Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - iqbalthakur

Pages: [1]
1
Addons / Re: wordpress installation
« on: October 18, 2016, 12:58:46 AM »
PLEASE ALSO  SEE the following link:-
http://forum.centos-webpanel.com/aplications/how-to-install-wordpress-to-linux-server/msg80/#msg80

[/size]This is tutorial how to install and setup word-press website on linux server with CentOS Web Panel (CWP)


Steps:
1. Create New Account from CWP under Accounts Menu
2. Create MySQL Database from CWP under SQL Services --> MySQL Manager --> Create Database and User
3. Download Wordpress installation files in users public_html folder
4.Install from SSH (do not forget to replace USERNAME with your users username)


Code: [Select]
cd /home/USERNAME/public_html/


wget http://wordpress.org/latest.tar.gz


tar xvzf latest.tar.gz


yes | cp -a wordpress/* ./
chown -R USERNAME:USERNAME *

if you want to move for  wordpress folder to extract in that folder than
Code: [Select]
mv -f wordpress/* .
Now done with wordpress installantion.So fast and easy by puTTy
after Install,if  you want to remove the following than this command:-
Code: [Select]
rm -Rf wordpress
rm -Rf latest.tar.gz


If you want to unzip any thing then try this
Code: [Select]
unzip latest.zip

2

Need to  Know! How INSTALL OpenLiteSpeed with Cent Os WebPanel


http://open.litespeedtech.com/mediawiki/


We need to know know open litespeed server.
Requesting to all experts to explain the limitations ,drawback or feature related to OpenLiteSpeed.
OpenLiteSpeed server is more powerful than apache! accourding to litespeedtech.com.


https://www.litespeedtech.com/products/litespeed-web-server/overview


In  http://wiki.centos-webpanel.com/litespeed-webserver-with-cwp
there is paid LiteSpeed server installantion !.
We need to add and options with Cent OS web panel with OpenLiteSpeed. Is it any plan for next time or future?


Waiting for reply from experts and senior.
Thanking you in advance.


3
Mod_Security / Re: Problem with embed codes
« on: October 11, 2016, 06:09:39 PM »
For wordpress.
I cannot publish post with embed code to content... :-\ :-\
plz help!

read more about mod security http://forum.centos-webpanel.com/mod_security/mod_security-config/

4
read my advice in this page
http://forum.centos-webpanel.com/mod_security/mod_security-config/
 with latest update in wordpress and with many rules related to many plugin whitelist or find the error as i told above in that page.

5
Mod_Security / Re: mod_security Config
« on: October 11, 2016, 06:04:31 PM »
Hello,

CWP very strick rule with mod_security, for newbie : can anyone suggest for mod_security configuration to run cms like wordpress,osticket etc.., with .htaccess

----
Main Configuration --> /usr/local/apache/conf.d/mod_security.conf
OWASP Configuration --> /usr/local/apache/modsecurity-crs/modsecurity_crs_10_config.conf
Disabled Rules --> /usr/local/apache/conf/mod_sec_disabled_rules.conf



you can see the log like


here sample ip is 192.168.1.1 its ur server ip [Tue Oct 11 19:25:02 2016] [error] [client 192.168.1.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/usr/local/apache/modsecurity-crs/base_rules/modsecurity_crs_30_http_policy.conf"] [line "31"] [id "960032"] [rev "2"] [msg "Method is not allowed by policy"] [data "PROPFIND"] [severity "CRITICAL"] [ver "OWASP_CRS/2.2.9"] [maturity "9"] [accuracy "9"] [tag "OWASP_CRS/POLICY/METHOD_NOT_ALLOWED"] [tag "WASCTC/WASC-15"] [tag "OWASP_TOP_10/A6"] [tag "OWASP_AppSensor/RE1"] [tag "PCI/12.1"] [hostname "192.168.1.1"] [uri "/webdav/"] [unique_id "V-zvNn8AAAEAADb8boYAAAAJ"]

in above see and find id "960032"
and go in /usr/local/apache/conf/mod_sec_disabled_rules.conf
and  ur find id code 960032
to save like
SecRuleRemoveById 960032
and restart ur
Apache Webserver
and done .but see first when uploading or when you run plugin and its error like white page or error page then log as same above error in ur mod_sec

