Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - DA_MAN

Pages: 1 [2]
16
DKIM / no signing table match for CWP hostname
« on: September 13, 2019, 11:59:40 PM »
Code: [Select]
● opendkim.service - DomainKeys Identified Mail (DKIM) Milter
   Loaded: loaded (/usr/lib/systemd/system/opendkim.service; enabled; vendor preset: disabled)
   Active: active (running) since Wed 2019-09-11 07:28:31 EDT; 1 day 15h ago
     Docs: man:opendkim(8)
           man:opendkim.conf(5)
           man:opendkim-genkey(8)
           man:opendkim-genzone(8)
           man:opendkim-testadsp(8)
           man:opendkim-testkey
           http://www.opendkim.org/docs.html
 Main PID: 2545 (opendkim)
   CGroup: /system.slice/opendkim.service
           ├─2545 /usr/sbin/opendkim -x /etc/opendkim.conf -P /var/run/opendkim/opendkim.pid
           └─2546 /usr/sbin/opendkim -x /etc/opendkim.conf -P /var/run/opendkim/opendkim.pid

Sep 12 22:45:01 argon11.example.com opendkim[2546]: 4D0F83256B: no signing table match for 'root@argon11.example.com'
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 4D0F83256B: no signature data
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 4E60C3257B: no signing table match for 'root@argon11.example.com'
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 4E60C3257B: no signature data
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 4F7AF3258A: no signing table match for 'root@argon11.example.com'
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 4F7AF3258A: no signature data
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 5080C325A5: no signing table match for 'root@argon11.example.com'
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 5080C325A5: no signature data
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 519C6325A6: no signing table match for 'root@argon11.example.com'
Sep 12 22:45:01 argon11.example.com opendkim[2546]: 519C6325A6: no signature data

I ran into this while I was trying to get SSL working properly in email. The one thing I have done is change the "/etc/postfix/main.cf" file to read like this on the bottom two lines.

Quote
smtpd_tls_CAfile = /etc/pki/tls/certs/argon11.example.com.bundle
smtp_tls_CAfile = "/etc/pki/tls/certs/argon11.example.com.bundle"

There were no entries in /etc/dovecot/dovecot.conf so I did not change anything... Though I digress this should have nothing to do with the errors in the signing table and no signature data.

Can someone help me find this bug as it is constantly writing errors in the log and I don't know what other things it might be affecting.

17
MySQL / ERROR MariaDB is running but PID file could not be found
« on: September 11, 2019, 12:33:25 AM »
Code: [Select]
# service mysqld status
 ERROR! MariaDB is running but PID file could not be found

I believe I need to add something like the following to my /etc/my.cnf file.

Code: [Select]
[mysqld]
pid-file = /path/to/where/PID/file/should/reside/mysqld.pid

But... I don't have any idea where the right place is to locate the PID file.

...and with CWP running MariaDB rather than mysql, should the PID file be "mariadb.pid"

18
Installation / Changelog
« on: September 09, 2019, 02:03:39 PM »
For those of us finding problems and posting them here in the forums for the benefit of all, it would be greatly useful and save us so much time if you published a current changelog for EVERY version update. As it stands right now, when CWP pushes an update we have to go through our list of broken features and functionality and see if the current update did anything to fix any of them.

Large amounts of time are wasted doing this! Could you please start keeping your changelog up to date for every build you push?

19
Aplications / Anyone have luck installing Nextcloud 15.02 on CWP?
« on: February 01, 2019, 10:24:25 AM »
CentOS 7, CWP v0.9.8.763 - running Apache only.

I have recompiled Apache and enabled everything I can imagine matters in httpd.conf by following the directions here:

http://forum.centos-webpanel.com/centos-7-problems/webdav-is-working-on-centos-7/msg10048/#msg10048

I still am having issues with getting Nextcloud 15.02 to run properly.

I get:
Code: [Select]
Your web server is not properly set up to resolve "/.well-known/caldav".and
Code: [Select]
Your web server is not properly set up to resolve "/.well-known/carddav".
...and ajax updates don't seem to be working on their own. Finally, I put the logging in debug and am seeing a lot of errors about Nextcloud not being able to find certain cached files (as their directory doesn't even exist.) Any help from someone with a working instance would be greatly appreciated.

