Messages

46

CSF Firewall / Re: Security Alert: Potential SSH Backdoor Via Liblzma

« on: March 30, 2024, 09:59:07 PM »

I read about that:
https://www.theregister.com/2024/03/29/malicious_backdoor_xz/
No, the only EL distro affected was an unstable Fedora 40, far upstream and beta to our EL8 server OSes.

47

CWP API / Re: Delete cronjob users via API

« on: March 29, 2024, 05:12:51 PM »

Okay, I see what you're trying to accomplish. I would say the same thing re: user crontabs -- probably requires manual review before deletion. But that's just an opinion after 5 years with CWP, 15 years with cPanel before that. Most of my users don't know what a crontab is so I have very few user-level cron jobs in place on my servers. Unless you are facing buggy software that is auto-duplicating cron jobs and you are trying to de-duplicate... Care to share a concrete example?

48

CSF Firewall / Re: CWP add temporary allow ip on login control panel

« on: March 28, 2024, 06:25:19 PM »

No, just some Vietnamese site I came across once upon a time. It's in my notes for setting up a CWP server from scratch, so I point people to it as a suggestion for hardening a CWP install.

49

CWP API / Re: Delete cronjob users via API

« on: March 28, 2024, 06:23:05 PM »

I'm curious why you would delete user accounts via a cronjob? It's such a rare event on my servers that I would never automate it -- better to have the surety of manually deleting & confirming. In fact, I have ample server resources so I usually just suspend the account for at least a couple of months before coming later and cleaning up the user account. (Just in case the user returns or needs something off the account.)

50

Mod_Security / Re: test mod security..???

« on: March 28, 2024, 06:20:13 PM »

The mod_security test is simply a SQL query appended to your server URL, mimicking someone poking at your server with SQL injection attempts. It is blocking it, so it is working as designed & intended. Looks good!

51

CSF Firewall / Re: CWP add temporary allow ip on login control panel

« on: March 27, 2024, 06:19:59 PM »

Also consider changing your admin port from 2031 and/or 2087, which are commonly scanned by script kiddies. (And of course, you would NEVER use 2030 -- the port without SSL.)
https://azdigi.com/blog/en/webserver-panel-en/centos-web-panel-en/how-to-change-the-port-on-centos-web-panel-cwp/

52

Mod_Security / Re: test mod security..???

« on: March 27, 2024, 06:16:51 PM »

Why does your URL show an appended SQL query?

53

PHP / Re: 503 Service unavailable

« on: March 26, 2024, 08:52:18 PM »

Did you check (and increase) max execution time, memory limit, etc. in your php.ini?

54

CentOS 8 Problems / Re: PHP Switcher ERROR

« on: March 26, 2024, 04:52:39 PM »

Most AI bots can only churn out word salad. I say the emporer has no clothes -- pass the dressing!

55

Backup / Re: Connection test Successful FTP connection not send ftp file

« on: March 26, 2024, 02:49:38 AM »

Firewall ports open for your FTP server? Active or PASV FTP connection?

56

CentOS Configuration / Re: How to install CWP on another hard disk

« on: March 26, 2024, 02:48:20 AM »

There are many guides out there. It is just general Linux skills, not specific to CWP:
https://www.howtogeek.com/442101/how-to-move-your-linux-home-directory-to-another-hard-drive/

57

Migration from other control panels / Re: Possibility of CWP to CWP Migration

« on: March 25, 2024, 09:09:26 PM »

I use Acronis Cyber Protect Connect for remote admin of desktops & servers (ARD, RDC, VNC), so I can speak well of its infrastructure on that front -- it handily beats out LogMeIn, GoToMyPC, AnyDesk. I imagine their Cloud Backup product to be equally good, albeit pricey. I think you'd be better off $$/$$$ per month rolling your own DR (disaster recovery) server -- either on a SOHO fiber connection (I have 100Mbit symmetric) or at a data center. It all depends on your needs and available budget. But at least have SOMETHING off site to receive your backups even if it isn't viable to run a server from it, you can push the backup to an alternate remote server or whatever scenario fits your use case.

58

Migration from other control panels / Re: Possibility of CWP to CWP Migration

« on: March 24, 2024, 04:29:08 AM »

More specifics -- what are you looking to do? Selectively migrate accounts?

59

MySQL / Re: MySQL - BAD CONFIGURATION DETECTED

« on: March 24, 2024, 04:19:32 AM »

have you tuned your MySQL configuration or are you running defaults? Posting your / etc / my.cnf and version information would be helpful...

60

MySQL / Re: Started getting MySQL (database) errors. Tried updating via yum but errors

« on: March 24, 2024, 04:17:23 AM »

You should be at MariaDB 10.4 as a bare minimum. 10.6 would be better, 10.11 (LTS) would be ideal.
What is spiking your CPU? Are you watching processes with htop?