Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - PeteB

Pages: [1]

Note that the path to the image has a directory cwp_theme which does not exist.

Suggestions / 2FA with Google Authenticator
« on: August 12, 2020, 11:20:02 PM »
Hi everyone.

Thanks for the active development and supportive community.

The topic of Two Factor Authentication comes up every now and then.

I just wanted to bring it up again to see if it could be pushed towards to top of the to-do list. 

I hardly have to repeat that the environment is more hostile than a year (or two) ago, and that 2FA is quickly becoming a minimum standard when it comes to protecting Internet-facing assets.

Thanks for giving it some thought.  I hope it isn't too complicated to implement and it may be slipped into the roadmap for delivery sometime this year.

SSL / Need LetsEncrypt SSL for mail. only
« on: June 29, 2020, 03:05:49 AM »
The website is hosted on another server and the DNS CNAMEs to it.

However, I still want secure connections for mail.

The auto-generator won't work unless the A record for the website is pointing to the server.

How do I get an SSL cert for when is pointing to another server?

This becomes visible when the cert is flagged to also work for mail.[domain].  postfix starts to throw warnings about a malformed BASE64 value on the domain's private cert. 

It's happened enough times now for me to know what to do - which is to delete the cert in CWP Admin, re-create it, and restart httpd and postfix.

I suspect the cron-driven update of SSL certs needs a look to see why that causes problems while the manual creation does not.

Postfix warnings look like this:

Code: [Select]
May 17 13:33:34 x.x.x.x postfix/smtpd[11979]: warning: table hash:/etc/postfix/ key malformed BASE64 value: /etc/pki/tls/private/

E-Mail / key malformed BASE64 value
« on: April 14, 2020, 10:18:57 AM »
Code: [Select]
Apr 14 22:02:38 125-236-223-30 postfix/smtpd[11474]: connect from[]
Apr 14 22:02:39 125-236-223-30 postfix/smtpd[11474]: warning: table hash:/etc/postfix/ key malformed BASE64 value: /etc/pki/tls/private/domain.c
Apr 14 22:02:39 125-236-223-30 postfix/smtpd[11474]: warning: tls_server_sni_maps: map lookup problem
Apr 14 22:02:39 postfix/smtpd[11474]: SSL_accept error from[]: -1
Apr 14 22:02:39 postfix/smtpd[11474]: warning: TLS library problem: error:1412E0E2:SSL routines:ssl_parse_clienthello_tlsext:clienthello tlsext:t1_lib.c:2604:
Apr 14 22:02:39 postfix/smtpd[11474]: warning: TLS library problem: error:1408A0E3:SSL routines:ssl3_get_client_hello:parse tlsext:s3_srvr.c:1257:
Apr 14 22:02:39 postfix/smtpd[11474]: lost connection after STARTTLS from[]
Apr 14 22:02:39 postfix/smtpd[11474]: disconnect from[] ehlo=1 starttls=0/1 commands=1/2 replaced the actual domain, for privacy purposes. 

I've set up two accounts, and they are accessible using a mail client via IMAP.  I created an SSL cert for

I'm a bit at a loss to understand why this is happening.  Any ideas?

Suggestions / Enable/Disable goaccess web statistics per account
« on: January 16, 2020, 12:02:41 AM »
I'm running a server where site owners never need to see any site performance stats.  The intro of goaccess to provide stats via the user control panel is a very nice move.  But it is eating disk space that has nobody interested in looking at the pretty information.

At the rate of 0.3MB per day/per user, it has been increasing the size of the backups.

I can run a cron-job to erase all the files it creates in /home/<account>/cwp_stats/, but it seems to me an ON/OFF somewhere in the CPW ecosystem will be appreciated.

Many thanks.

CentOS-WebPanel Bugs / Can't delete Addon Domain using red Delete button
« on: September 12, 2019, 03:55:11 AM »
On the User control panel

Domains > Domains (List Addon Domains)

The Delete button isn't clickable

Notice: Undefined index: csrf_token in /usr/local/cwpsrv/htdocs/resources/admin/modules/csf.php on line 0

Upgraded today, and since then (but not necessarily because of it, as I have also touched other config), I get this when I click on CSF Firewall:

and this is the top of csf.php

The only other thing that I did which may be related is setting up php-fpm, which is currently in this state

Don't think it stops or breaks anything, but it may also be happening to others, so I thought I'd report it in.


Pages: [1]