Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Postfix / Re: /var/log/maillog -No data update when mail incoming and outgoing
« on: January 05, 2016, 02:12:33 PM »
You can solve this issue with delete maillog file and restart rsyslog service:
Code: [Select]
cd /var/log/
rm -f maillog
service rsyslog restart
service postfix restart
2
Postfix / How to bypass this error : admin@ - (bad address syntax)
« on: January 05, 2016, 02:01:07 PM »
How to bypass this error?
My maillog file :
Jan 5 15:39:42 server postfix/smtpd[23815]: connect from unknown[116.249.127.226]
Jan 5 15:39:53 server postfix/smtpd[23815]: warning: unknown[116.249.127.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan 5 15:39:53 server postfix/smtpd[23815]: lost connection after AUTH from unknown[116.249.127.226]
Jan 5 15:39:53 server postfix/smtpd[23815]: disconnect from unknown[116.249.127.226]
Jan 5 15:39:54 server postfix/smtpd[23851]: warning: 116.249.127.226: hostname 226.127.249.116.broad.km.yn.dynamic.163data.com.cn verification failed: Name or service not known
Jan 5 15:39:54 server postfix/smtpd[23851]: connect from unknown[116.249.127.226]
Jan 5 15:39:56 server postfix/qmgr[14430]: DF2971CC035A: from=<root@myserver.net>, size=38964, nrcpt=1 (queue active)
Jan 5 15:39:56 server postfix/error[24755]: DF2971CC035A: to=<admin@>, relay=none, delay=319790, delays=319790/0.01/0/0.05, dsn=4.1.3, status=SOFTBOUNCE (bad address syntax)
Jan 5 15:40:02 server postfix/pickup[19587]: 8B9361CC1E29: uid=0 from=<root>
My maillog file :
Jan 5 15:39:42 server postfix/smtpd[23815]: connect from unknown[116.249.127.226]
Jan 5 15:39:53 server postfix/smtpd[23815]: warning: unknown[116.249.127.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan 5 15:39:53 server postfix/smtpd[23815]: lost connection after AUTH from unknown[116.249.127.226]
Jan 5 15:39:53 server postfix/smtpd[23815]: disconnect from unknown[116.249.127.226]
Jan 5 15:39:54 server postfix/smtpd[23851]: warning: 116.249.127.226: hostname 226.127.249.116.broad.km.yn.dynamic.163data.com.cn verification failed: Name or service not known
Jan 5 15:39:54 server postfix/smtpd[23851]: connect from unknown[116.249.127.226]
Jan 5 15:39:56 server postfix/qmgr[14430]: DF2971CC035A: from=<root@myserver.net>, size=38964, nrcpt=1 (queue active)
Jan 5 15:39:56 server postfix/error[24755]: DF2971CC035A: to=<admin@>, relay=none, delay=319790, delays=319790/0.01/0/0.05, dsn=4.1.3, status=SOFTBOUNCE (bad address syntax)
Jan 5 15:40:02 server postfix/pickup[19587]: 8B9361CC1E29: uid=0 from=<root>
3
CentOS-WebPanel GUI / Re: I can't list and cant' create databases on the cwp since mysql root changing
« on: December 29, 2015, 10:49:19 AM »Hi,
for the password changing use /scripts/mysql_pwd_reset script. Or, if you have already changed password, change it in two config files:Code: [Select]/usr/local/cwpsrv/htdocs/resources/admin/include/db_conn.php
/root/.my.cnf
Thank you very much "mysql_pwd_reset script" is solved my issue.
Happy Forums!.
Happy New Years!
4
CentOS-WebPanel GUI / I can't list and cant' create databases on the cwp since mysql root changing
« on: December 28, 2015, 08:10:04 AM »
Please help me;
Recently i changed mysql root password
due to wordpress exploits, i changed database settings db config file on include directory, but cwp database modules doesn't working.
I can't list and can't create databases.
Its redirecting to database showing page after creating database not giving any error and database list is empty please help me!
Recently i changed mysql root password
due to wordpress exploits, i changed database settings db config file on include directory, but cwp database modules doesn't working.
I can't list and can't create databases.
Its redirecting to database showing page after creating database not giving any error and database list is empty please help me!
5
Apache / Re: How to turn off server signature on web server?