6
Mod_Security / Re: mod_security Config
« on: October 11, 2016, 05:53:43 PM »
I find lots of problems with Mod_security with CWP Centos Web Panel after installing .
 I see after installing wordpress  there are lots of white pages or error 500
Quote
Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator at uremail@email.com to inform them of the time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

and even many wordpress plugins and themes stop working the site.

following are some common rules you can find at your CENT WEB Panel in  mod_security Config page   /index.php?module=mod_security

I find some of them and anyone can put to in this file and disable it 
/usr/local/apache/conf/mod_sec_disabled_rules.conf
or in easy way put ur ip in 192.168.1.1 here : https://192.168.1.1:2031/index.php?module=file_editor&file=/usr/local/apache/conf/mod_sec_disabled_rules.conf

with other rules put these rules for WordPress

Quote
## Rules for the CWP ##
SecRuleRemoveById 960017
SecRuleRemoveById 960015
SecRuleRemoveById 960009
########################################
## Removed Rules for Joomla, WordPress and Drupal CMSs ##
########################################
## Joomla ##
SecRuleRemoveById 960024
SecRuleRemoveById 950120
SecRuleRemoveById 981173
SecRuleRemoveById 950901
SecRuleRemoveById 981257
SecRuleRemoveById 981245
SecRuleRemoveById 973338
SecRuleRemoveById 973300
SecRuleRemoveById 973304
SecRuleRemoveById 973333
SecRuleRemoveById 973333
## Wordpress ##
SecRuleRemoveById 981242
SecRuleRemoveById 981246
SecRuleRemoveById 981243
SecRuleRemoveById 959073
SecRuleRemoveById 958030
## Drupal ##
SecRuleRemoveById 981231
## Removed rules for the webftp_simple ##
SecRuleRemoveById 950922
SecRuleRemoveById 981000
SecRuleRemoveById 950109
## phpMyAdmin ##
SecRuleRemoveById 981205
SecRuleRemoveById 970901
## SELF RULES WODPRESS ##
SecRuleRemoveById 910006
SecRuleRemoveById 950000
SecRuleRemoveById 950001
SecRuleRemoveById 950005
SecRuleRemoveById 950006
SecRuleRemoveById 950103
SecRuleRemoveById 950117
SecRuleRemoveById 950907
SecRuleRemoveById 958018
SecRuleRemoveById 958039
SecRuleRemoveById 958051
SecRuleRemoveById 958291
SecRuleRemoveById 959006
SecRuleRemoveById 960000
SecRuleRemoveById 960006
SecRuleRemoveById 960008
SecRuleRemoveById 960010
SecRuleRemoveById 960011
SecRuleRemoveById 960012
SecRuleRemoveById 960035
SecRuleRemoveById 960335
SecRuleRemoveById 960904
SecRuleRemoveById 960915
SecRuleRemoveById 970003
SecRuleRemoveById 970015
SecRuleRemoveById 970903
SecRuleRemoveById 973301
SecRuleRemoveById 973302
SecRuleRemoveById 973305
SecRuleRemoveById 973306
SecRuleRemoveById 973308
SecRuleRemoveById 973316
SecRuleRemoveById 973330
SecRuleRemoveById 973331
SecRuleRemoveById 973332
SecRuleRemoveById 973334
SecRuleRemoveById 973335
SecRuleRemoveById 973336
SecRuleRemoveById 973337
SecRuleRemoveById 973344
SecRuleRemoveById 973346
SecRuleRemoveById 973347
SecRuleRemoveById 981001
SecRuleRemoveById 981004
SecRuleRemoveById 981172
SecRuleRemoveById 981240
SecRuleRemoveById 981241
SecRuleRemoveById 981244
SecRuleRemoveById 981248
SecRuleRemoveById 981249
SecRuleRemoveById 981255
SecRuleRemoveById 981256
SecRuleRemoveById 981260
SecRuleRemoveById 981317
SecRuleRemoveById 981318
SecRuleRemoveById 981319
SecRuleRemoveById 981320
SecRuleRemoveById 959070
SecRuleRemoveById 970009
SecRuleRemoveById 981251
SecRuleRemoveById 981247
SecRuleRemoveById 970016
SecRuleRemoveById 973321
SecRuleRemoveById 960020
SecRuleRemoveById 959072
SecRuleRemoveById 950007
SecRuleRemoveById 973315

