Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
Problems on other RedHat linux servers / Re: TLS 1.1/1.0 deactivation
« on: Today at 01:37:41 AM »
Take a look at Sandeep's guide for Apache here:
https://www.alphagnu.com/topic/37-cwp-apache-enable-tls-13-control-web-panel/
He also has one for nginx, but I'm assuming you are after an Apache config...
https://www.alphagnu.com/topic/47-how-to-enable-tls-13-in-cwp-nginx-reverse-proxy/
https://www.alphagnu.com/topic/37-cwp-apache-enable-tls-13-control-web-panel/
He also has one for nginx, but I'm assuming you are after an Apache config...
https://www.alphagnu.com/topic/47-how-to-enable-tls-13-in-cwp-nginx-reverse-proxy/
3
PHP / Re: When will PHP 8.4 be released in CWP?
« on: April 09, 2026, 12:49:33 PM »
You could follow the guide on AlphaGNU for AlmaLinux 9 (should work on CentOS Stream 9 unless Stream has a bug, being a beta-quality OS):
https://www.alphagnu.com/topic/614-how-to-add-custom-php-fpm-84-85-support-to-cwp-on-almalinux-9x/
https://www.alphagnu.com/topic/614-how-to-add-custom-php-fpm-84-85-support-to-cwp-on-almalinux-9x/
4
Updates / Re: Roundcube vulnerability
« on: April 08, 2026, 11:23:15 PM »Anyway, the script doesn't use the function like system() or exec(). Do you run the script from PHP using system() ?I believe the error happens with the install line, using the default RC install script:
Code: [Select]
yes | "$src_dir/bin/installto.sh" "$INSTALL_DIR"So it's a bit of an outlier, but maybe you need to test for installation success before reporting it with the echo lines that follow, and maybe worth testing the actual installed version and reporting that:Code: [Select]
grep "Version " /usr/local/cwpsrv/var/services/roundcube/index.php | awk '{print $3}'
5
Updates / Re: Roundcube vulnerability
« on: April 06, 2026, 01:44:05 AM »
Script wouldn't run unless system was an allowed function for that system version of PHP (8.3 in this case). It merrily proceeded to the ending echo lines and acted as if it had done something, but there was clearly an error during execution.
6
Backup / Re: Disable User Backups
« on: April 05, 2026, 12:15:22 AM »
Uncheck the setting Backup All Users (forced)
/admin/index.php?module=backups
or look under:
/admin/index.php?module=backup_manager2
/admin/index.php?module=backups
or look under:
/admin/index.php?module=backup_manager2
7
Mod_Security / Re: After installing Mod Security, Apache cannot start
« on: April 04, 2026, 02:34:57 PM »
If you wanted to PM me your connection details, I could try to install it for you.
8
Mod_Security / Re: After installing Mod Security, Apache cannot start
« on: April 04, 2026, 12:47:05 AM »
What OS/distribution are you running? CWP-provided Mod Security version? What ruleset?
Under AlmaLinux 8, lines one and two in my /usr/local/apache/conf.d/mod_security.conf file are:
Under AlmaLinux 8, lines one and two in my /usr/local/apache/conf.d/mod_security.conf file are:
Code: [Select]
LoadFile /usr/lib64/libxml2.so
LoadFile /usr/lib64/liblua-5.1.so
9
Updates / Re: Roundcube vulnerability
« on: April 03, 2026, 02:18:35 AM »Update to the script listed here:Hi cyberspace,
http://forum.centos-webpanel.com/updates/roundcube-vulnerability/msg53064/#msg53064
Just used your script to update to 1.5.15 LTS -- on one server it worked fine, but on another server it errored out due to the system() function being disabled in that version of PHP, yet your script proceeded to report that the install had succeeded. I think you need to put some conditional logic around this code block to check for actual success before reporting success:
Code: [Select]
echo "Update completed successfully!"
echo "Now running version: $latest_version"
10
Information / Re: Installing CWP on AlmaLinux 9
« on: April 02, 2026, 02:13:49 PM »I've posted the basic setup steps here in the forums a couple times.
