Author Topic: directadmin login แล้วเด้งกลับมาหน้า login ตลอด  (Read 7694 times)

golfreeze

  • Administrator
  • Hero Member
  • *****
  • Posts: 2145
    • View Profile
    • นั่งสมาธิ สติปัฏฐานสี่ พาเที่ยววัด แนะนำวัด แจกcd ธรรมะฟรี
    • Email
directadmin login แล้วเด้งกลับมาหน้า login ตลอด
« on: พฤศจิกายน 07, 2018, 04:39:36 PM »
Login issues: Rejected session for user admin because IP (1.2.3.4) doesn't match session file (5.6.7.8)   Last Modified: Mar 25, 2018, 7:51 pm
If you're logged in, or having issues logging in, where you get booted back to the main login page, and your:
/var/log/directadmin/error.log

shows this error
Rejected session for user admin because IP (1.2.3.4) doesn't match session file (5.6.7.8)

but both IPs are yours, that's likely due to some IP rotating which can happen with proxies, mobile devices, or when a client connection uses both IPv4 and IPv6 interchangeably.

As this IP check is not commonly done with sesion based login, it is considered extra level of security, so you can disable it if you need to by adding:
disable_ip_check=1

to your /usr/local/directadmin/conf/directadmin.conf and restarting directadmin.

Related:
https://www.directadmin.com/features.php?id=443

golfreeze

  • Administrator
  • Hero Member
  • *****
  • Posts: 2145
    • View Profile
    • นั่งสมาธิ สติปัฏฐานสี่ พาเที่ยววัด แนะนำวัด แจกcd ธรรมะฟรี
    • Email
Re: directadmin login แล้วเด้งกลับมาหน้า login ตลอด
« Reply #1 on: พฤศจิกายน 07, 2018, 04:39:57 PM »
By default, the IP will be checked for each request to ensure that the caller is who he says he is.

For some clients, their IP is changed between requests, preventing them from using DA.

This feature will allow a server admin to disable the IP check for sessions.

Note that this is less secure, and you should be very cautious if you decide to use it.  Make sure that the sessions directory is not readable by anyone but the "diradmin" user or else anyone on the server would be able to read the session file and pass it as a cookie essentially logging them in as that user.

Do not enable this feature unless absolutely necessary.

default:

disable_ip_check=0

to enable:

disable_ip_check=1

in the directadmin.conf