Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - NFT

Pages: [1]
1
PHP / Re: CWP7.Pro Error | Unable to Login Admin Panel
« on: July 16, 2020, 09:34:25 AM »
@cynique correct that is my view also

CWP Team themselves should be SME's (Subject Matter Experts), so they should not list something that looks like a Fix, when it is a workaround, and especially not if this workaround turn off a security feature.

I am not saying the CWP Team themselves in general post "bad advice" in the forum, but a short response like
Quote
disable secure process from admin > security
Would look like a general known fix, why I add "try" as I hope that was what Sandeep meant, as I have seen multiple good advise from this SME.

I to often on the Internet have seen advice to example turn off SELINUX (https://en.wikipedia.org/wiki/Security-Enhanced_Linux) , when something are not working.
And again this should only be used temporally if needed to troubleshot an issue, to see if SELINUX has a policy that prevent something from working, then one should update the policy and get SELINUX enabled ASAP.

We have to remember people often Google issues, and read as little as possible to "solve" their issue, so when a SME tell you to just turn something off, they do not think/expect this will cause them new worse issues.

2
PHP / Re: CWP7.Pro Error | Unable to Login Admin Panel
« on: July 15, 2020, 07:08:47 AM »

Try disabling secure/hidden process from CWP admin - > security and try again.

Please stop with this bad advise, fix the issue do not remove the warnings/protection
Posted found fix here
http://forum.centos-webpanel.com/index.php?topic=9168.msg32616#msg32616

3
Do not "disable secure processes" fix the real reason, Solution, test on 2 updated CentOS 7 with CWP
https://access.redhat.com/solutions/1543343

Resolution:

    Ensure the existence of a polkitd system user & group
    Copy/paste the following 2 compound-commands to a root terminal to check for and conditionally create the user/group
   
Code: [Select]
getent group polkitd >/dev/null && echo -e "\e[1;32mpolkitd group already exists\e[0m" || { groupadd -r polkitd && echo -e "\e[1;33mAdded missing polkitd group\e[0m" || echo -e "\e[1;31mAdding polkitd group FAILED\e[0m"; }
    getent passwd polkitd >/dev/null && echo -e "\e[1;32mpolkitd user already exists\e[0m" || { useradd -r -g polkitd -d / -s /sbin/nologin -c "User for polkitd" polkitd && echo -e "\e[1;33mAdded missing polkitd user\e[0m" || echo -e "\e[1;31mAdding polkitd user FAILED\e[0m"; }

    Reset the permissions and user/group ownership for all files provided by the polkit and polkit-pkla-compat packages
    Copy/paste the following compound-command to a root terminal to check for and conditionally reset user/group perms & ownership
   
Code: [Select]
rpm -Va polkit\* && echo -e "\e[1;32mpolkit* rpm verification passed\e[0m" || { echo -e "\e[1;33mResetting polkit* rpm user/group ownership & perms\e[0m"; rpm --setugids polkit polkit-pkla-compat; rpm --setperms polkit polkit-pkla-compat; }
    Reboot
    A reboot of the machine will be required to make sure that all changes take affect and that polkit has reconnected to the dbus
   
Code: [Select]
shutdown -r now

4
Updates / percona-toolkit does not get updated to latest update
« on: July 13, 2020, 08:51:15 AM »
percona-toolkit does not get updated to latest update via standard repo or PERCONA repo servers:
had the PT-1673 bug for long, and tried to get latest update for pt-show-grants installed, but it kept saying 3.0.12, and there are a 3.0.13 release
 PT-1673     
Code: [Select]
DBD::mysql::db selectall_arrayref failed: Unknown column 'account_locked'
Then forced it to install https://repo.percona.com/yum/release/7Server/RPMS/x86_64/percona-toolkit-3.2.0-1.el7.x86_64.rpm

    CWPpro version: 0.9.8.997
    Distro Name: CentOS Linux release 7.8.2003 (Core)
    Kernel Version: 3.10.0-1127.13.1.el7.x86_64
    Platform: x86_64 vmware
    MySQL version: 10.1.45-MariaDB

Now pt-show-grants report 3.2.0, and issue PT-1673 has been fixed.

5
CentOS-WebPanel Bugs / Re: CWP update error pkttyagent:
« on: July 11, 2020, 06:16:05 AM »
Code: [Select]
Admin -> Security -> Secure Processes -> Disable Protection
security_UserProcess

Security - Hide all processes if not owned by the user [STATUS: DISABLED]

This are not a fix, but a bad workaround, as also the build-in security notifications will alert you

 
Quote
Danger: Hidden Processes - SECURITY ISSUE
Hide all processes if not owned by the user is NOT activated on your server, click here to enable it.
[/color]

6
SSL / alertandautorenewssl cron empty email []
« on: June 20, 2020, 07:48:54 AM »
Hi,

I receive daily below email, an can't find the reason.
Yes it renew my SSL certificates, but why an empty email ?

Cron <root@xxxxxx> /usr/local/cwp/php71/bin/php /usr/local/cwpsrv/htdocs/resources/admin/include/alertandautorenewssl.php
[]

7
Information / Re: CWP version 0.9.8.744 totally broken.
« on: December 05, 2018, 08:52:22 PM »
Mine now say this on almost every configuration page
Quote
High Performace WebServers Configuration
Welcome to new and advanced webservers configuration, we are now giving you the flexibility and performance unlike anything else.
- PHP-FPM Selector with the ability to run different version per domain or subdomain
- PHP-FPM with additional cache options for best performances
- Advanced WebServers, that allows you to run custom webservers with different setup per domain


and if I press skip this happens


Quote
You need to rebuild your WebServers via WebServers Manager

Done this some time a go and all my vhosts settings per website was overwritten.
So not going this path again.

How to fix ?

8
:( no responds at all
So the only respond to SMTP/Postfix issues are "Rebuild Mail Server"

9
Postfix / Postfix 4.7.1 Service unavailable - when Email Alias send mails
« on: September 09, 2018, 07:13:49 AM »
 postfix/cleanup[331]: 13E211042A72: milter-reject: END-OF-MESSAGE from localhost[127.0.0.1]: 4.7.1 Service unavailable - try again later;
Tried via Roundcube and Thunderbird, when send as and Email Account Address it works fine, and also receive fine for both the Email Account Addresses and all the Aliases. But when the same aliases try to send the 4.7.1 error happens.
Yes I have tried multiple times to run Rebuild Mailserver, and tried to create new aliases, still the same outcome.

The domains was previous added to another User Account, and then it worked fine, but for other reasons I needed to move to other User Account, and CWP did not provided this action, so removed the domains and added the again to the other account, and the readded all the Email Aliases as these was automatically removed.

Pages: [1]