Here it is again, or you also have options of people that can get the basic installed for you.
You can't have any services installed before installing CWP.
So if Apache is working 'out of the box', you are installing AlmaLinux 9.4 LAMP.
That won't work.
Reimage with the bare AlmaLinux 9.5
Setup your networking, hostname, timzone.
Then:Code: [Select]dnf install dnf-plugins-coreCode: [Select]dnf install elrepo-release epel-release -yCode: [Select]dnf config-manager --set-enabled crbCode: [Select]dnf --refresh updateCode: [Select]dnf install nano wget ipset ebtables iptables ipset-service uuid uuid-devel libuuid-devel m4 pcre pcre-devel zlib-devel perl-DBD-MySQL perl-IPC-Cmd perl-Pod-Html perl-Sys-Hostname perl-libwww-perl.noarch perl-LWP-Protocol-https.noarch perl-GDGraph libtool s-nail htop sysstat python3-perf ImageMagick ImageMagick-devel nmap make quota cockpit* -yCode: [Select]dnf --refresh updateCode: [Select]dnf install clamav* clamdCode: [Select]dnf clean allCode: [Select]cd /usr/local/srcCode: [Select]wget http://centos-webpanel.com/cwp-el9-latestCode: [Select]sh cwp-el9-latestCode: [Select]dnf install spamassassin amavis
Reboot
Configure & Start CSF
UPDATE DEPENDENCIESCode: [Select]dnf install php-cli libsodium libsodium-devel php-sodium php-pecl-zip php-pecl-mailparse php-mbstring php-pear php-devel php-pecl-imagickCode: [Select]pecl channel-update pecl.php.net
To updated MariaDB follow:
https://www.alphagnu.com/topic/23-upgrade-mariadb-1011-in-cwp-centos-7-centos-8-stream-almalinux-78-rockylinux-78/
The one string to re-install MariaDB has been updated, or you'll get an error.
Run this instead:Code: [Select]dnf install MariaDB-server MariaDB-client net-snmp perl-DBD-MySQL --allowerasing
There are other steps, but everyone customizes their servers differently.
11
MySQL / Re: Allow Remote Access to MariaDB Database
« on: March 29, 2026, 12:37:17 AM »I think you an overseer live in your own bubble..."I'm forever blowing bubbles, blowing bubbles in the air..."
12
CentOS 9 Problems / Re: EL9 recent update casusing boot issue
« on: March 28, 2026, 11:26:08 PM »
I would say 4GB is a more realistic minimum for a functioning server. More is better, but that is a workable minimum for a lower traffic server.
13
Information / Re: Modernizing CWP: Drop EOL, Support AL9, AL10 & Rocky
« on: March 26, 2026, 10:38:35 PM »
"Move along, nothing to see here folks..."
(Don't even want to advertise for them by mentioning their panel's name!)
(Don't even want to advertise for them by mentioning their panel's name!)
14
MySQL / Re: Allow Remote Access to MariaDB Database
« on: March 26, 2026, 02:29:10 PM »
I think we're all saying the same thing, just coming from different angles. I wasn't correcting you or your practices (specific use case). I was just wanting to put out a "for the record" notice for the sake of other new users and those wanting to reference the forum. In a normal use case, with CWP and other web hosting environments MariaDB is limited to local socket connections for security purposes. You can open it up from there with full knowledge & intent, keeping security in the forefront of your mind.
15
MySQL / Re: Allow Remote Access to MariaDB Database
« on: March 24, 2026, 09:48:10 PM »
For the record, that is generally regarded as a poor security practice. Usually, you only want to allow localhost connections to your MariaDB database as remote access greatly increases your attack surface (and desirability as a target). Of course, you could securely tunnel in and connect that way, but better to keep it locally to a unix socket and forget remote TCP/IP connections to MariaDB.