« on: December 11, 2015, 07:12:16 AM »http://prntscr.com/96vgah
This information could help an attacker determine which attack vectors the attacker are to use when targeting the system, and i dont want that!
1) Login Cwp and go to Apache Settings / Apache Configuration .
2) Add the following two lines at the end of Apache config file in editor :
ServerSignature Off
ServerTokens Prod
3) Login to ssh and restart apache with "service httpd restart"
4) See changes in : http://seositecheckup.com/tools/server-signature-test
6
Information / Activating gzip,mod_deflate and enabling caching on Apache
« on: December 10, 2015, 04:42:09 PM »
If you want to optimize your website and for increasing seo score:
Login Centos Web Panel,Goto Apache Settings/ Apache vHosts Template and Insert the following Lines :
1) Activating gzip and compressing css, images and js files with mod_deflate on Apache
Find this lines :
<Directory "%homedir%/%username%/public_html">
AllowOverride All
*Add after: (Ensure, this lines should be between "<Directory> </Directory>"
<IfModule mod_mime.c>
AddType application/x-javascript .js
AddType text/css .css
</IfModule>
<IfModule mod_deflate.c>
AddOutputFilterByType DEFLATE text/css application/x-javascript text/x-component text/html text/plain text/xml application/javascript
<IfModule mod_setenvif.c>
BrowserMatch ^Mozilla/4 gzip-only-text/html
BrowserMatch ^Mozilla/4.0[678] no-gzip
BrowserMatch MSIE !no-gzip !gzip-only-text/html
</IfModule>
</IfModule>
2) Make Browsers Cache Static Files With mod_expires On Apache
Insert this line :
<IfModule mod_expires.c>
ExpiresActive on
ExpiresByType image/jpg "access plus 1 month"
ExpiresByType image/jpeg "access plus 1 month"
ExpiresByType image/gif "access plus 1 month"
ExpiresByType image/png "access plus 1 month"
</IfModule>
Preview:
Now we should click "Rebuild Virtual Hosts", then click "Rebuild All Virtual Hosts for activating changes on the all websites:
All ok.
You can check status with this website :
http://checkgzipcompression.com/
If you want to reverse changes , you should go this folder and restore last files on ftp : /usr/local/cwp/.conf/backups/file_editor_backups/
Login Centos Web Panel,Goto Apache Settings/ Apache vHosts Template and Insert the following Lines :
1) Activating gzip and compressing css, images and js files with mod_deflate on Apache
Find this lines :
<Directory "%homedir%/%username%/public_html">
AllowOverride All
*Add after: (Ensure, this lines should be between "<Directory> </Directory>"
<IfModule mod_mime.c>
AddType application/x-javascript .js
AddType text/css .css
</IfModule>
<IfModule mod_deflate.c>
AddOutputFilterByType DEFLATE text/css application/x-javascript text/x-component text/html text/plain text/xml application/javascript
<IfModule mod_setenvif.c>
BrowserMatch ^Mozilla/4 gzip-only-text/html
BrowserMatch ^Mozilla/4.0[678] no-gzip
BrowserMatch MSIE !no-gzip !gzip-only-text/html
</IfModule>
</IfModule>
2) Make Browsers Cache Static Files With mod_expires On Apache
Insert this line :
<IfModule mod_expires.c>
ExpiresActive on
ExpiresByType image/jpg "access plus 1 month"
ExpiresByType image/jpeg "access plus 1 month"
ExpiresByType image/gif "access plus 1 month"
ExpiresByType image/png "access plus 1 month"
</IfModule>
Preview:
Now we should click "Rebuild Virtual Hosts", then click "Rebuild All Virtual Hosts for activating changes on the all websites:
All ok.
You can check status with this website :
http://checkgzipcompression.com/
If you want to reverse changes , you should go this folder and restore last files on ftp : /usr/local/cwp/.conf/backups/file_editor_backups/
7
CentOS-WebPanel GUI / How to change mysql user password from for cwp client ?
« on: December 08, 2015, 09:46:05 AM »
Please help me , I want to change mysql password without create again user.
8
Apache / Apache error log file in your public_html directory
« on: August 08, 2015, 09:30:38 AM »
If you want to see apache error.log file in your public_html or subdomain dir :
1) Login to Cwp with root account.
