Login
Register
Home
Wiki Knowledge Base
FreeDNS
Facebook
Linux Support
Control Web Panel
MENU
Home
Help
Search
Login
Register
Control Web Panel
»
WebPanel
»
Information
»
Roundcube big security issue.
« previous
next »
Print
Pages:
1
2
[
3
]
Author
Topic: Roundcube big security issue. (Read 5126 times)
0 Members and 1 Guest are viewing this topic.
cyberspace
Full Member
Posts: 417
Re: Roundcube big security issue.
«
Reply #30 on:
February 24, 2025, 12:20:24 AM »
.htaccess is server by the webservers Apache and Litespeed. CWP panel uses nginx to handle all requests coming to the panel and included services (webmail, phpmyadmin, etc). That is why .htaccess is ignored by CWP.
Anyway, if I remove the rule from:
/usr/local/cwpsrv/conf.d/webmail.conf
then I can access the logs using:
https://webmail.domain.com/logs/errors.log
same is applied for the rule from @rcschaff.
Do you have some test system and can you provide me with access to it ?
Logged
Reliable webhosting services and technical support.
Starburst
Hero Member
Posts: 1340
Re: Roundcube big security issue.
«
Reply #31 on:
February 24, 2025, 01:12:04 AM »
Sent you a DM.
Just out of curiosity I deleted the /usr/local/cwpsrv/var/services/roundcube/logs/errors.log, and it's still trying to download it form somewhere.
Not sure how I got sucked into this blackhole, it's 0113...
«
Last Edit: February 24, 2025, 01:13:43 AM by Starburst
»
Logged
6Sense
Newbie
Posts: 85
Re: Roundcube big security issue.
«
Reply #32 on:
February 27, 2025, 03:45:38 AM »
Thanks
It now presents '403 Forbidden'.
Logged
Web Design, Development & Web Hosting
https://6sense.com.au
Print
Pages:
1
2
[
3
]
« previous
next »
Control Web Panel
»
WebPanel
»
Information
»
Roundcube big security issue.