It's too bad as it is so simple to configure and get running on an ordinary LAMP stack with CentOS 7.

20
Title says it all. The hide processes once set on permanent does not stay set after a reboot; it becomes disabled.

21
Installation / CWP7 cwpsrv fails first on install, fix this breaks Apache
« on: January 21, 2019, 06:58:54 PM »
Third install with the same results - utter failure. Everything works fine until you set up your first username/root domain. When you generate an SSL certificate for your root domain (while creating the first user) it breaks the webpanel - cwpsrv service crashes with a hostname certificate conflict.
Code: [Select]
Jan 21 13:33:38 helium11 systemd: Stopped CentOS Web Panel service (daemon).
Jan 21 13:33:38 helium11 systemd: Starting CentOS Web Panel service (daemon)...
Jan 21 13:33:38 helium11 cwpsrv: cwpsrv: [emerg] SL_CTX_use_PrivateKey_file("/etc/pki/tls/private/hostname.key") failed (SSL: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch)
Jan 21 13:33:38 helium11 cwpsrv: cwpsrv:configuration file /usr/local/cwpsrv/conf/cwpsrv.conf test failed
Jan 21 13:33:38 helium11 systemd: cwpsrv.service: control process exited, code=exited status=1
Jan 21 13:33:38 helium11 systemd: Failed to start CentOS Web Panel service (daemon).
Jan 21 13:33:38 helium11 systemd: Unit cwpsrv.service entered failed state.
Jan 21 13:33:38 helium11 systemd: cwpsrv.service failed.
Jan 21 13:33:44 helium11 systemd: cwpsrv.service holdoff time over, scheduling restart.
Jan 21 13:33:44 helium11 systemd: Stopped CentOS Web Panel service (daemon).
Jan 21 13:33:44 helium11 systemd: Starting CentOS Web Panel service (daemon)...
Jan 21 13:33:44 helium11 cwpsrv: cwpsrv:the configuration file /usr/local/cwpsrv/conf/cwpsrv.conf syntax is ok
Jan 21 13:33:44 helium11 cwpsrv: cwpsrv:configuration file /usr/local/cwpsrv/conf/cwpsrv.conf test is successful
Jan 21 13:33:44 helium11 systemd: Started CentOS Web Panel service (daemon).
Jan 21 13:33:47 helium11 systemd: Stopping CentOS Web Panel service (daemon)...
Jan 21 13:33:47 helium11 systemd: Stopped CentOS Web Panel service (daemon).
Jan 21 13:33:47 helium11 systemd: Starting CentOS Web Panel service (daemon)...
Jan 21 13:33:47 helium11 cwpsrv: cwpsrv:the configuration file /usr/local/cwpsrv/conf/cwpsrv.conf syntax is ok
Jan 21 13:33:47 helium11 cwpsrv: cwpsrv:configuration file /usr/local/cwpsrv/conf/cwpsrv.conf test is successful
Jan 21 13:33:47 helium11 systemd: Started CentOS Web Panel service (daemon).
Jan 21 13:35:01 helium11 systemd: Started Session 9 of user root.
Jan 21 13:35:52 helium11 systemd: Stopping Web server Apache...
Jan 21 13:35:53 helium11 systemd: Stopped Web server Apache.
Jan 21 13:35:53 helium11 systemd: Starting Web server Apache...
Jan 21 13:35:53 helium11 systemd: httpd.service: control process exited, code=exited status=1
Jan 21 13:35:53 helium11 systemd: Failed to start Web server Apache.
Jan 21 13:35:53 helium11 systemd: Unit httpd.service entered failed state.
Jan 21 13:35:53 helium11 systemd: httpd.service failed.
Jan 21 13:36:25 helium11 dbus[4436]: [system] Activating via systemd: service name='org.freedesktop.hostname1' unit='dbus-org.freedesktop.hostname1.service'
Jan 21 13:36:25 helium11 systemd: Starting Hostname Service...
Jan 21 13:36:25 helium11 dbus[4436]: [system] Successfully activated service 'org.freedesktop.hostname1'
Jan 21 13:36:25 helium11 systemd: Started Hostname Service.
Jan 21 13:36:31 helium11 systemd: Unit httpd.service cannot be reloaded because it is inactive.
Jan 21 13:36:32 helium11 systemd: Unit httpd.service cannot be reloaded because it is inactive.
Jan 21 13:36:42 helium11 systemd: Starting Web server Apache...
Jan 21 13:36:43 helium11 systemd: httpd.service: control process exited, code=exited status=1
Jan 21 13:36:43 helium11 systemd: Failed to start Web server Apache.
Jan 21 13:36:43 helium11 systemd: Unit httpd.service entered failed state.
Jan 21 13:36:43 helium11 systemd: httpd.service failed.
Jan 21 13:38:14 helium11 systemd: Unit httpd.service cannot be reloaded because it is inactive.
Jan 21 13:38:23 helium11 systemd: Starting Web server Apache...
Jan 21 13:38:24 helium11 systemd: httpd.service: control process exited, code=exited status=1
Jan 21 13:38:24 helium11 systemd: Failed to start Web server Apache.
Jan 21 13:38:24 helium11 systemd: Unit httpd.service entered failed state.
Jan 21 13:38:24 helium11 systemd: httpd.service failed.