 restart Apache Webserver[/q][/font][/color] updated 11/10/2016

7
Mod_Security / ModSecurity:if Response body too large Soluation
« on: January 19, 2016, 10:56:30 AM »
If you are facing any internal server error in your website after enabling mod security  than most possibly that there is two issue
ONE OF THEM IS RESPONSE BODY TOO LARGE SOLUATION.
For Example :-
go in Centos Web Panel  CWP:- https://your Ip :2031/index.php?module=mod_security
and see........................

[Mon Jan 18 18:46:07 2016] [error] [client 192.168.1.1] ModSecurity: Output filter: Response body too large (over limit of 524288, total not specified). [hostname "example.com"] [uri "/website page path/post.php"] [unique_id "Vp15PX8AAAEAADPPMLAAAAAC"]

Than there is a Soluation for Centos Web Panel  CWP:-

open https://your IP :2031/index.php?module=file_editor&file=/usr/local/apache/conf.d/mod_security.conf
or /usr/local/apache/conf.d/mod_security.conf

YOU ARE MOST PRPROBABLY SEE THE FOLLOWING CODE:-

Code: [Select]
LoadFile /usr/lib/libxml2.so
LoadFile /usr/lib/liblua-5.1.so
LoadModule security2_module modules/mod_security2.so

<IfModule mod_security2.c>
SecPcreMatchLimit 1000000
SecPcreMatchLimitRecursion 1000000
SecDataDir logs/tmp
</IfModule>

ServerName *
AddDefaultCharset UTF-8
<IfModule mod_security2.c>
Include /usr/local/apache/modsecurity-crs/modsecurity_crs_10_config.conf
Include /usr/local/apache/modsecurity-crs/base_rules/*.conf
SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
        Include /usr/local/apache/conf/mod_sec_disabled_rules.conf
</IfModule>

IN THIS CODE  .. SEE THE LAST 3RD LAST LINES AFTER

SecRequestBodyAccess On
SecResponseBodyAccess On

PUT THESE LINES

Code: [Select]
SecResponseBodyLimit 546870912
SecRequestBodyInMemoryLimit 546870912

SAVE

AND NOW IN  RESTART APACHE  OR IN YOUR PUTTY  TERMINAL RUN THIS COMMNAD
Code: [Select]
service httpd restart

8
All The listed block ip from https://myip.ms/ and http://www.selectrealsecurity.com/public-block-lists and I made this compact  Around 1.85 Lakh IP Block.. I see that after this regular updates I feel Little Safe other than i am target of Chinese/ Russian Hacker and even one time CENT WEBPANEL hacked and full HDD Space is not accessible even I can't login To  root PANEL due to hack.
anyone can add and block list from these site.

9
iptables / Re: Execution time of large ip blacklist.txt
« on: April 19, 2015, 03:21:18 PM »
Any experience with implementing a ip blacklist.

I have gathered ip addresses of world by country.  The list of ip addesses <world X-US> is about 7mb of plain text.

Wondering about the server load and execution time to run the filter.

Any experience?
other Than your list I upload latest list of Blocked List.. its not Heavy and perfect for . in your ip may be some of them are whitelist and may be some are not updated so try to  see my link and page and download to http://forum.centos-webpanel.com/csf-firewall/download-list-of-block-ip-for-your-csf-firewall-in-csf-deny/

10
Just log with ROOT User in CENT WEB PANEL

CLICK SECURITY TAB>

CSF FIREWALL >

SEE IN BLUE COLOUR  Firewall Deny IPs and CLICK>

you will see the following file called:

/etc/csf/csf.deny

JUST PASTE THE Following List of BLOCK IPs
 in the end of your Blocked IPs

https://myip.ms/browse/blacklist/Blacklist_IP_Blacklist_IP_Addresses_Live_Database_Real-time

And Restart CSF FIREWALL
.