2) Go to Apache Settings/ Apache Vhosts Template
3) In Apache Domain Virtual Host tpl:
Add this line after (DocumentRoot "%homedir%/%username%/public_html"):
ErrorLog "%homedir%/%username%/public_html/error.log"
4) In Apache SubDomain Virtual Host tpl:
Add this line after (DocumentRoot "%path%") :
ErrorLog "%path%/error.log"
5) Click Save Changes and Go to : Rebuild Virtual Hosts and Click "Rebuild All Virtual Hosts"
6) Alright!! You can see error.log file in public_html or your subdomain_dir :
1) Login to Cwp with root account.
2) Go to Apache Settings/ Apache Vhosts Template
3) In Apache Domain Virtual Host tpl:
Add this line after (DocumentRoot "%homedir%/%username%/public_html"):
ErrorLog "%homedir%/%username%/public_html/error.log"
4) In Apache SubDomain Virtual Host tpl:
Add this line after (DocumentRoot "%path%") :
ErrorLog "%path%/error.log"
5) Click Save Changes and Go to : Rebuild Virtual Hosts and Click "Rebuild All Virtual Hosts"
6) Alright!! You can see error.log file in public_html or your subdomain_dir :
9
CentOS-WebPanel GUI / Re: Acces Problem in Amazon EC2
« on: June 23, 2015, 10:15:39 AM »
Try this commands:
service iptables stop
service httpd restart
service named restart
service cwpsrv restart
service iptables stop
service httpd restart
service named restart
service cwpsrv restart
10
Mod_Security / Not working simple web after installing mod_security (Solved)
« on: June 20, 2015, 10:25:07 AM »
I can't use webftp_simple. Showing 404 Forbidden error!
Here error_log :
Here is Solution:
1)Connect ssh and goto dir :
cd /usr/local/apache/modsecurity-crs/base_rules/
2) Open file
nano modsecurity_crs_45_trojans.conf
3)
Press ctrl+w (Find) and press ctrl + t (Gotoline), Enter number: 35, and delete this line (Start From [Secrule] to " " ).
press ctr+x and press y for saving file.
4) Restart apache :
service httpd restart
Here error_log :
Code: [Select]
[Sat Jun 20 13:36:22 2015] [error] [client 185.59.46.239] ModSecurity: Access denied with code 403 (phase 4). Pattern match "(?:<title>[^<]*?(?:\\\\b(?:(?:c(?:ehennemden|gi-telnet)|gamma web shell)\\\\b|imhabirligi phpftp)|(?:r(?:emote explorer|57shell)|aventis klasvayv|zehir)\\\\b|\\\\.::(?:news remote php shell injection::\\\\.| rhtools\\\\b)|ph(?:p(?:(?: commander|-terminal)\\\\b|remot ..." at RESPONSE_BODY. [file "/usr/local/apache/modsecurity-crs/base_rules/modsecurity_crs_45_trojans.conf"] [line "35"] [id "950922"] [rev "2"] [msg "Backdoor access"] [data "Matched Data: drwxr found within RESPONSE_BODY: <!DOCTYPE html PUBLIC \\x22-//W3C//DTD XHTML 1.0 Strict//EN\\x22 \\x22http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\\x22>\\x0d\\x0a<html>\\x0d\\x0a<head>\\x0d\\x0a\\x09<title>FTP v1.4.5</title>\\x0d\\x0a\\x09<link href=\\x22style.css\\x22 rel=\\x22stylesheet\\x22 type=\\x22text/css\\x22>\\x0d\\x0a\\x09<link href=\\x22skins/monsta.css\\x22 rel=\\x22stylesheet\\x22 type=\\x22text/css\\x22>\\x0d\\x0a\\x09<meta http-equiv=\\x22Content-Type\\x22 content=\\x22text/html; charset=utf-8\\x22>\\x0d\\..."] [severity "CRITICAL"] [ve [hostname "erdalbilisim.net"] [uri "/webftp_simple/index.php"] [unique_id "VYVCJrk7Lu8AAExwHcUAAAAI"]Here is Solution:
1)Connect ssh and goto dir :
cd /usr/local/apache/modsecurity-crs/base_rules/
2) Open file
nano modsecurity_crs_45_trojans.conf
3)
Press ctrl+w (Find) and press ctrl + t (Gotoline), Enter number: 35, and delete this line (Start From [Secrule] to " " ).
press ctr+x and press y for saving file.
