Messages

1

CentOS-WebPanel GUI / Re: force webpanel:2087 to server hostname

« on: Today at 01:38:31 AM »

I wouldn't run the non-SSL version of the admin port (be it 2030 or 2086). Another unsolicited bit of advice: change to a non-standard port for the SSL admin port instead of 2031 or 2087. Here's a guide to do that:
https://azdigi.com/blog/en/webserver-panel-en/centos-web-panel-en/how-to-change-the-port-on-centos-web-panel-cwp/

As Cyberspace mentioned, if you use Cloudflare, you could use their infrastructure to create access rules to the admin port.

Alternately, you could firewall your connection to limit incoming access with CSF. Do you connect to it via static IP so you could lock it down to allow only a handful of chosen access IPs?

2

CentOS-WebPanel GUI / Re: force webpanel:2087 to server hostname

« on: May 16, 2025, 02:25:10 PM »

Admin panel is 2087; user panel is 2083 (to match cPanel port assignments). Do you mean the admin or user panel?

3

E-Mail / Re: Spamassassin Error: cannot create user preferences file //.spamassassin/user_pre

« on: May 15, 2025, 05:56:33 PM »

That said, your server will continue to function, but yes -- best to migrate to AlmaLinux 8 and then work toward upgrading to EL9.
Meanwhile, each user on your server should have a SpamAssassin user_prefs directory. Do you see that when you run:

Code: [Select]

ls -l /home/*/.spamassassin/user_prefsPer-user prefs are based on these templates:

Code: [Select]

/usr/share/spamassassin/user_prefs.template
/var/lib/spamassassin/3.004000/updates_spamassassin_org/user_prefs.template

4

CentOS-WebPanel GUI / Re: NetworkManager errors / warnings

« on: May 15, 2025, 10:54:53 AM »

Your choice to ignore the errors or remove the root of the problem. I just gave that possibility to you in the previous post, now that we've worked out that IPv6 is indeed disabled on your system.

5

CentOS-WebPanel Bugs / Re: Text editor in File Manager

« on: May 14, 2025, 09:51:15 PM »

YES! I really have liked Sublime when I have used it. (And nano and sometimes vim on the servers themselves...)

6

SSL / Re: Probelm with renewing SSL certs

« on: May 14, 2025, 09:49:28 PM »

Read and follow certbot's documentation. https://certbot.eff.org/instructions?ws=apache&os=snap
You should run certbot from the CLI manually once to set it up, then edit the config to switch to DNS mode.

Code: [Select]

sudo certbot --apacheMy example was specifically for Cloudflare, so you may have to adapt it to your situation.

7

CentOS-WebPanel Bugs / Re: Text editor in File Manager

« on: May 14, 2025, 07:46:58 PM »

I use either VSCodium or Textadept, generally. They tend to behave fairly well! (And my complete text editor collection, that's a different story!)

8

Information / Re: Well, it's happened... RHEL 10 has been released...

« on: May 14, 2025, 07:44:30 PM »

How about after they certify CWP for EL9 first? Let's get that thing out of beta already!

9

SSL / Re: Probelm with renewing SSL certs

« on: May 14, 2025, 06:42:56 PM »

Use certbot (an ACME client) and run with a configuration like this (obtaining an API key from your DNS provider -- Cloudflare, in this example):
/etc/letsencrypt/renewal/yourdomain.com.conf

Code: [Select]

# renew_before_expiry = 30 days
version = 1.8.0
archive_dir = /etc/letsencrypt/archive/yourdomain.com
cert = /etc/letsencrypt/live/yourdomain.com/cert.pem
privkey = /etc/letsencrypt/live/yourdomain.com/privkey.pem
chain = /etc/letsencrypt/live/yourdomain.com/chain.pem
fullchain = /etc/letsencrypt/live/yourdomain.com/fullchain.pem

# Options used in the renewal process
[renewalparams]
account = YOURAPIKEYHERE
authenticator = dns-cloudflare
dns_cloudflare_propagation_seconds = 60
dns_cloudflare_credentials = /some/path/conf/yourdomain.com.key
server = https://acme-v02.api.letsencrypt.org/directoryThen you just call certbot renew in cron and it will renew your SSL cert 30 days before expiry.

10

How to / Re: [Request] How to Setup whmcs Cronjob in CWP crontab?

« on: May 14, 2025, 02:22:11 PM »

If you need a more modern version of PHP (e.g. 8.3) for your cron jobs, Starburst has a guide for building it with IonCube support here:
https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/ioncube-error-after-building-php-8-3-with-cwp-on-almalinux-8-9/

11

CentOS-WebPanel GUI / Re: NetworkManager errors / warnings

« on: May 13, 2025, 05:31:09 PM »

By default Apache will listen both on IPv6 and IPv4, as defined by the Listen directive:

Code: [Select]

Listen 80If you want to restrict it to listen on IPv4 only, change the setting to:

Code: [Select]

Listen 0.0.0.0:80Repeat for port 443 to stop Apache from listening for HTTPS connections on IPv6:

Code: [Select]

Listen 0.0.0.0:443


12

CentOS-WebPanel Bugs / Re: Text editor in File Manager

« on: May 13, 2025, 05:25:25 PM »

Thanks for the head's up!

13

SSL / Re: Probelm with renewing SSL certs

« on: May 13, 2025, 12:24:41 AM »

Is your firewall allowing in & outbound port 80? Is iptables configured similarly to this:

Code: [Select]

iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPTYou could temporarily disable the CSF firewall (csf -x) and test a renewal, either from the CWP web GUI or via Netino's script. This would tell you if it is a firewall problem, which it would appear to be.

14

CentOS-WebPanel Bugs / Re: Firewall manager Disabled Bug

« on: May 10, 2025, 05:27:04 PM »

Yes, a known bug -- if you disable or restart the firewall via the CLI, the web GUI gets out of sync with its actual state. In other words, the devs need to test if it's running and display its actual current state.

15

E-Mail / Re: ClamAV Failed

« on: May 08, 2025, 01:49:28 PM »

Looks like you have some fundamentals to set up with DNS. Choose where you want to manage your DNS -- CWP? Contabo? A DDoS resilient provider like Cloudflare? You'll need some glue records and all the basic records in place (also DKIM and SPF). At least you have a PTR record (reverse DNS) in place for your IP address, provided by Contabo.