11
Mod_Security / Re: mod_security Config
« on: April 14, 2015, 01:54:04 AM »
I find lots of problems with Mod_security with CWP Centos Web Panel after installing .
 I see after installing wordpress  there are lots of white pages or error 500
Quote
Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator at uremail@email.com to inform them of the time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

and even many wordpress plugins and themes stop working the site.

following are some common rules you can find at your CENT WEB Panel in  mod_security Config page   /index.php?module=mod_security

I find some of them and anyone can put to in this file and disable it 
/usr/local/apache/conf/mod_sec_disabled_rules.conf
or in easy way put ur ip in 192.168.1.1 here : https://192.168.1.1:2031/index.php?module=file_editor&file=/usr/local/apache/conf/mod_sec_disabled_rules.conf

with other rules put these rules for WordPress

Quote
## SELF RULES WODPRESS ##
SecRuleRemoveById 910006
SecRuleRemoveById 950000
SecRuleRemoveById 950001
SecRuleRemoveById 950005
SecRuleRemoveById 950006
SecRuleRemoveById 950103
SecRuleRemoveById 950117
SecRuleRemoveById 950907
SecRuleRemoveById 958018
SecRuleRemoveById 958039
SecRuleRemoveById 958051
SecRuleRemoveById 958291
SecRuleRemoveById 959006
SecRuleRemoveById 960000
SecRuleRemoveById 960006
SecRuleRemoveById 960008
SecRuleRemoveById 960010
SecRuleRemoveById 960011
SecRuleRemoveById 960012
SecRuleRemoveById 960035
SecRuleRemoveById 960335
SecRuleRemoveById 960904
SecRuleRemoveById 960915
SecRuleRemoveById 970003
SecRuleRemoveById 970015
SecRuleRemoveById 970903
SecRuleRemoveById 973301
SecRuleRemoveById 973302
SecRuleRemoveById 973305
SecRuleRemoveById 973306
SecRuleRemoveById 973308
SecRuleRemoveById 973316
SecRuleRemoveById 973330
SecRuleRemoveById 973331
SecRuleRemoveById 973332
SecRuleRemoveById 973334
SecRuleRemoveById 973335
SecRuleRemoveById 973336
SecRuleRemoveById 973337
SecRuleRemoveById 973344
SecRuleRemoveById 973346
SecRuleRemoveById 973347
SecRuleRemoveById 981001
SecRuleRemoveById 981004
SecRuleRemoveById 981172
SecRuleRemoveById 981240
SecRuleRemoveById 981241
SecRuleRemoveById 981244
SecRuleRemoveById 981248
SecRuleRemoveById 981249
SecRuleRemoveById 981255
SecRuleRemoveById 981256
SecRuleRemoveById 981260
SecRuleRemoveById 981317
SecRuleRemoveById 981318
SecRuleRemoveById 981319
SecRuleRemoveById 981320
SecRuleRemoveById 959070

 updated 26/01/2016
Still I am a learner. and all about website and VPS I learn from Google.

12
Dear Sir,
I try many time to install google pagespeed module but not activated with CWP
I try from
http://www.tecmint.com/install-mod_pagespeed-website-optimizer-for-apache-in-rhel-centos-and-fedora/
and also
https://www.digitalocean.com/community/tutorials/how-to-get-started-with-mod_pagespeed-with-apache-on-a-centos-and-fedora-cloud-server
but failed to see in with CWP.
can you guide me How to configure Install mod_pagespeed (Website Optimizer) for Apache with CWP and can you plan in future to provide default mod_pagespeed with CWP.
I am waiting from reply from any other developer to guide us instructions how to configured mod_pagespeed with CWP
Thanking you in advance for your kind guidance and instructions.

Pages: [1]