health-check.sh
  • mysql-query-analyzer.sh
  • hardware diagnostics

What Needs to Be Implemented

For Standalone Domain Discovery:

get_standalone_user_domains() {
    local username="$1"

    # Method 1: Parse Apache VirtualHost configurations
    grep -h "ServerName\|ServerAlias" /etc/apache2/sites-enabled/* 2>/dev/null | \
        grep -i "# $username\|# apache2\|# webmaster"

    # Method 2: Parse Nginx server blocks
    grep -h "server_name" /etc/nginx/sites-enabled/* 2>/dev/null

    # Method 3: Check /home/$username/public_html for detected domains
    find /home/"$username" -maxdepth 3 -name ".htaccess" -o -name "index.php" 2>/dev/null | \
        sed "s|/home/$username/||; s|/.*||" | sort -u
}

For Standalone Log Discovery:

build_logs_section() {
    echo "[LOGS]" >> "$SYSREF_DB"

    # Find Apache access logs with safety limits
    find "$SYS_LOG_DIR" -name "*access*" -type f -mtime -30 2>/dev/null | \
        head -50 | while read -r log; do
        echo "LOG|access|$log|"
    done >> "$SYSREF_DB"

    # Find Apache error logs with safety limits
    find "$SYS_LOG_DIR" -name "*error*" -type f -mtime -30 2>/dev/null | \
        head -50 | while read -r log; do
        echo "LOG|error|$log|"
    done >> "$SYSREF_DB"

    echo "" >> "$SYSREF_DB"
}

The Discovery Status

Detection Phase: WORKING

System: Standalone (no control panel)
OS: AlmaLinux 9.7
Web Server: Apache 2.4.66
Database: MariaDB 10.6.25

Discovery Phase: BROKEN

Users: 5 (found via /etc/passwd)
Domains: 0 (NOT FOUND - broken function)
Databases: 12 (found via MySQL queries)
Logs: (NOT DISCOVERED - disabled)
WordPress: 0 (cannot search without domains/paths)

Summary

The standalone server support has a critical gap between detection and discovery:

Phase Status Notes
Detection Works Correctly identifies as "none"
Initialization Works Sets correct paths and variables
System Info Works Gathers OS, web, database info
Users Works Enumerates /etc/passwd users
Domains Broken Function returns empty for standalone
Logs Disabled Entire section commented out
WordPress Broken Cannot detect without domain paths
Tools Fail No domains/logs = tools can't run

Recommendation

PRIORITY 1: Implement standalone domain discovery

  • Parse Apache/Nginx configs
  • Check user directories for web content
  • Estimated effort: 4-6 hours

PRIORITY 2: Implement safe log discovery

  • Find logs with safety limits (depth, count, time range)
  • Add progress indicator to prevent hangs
  • Estimated effort: 5-8 hours

PRIORITY 3: Update WordPress detection

  • Use discovered domains to find WordPress installations
  • Estimated effort: 2-3 hours

Total: 11-17 hours to full standalone support

Until these are implemented, standalone servers will detect correctly but fail at discovery and cannot run analysis tools.

Reference in New Issue View Git Blame Copy Permalink