This is a copy of the log after I ran the only thing that resolves the hostname.crt mismatch. In order to get the panel back up, I had to run:

sh /scripts/generate_hostname_ssl

This allows cwpsrv.service to start and the panel is accessible. The problem comes thereafter as you can see from my log - generating a new certificate totally breaks Apache. I have been having this problem for 2 to 3 weeks and cannot get past the breakdown of Apache. I have rebuilt vhosts and done everything I can think of and Apache stays broken.

Do you as developers ever install this panel to make sure it works properly and does not crash after you push updates? This is incredibly aggravating and makes CWP7 utterly worthless as it can only host the panel while Apache is broken.

Please ask for any logs, but none are more interesting than what I posted above and below. I just want a developer to try and install the panel and create a username who's domain is secured with SSL and see what I am describing happen before your own eyes. I am totally sick of this!!! Three weeks with no working hosting is not acceptable and experimenting time and time again just uses all of my Let's Encrypt certs until I have to wait another week before starting over just to have it break again identically.

systemctl status httpd.service -l
Code: [Select]
[root@helium11 ~]# systemctl status httpd.service -l
● httpd.service - Web server Apache
   Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since Mon 2019-01-21 14:16:27 EST; 20s ago
  Process: 20981 ExecStop=/usr/local/apache/bin/apachectl graceful-stop (code=exited, status=0/SUCCESS)
  Process: 18562 ExecReload=/usr/local/apache/bin/apachectl graceful (code=exited, status=0/SUCCESS)
  Process: 2013 ExecStart=/usr/local/apache/bin/apachectl start (code=exited, status=1/FAILURE)
 Main PID: 18977 (code=exited, status=0/SUCCESS)

Jan 21 14:16:27 srv1.mydomain.com systemd[1]: Starting Web server Apache...
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: httpd.service: control process exited, code=exited status=1
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: Failed to start Web server Apache.
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: Unit httpd.service entered failed state.
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: httpd.service failed.

journalctl -xe
Code: [Select]
-- Unit httpd.service has begun starting up.
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: httpd.service: control process exited, code=exited status=1
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: Failed to start Web server Apache.
-- Subject: Unit httpd.service has failed
-- Defined-By: systemd
-- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit httpd.service has failed.
--
-- The result is failed.
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: Unit httpd.service entered failed state.
Jan 21 14:16:27 srv1.mydomain.com systemd[1]: httpd.service failed.
Jan 21 14:17:01 srv1.mydomain.com run-parts(/etc/cron.daily)[2648]: finished maldet
Jan 21 14:17:01 srv1.mydomain.com run-parts(/etc/cron.daily)[2654]: starting man-db.cron
Jan 21 14:17:11 srv1.mydomain.com run-parts(/etc/cron.daily)[18276]: finished man-db.cron
Jan 21 14:17:11 srv1.mydomain.com run-parts(/etc/cron.daily)[18278]: starting mlocate
Jan 21 14:17:12 srv1.mydomain.com run-parts(/etc/cron.daily)[18287]: finished mlocate
Jan 21 14:17:12 srv1.mydomain.com run-parts(/etc/cron.daily)[18289]: starting rkhunter
Jan 21 14:17:34 srv1.mydomain.com kernel: perf: interrupt took too long (2521 > 2500), lowering kernel.perf_event_max_sample_rate to 79000