4) Restart apache :
service httpd restart
11
Postfix / Please Solve this issue with next update
« on: June 20, 2015, 10:02:43 AM »
I can't receive any mail after rebuild postfix with amavisd+spamassassin.
I researched postfix logs and ı find error. Because centos web panel changing lines with incorrect lines.
postfix/smtpd[9910]: warning: unknown smtpd restriction: "reject_rbl_clientzen.spamhaus.org"
I changed this line with below line and my issue solved:
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination,reject_non_fqdn_sender,reject_non_fqdn_recipient,reject_unknown_recipient_domain,reject_rbl_client zen.spamhaus.org,reject_rbl_client bl.spamcop.net,reject_rbl_client
Should "reject_rbl_client zen.spamhaus.org" not "reject_rbl_clientzen.spamhaus.org"
Please Solve this issue, with next update!!
I researched postfix logs and ı find error. Because centos web panel changing lines with incorrect lines.
postfix/smtpd[9910]: warning: unknown smtpd restriction: "reject_rbl_clientzen.spamhaus.org"
I changed this line with below line and my issue solved:
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination,reject_non_fqdn_sender,reject_non_fqdn_recipient,reject_unknown_recipient_domain,reject_rbl_client zen.spamhaus.org,reject_rbl_client bl.spamcop.net,reject_rbl_client
Should "reject_rbl_client zen.spamhaus.org" not "reject_rbl_clientzen.spamhaus.org"
Please Solve this issue, with next update!!
12
Postfix / Re: AntiSpam/AntiVirus Problem[SOLVED]
« on: June 20, 2015, 09:55:11 AM »
Connect to ssh ,and go to /etc/postfix/ dir.
Edit smtpd_recipient_restrictions line with the following line in main.cf :
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination,reject_non_fqdn_sender,reject_non_fqdn_recipient,reject_unknown_recipient_domain,reject_rbl_client zen.spamhaus.org,reject_rbl_client bl.spamcop.net,reject_rbl_client
Should "reject_rbl_client zen.spamhaus.org" not "reject_rbl_clientzen.spamhaus.org"
Edit smtpd_recipient_restrictions line with the following line in main.cf :
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination,reject_non_fqdn_sender,reject_non_fqdn_recipient,reject_unknown_recipient_domain,reject_rbl_client zen.spamhaus.org,reject_rbl_client bl.spamcop.net,reject_rbl_client
Should "reject_rbl_client zen.spamhaus.org" not "reject_rbl_clientzen.spamhaus.org"
13
Mod_Security / Re: Wordpress does not work after activate the Mod Security
« on: June 20, 2015, 08:48:07 AM »It works but you have to disable a whole lot of rules.Code: [Select]SecRuleRemoveById 981242
SecRuleRemoveById 981246
SecRuleRemoveById 981243
SecRuleRemoveById 959073
SecRuleRemoveById 958030
SecRuleRemoveById 970003
SecRuleRemoveById 981172
SecRuleRemoveById 981240
SecRuleRemoveById 981317
SecRuleRemoveById 973344
SecRuleRemoveById 981256
SecRuleRemoveById 973301
SecRuleRemoveById 981241
SecRuleRemoveById 973347
SecRuleRemoveById 981248
SecRuleRemoveById 970015
SecRuleRemoveById 950001
SecRuleRemoveById 973335
SecRuleRemoveById 973334
SecRuleRemoveById 973332
SecRuleRemoveById 981318
SecRuleRemoveById 981249
SecRuleRemoveById 981244
SecRuleRemoveById 960035
SecRuleRemoveById 960008
SecRuleRemoveById 960915
SecRuleRemoveById 950907
SecRuleRemoveById 950000
SecRuleRemoveById 981001
SecRuleRemoveById 950103
SecRuleRemoveById 960006
SecRuleRemoveById 958057
SecRuleRemoveById 959072
SecRuleRemoveById 981277
SecRuleRemoveById 910006
SecRuleRemoveById 950000
SecRuleRemoveById 950001