There is nothing in the Apache error log that is helpful - I know the configuration has failed:

Code: [Select]
[Mon Jan 21 13:20:27.891310 2019] [mpm_event:notice] [pid 18977:tid 140169689966464] AH00489: Apache/2.4.34 (Unix) OpenSSL/1.0.1e-fips configured -- resuming normal operations
[Mon Jan 21 13:20:27.891371 2019] [core:notice] [pid 18977:tid 140169689966464] AH00094: Command line: '/usr/local/apache/bin/httpd'
[Mon Jan 21 13:35:52.999279 2019] [mpm_event:notice] [pid 18977:tid 140169689966464] AH00492: caught SIGWINCH, shutting down gracefully
AH00016: Configuration Failed
AH00016: Configuration Failed
AH00016: Configuration Failed
AH00016: Configuration Failed
AH00016: Configuration Failed
AH00016: Configuration Failed
AH00016: Configuration Failed

Code: [Select]
[root@helium11 ~]# /usr/local/apache/bin/apachectl -t
Syntax OK

22
Apache / Apache Compiler does not install ssl_module (shared) on rebuild
« on: January 16, 2019, 08:04:28 PM »
When rebuilding even the same version of Apache, the module "ssl_module (shared)" is not installed despite it being set as a conditional flag in the "Additional options available:" box. (--enable-ssl=shared)

Please fix or clarify why your Apache compiler refuses to install the "ssl_module (shared)." It would seem this would break all SSL sites.

23
Mod_Security / How to disable a rule by ID
« on: January 08, 2019, 12:01:01 PM »
I cannot seem to get modsecurity to disable ID 211190 for a website. The edit rules section is not clear on how to disable a rule by ID. I know how not to do it as it crashes Apache. Also saying, "For instructions please use our forum." when there are no instructions here is pretty silly.

Like so many things documented here on the forums and in the wiki are outdated. At least I cannot find anything on the new modsecurity interface. I don't want to have to entirely disable modsecurity just because I cannot figure out how to remove rules by ID.

24
CentOS-WebPanel Bugs / Top five processes only lists four processes.
« on: December 31, 2018, 06:24:21 PM »
The title pretty well nails it. The process list on the dashboard only shows the top four rather than five processes.

25
When installing CWP7 on CentOS 7, despite the hostname already being set, the panel uses only the domain name only (ie, install authorizes "domain.com" rather than the set domain of for instance "panel.domain.com").

This is an issue the way you have Let's Encrypt SSL certificates because it fails on initial install. I know changing the hostname to what it should have been to begin with using "Change Hostname" will change the hostname (even though it reads out properly on the dashboard...) and generates a new certificate. The problem is with all of the bugs and quirks in CWP, after a couple of failed installs, the certificate maximum is reached and Let's Encrypt will no longer issue certificates for a one week period due to their rate limit.

Please make CWP actually use the entire subdomain name upon install. In fact you can only see it is incorrect in the "Change Hostname" dialogue as it reads out properly on the panel dashboard despite being set wrong in CWP.

26
I have installed CWP and everything seemed to have gone well. The problem I am having is that the root domain created when creating the first user account at /home/USERNAME/public_html, the index.html is not what is getting read. I replaced it and continue to get the default CWP banner page rather than my index.html.

Server is set up properly and NAT'ed.

It just acts as if it is loading the banner page from someplace other than at /home/USERNAME/public_html/index.html.

27
Information / CWP version 0.9.8.744 totally broken.
« on: December 05, 2018, 07:01:28 PM »
There is a login issue with the new version of the panel. You cannot access anything on the page and it redirects you to the standard login when (if) you try to click on anything. This is a terminal problem for the panel.


Pages: 1 [2]