SecRuleRemoveById 950005
SecRuleRemoveById 950006
SecRuleRemoveById 950117
SecRuleRemoveById 950907
SecRuleRemoveById 958039
SecRuleRemoveById 958051
SecRuleRemoveById 958291
SecRuleRemoveById 959006
SecRuleRemoveById 960008
SecRuleRemoveById 960010
SecRuleRemoveById 960011
SecRuleRemoveById 960012
SecRuleRemoveById 960035
SecRuleRemoveById 960335
SecRuleRemoveById 960904
SecRuleRemoveById 960915
SecRuleRemoveById 970003
SecRuleRemoveById 970015
SecRuleRemoveById 970903
SecRuleRemoveById 973301
SecRuleRemoveById 973302
SecRuleRemoveById 973306
SecRuleRemoveById 973316
SecRuleRemoveById 973330
SecRuleRemoveById 973331
SecRuleRemoveById 973332
SecRuleRemoveById 973334
SecRuleRemoveById 973335
SecRuleRemoveById 973336
SecRuleRemoveById 973344
SecRuleRemoveById 973347
SecRuleRemoveById 981172
SecRuleRemoveById 981240
SecRuleRemoveById 981241
SecRuleRemoveById 981244
SecRuleRemoveById 981248
SecRuleRemoveById 981249
SecRuleRemoveById 981255
SecRuleRemoveById 981256
SecRuleRemoveById 981260
SecRuleRemoveById 981317
SecRuleRemoveById 981318
SecRuleRemoveById 981319
SecRuleRemoveById phpids-17
SecRuleRemoveById phpids-20
SecRuleRemoveById phpids-21
SecRuleRemoveById phpids-30
SecRuleRemoveById phpids-61
SecRuleRemoveById phpids-17
SecRuleRemoveById phpids-20
SecRuleRemoveById phpids-21
SecRuleRemoveById phpids-30
SecRuleRemoveById phpids-61
SecRuleRemoveById 958056
SecRuleRemoveById 950108
SecRuleRemoveById 958056
SecRuleRemoveById 958057
SecRuleRemoveById 959070
SecRuleRemoveById 959071
SecRuleRemoveById 959072
SecRuleRemoveById 960010
SecRuleRemoveById 960020
SecRuleRemoveById 981319
One of my wordpress caused me to disable a hell lot. But it works fine now and also all other wordpress sites are working fine (I have about 30)
Thank you very much singhdd,its working now
14
Mod_Security / Wordpress does not work after activate the Mod Security
« on: June 04, 2015, 09:22:00 AM »
I receiving error after install mod security :
403 Forbidden
My disabled rules :
## Wordpress ##
SecRuleRemoveById 981242
SecRuleRemoveById 981246
SecRuleRemoveById 981243
SecRuleRemoveById 959073
SecRuleRemoveById 958030
Centos 6.6 x86
CWP version: 0.9.8.6
How i can fix this ?
403 Forbidden
My disabled rules :
## Wordpress ##
SecRuleRemoveById 981242
SecRuleRemoveById 981246
SecRuleRemoveById 981243
SecRuleRemoveById 959073
SecRuleRemoveById 958030
Centos 6.6 x86
CWP version: 0.9.8.6
How i can fix this ?
15
PHP / I receiving Php Error in Panel Please help me !
« on: May 27, 2015, 12:53:09 PM »
I'am receiving these errors in "Cwp Panel / Messages Tab"
Notice: Undefined property: DOMDocument::$klF143geFHnAi4H4 in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 377
I am using varnish cache as a plus .
My Server Information :
CentOS release 6.6 (Final)
Server Time: Wed May 27 15:48:47 EEST
CWP version: 0.9.8.6
Apache version: Apache/2.2.27
PHP version: 5.4.27
MySQL version: 5.1.73
FTP version: 1.0.36
Notice: Undefined property: DOMDocument::$klF143geFHnAi4H4 in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 89
Notice: Trying to get property of non-object in /usr/local/cwpsrv/htdocs/resources/admin/include/phpQuery-onefile.php(1) : eval()'d code(1) : eval()'d code on line 377
I am using varnish cache as a plus .
My Server Information :
CentOS release 6.6 (Final)
Server Time: Wed May 27 15:48:47 EEST
CWP version: 0.9.8.6
Apache version: Apache/2.2.27
PHP version: 5.4.27
MySQL version: 5.1.73
FTP version: 1.0.36
Pages: [1]
