This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1] 2
1
SSL / Re: CWP serves old SSL to Outlook 2016
« on: June 11, 2019, 01:48:16 PM »
You need to restart all mail server components for the new SSL certificates to be loaded. CWP > Email > MailServer Manager > Restart All Mail Server Services.
I've been doing this every 90 days when my LetsEncrypt certificates get renewed, because the renewal script doesn't restart the mail servers which also use those certificates.
I've been doing this every 90 days when my LetsEncrypt certificates get renewed, because the renewal script doesn't restart the mail servers which also use those certificates.
2
E-Mail / SpamAssassin daily update error
« on: June 06, 2019, 10:57:41 AM »
For several weeks, the CRON job which runs every day:
sends me back an e-mail with the following error:
Any clue what might be wrong?
I tried rebuilding the mail server (which conveniently upgraded ClamAV binary), also removing the folder with updated rules, but no idea what else may be causing this. I suspect that some updated rules are triggering the UTF issue?
Code: [Select]
/usr/share/spamassassin/sa-update.cron 2>&1 | tee -a /var/log/sa-update.log
sends me back an e-mail with the following error:
Code: [Select]
UTF-16 surrogate 0xd800 at /usr/share/perl5/vendor_perl/Pod/Simple/BlackBox.pm line 67.
UTF-16 surrogate 0xd800 at /usr/share/perl5/vendor_perl/Pod/Simple/BlackBox.pm line 67.
UTF-16 surrogate 0xd800 at /usr/share/perl5/vendor_perl/Pod/Simple/BlackBox.pm line 67.
Any clue what might be wrong?
I tried rebuilding the mail server (which conveniently upgraded ClamAV binary), also removing the folder with updated rules, but no idea what else may be causing this. I suspect that some updated rules are triggering the UTF issue?
3
Addons / Re: netdata installed by itself???
« on: May 03, 2019, 11:00:49 AM »
Have you tried accessing http://yourserverip:19999/ from another browser/device or in incognito mode, where you're not CWP authenticated? You might be in for a surprise.
I uninstalled it a few times already - came back every time during the night, when CWP updated itself. In the end I resolved with keeping it installed but turned off, binding only on localhost, and disabling all features in the (huge) configuration file. But it should not exist at all.
I uninstalled it a few times already - came back every time during the night, when CWP updated itself. In the end I resolved with keeping it installed but turned off, binding only on localhost, and disabling all features in the (huge) configuration file. But it should not exist at all.
4
Addons / Re: netdata installed by itself???
« on: May 03, 2019, 06:34:30 AM »
Apparently it is an undocumented feature that, when you click on the "Graphs" menu entry, it installs Netdata. No notification, no warning, no confirmation prompt, it just installs Netdata. And runs in, which means:
- it will now have another service adding to the load of your system
- it will spam you with e-mails every time your server does a daily backup
- it will add a public web interface to display all the server's stats and graphs, with no authentication, and showing all the configuration of your server including mount points and account usernames
Also it is now no longer possible to get rid of it. Sure, you can run the uninstaller, but then somehow CWP remembers that it's supposed to have it running, so every night when it checks for updated packages it will re-install Netdata for you.
Very comforting to know that you're in control of your server, and the software you use is properly documented and doesn't do stuff you're not aware of.
See my thread on the same topic which also is receiving "solutions" which ask ME to fix crap which shouldn't be there in the first place.
http://forum.centos-webpanel.com/how-to/how-do-i-get-rid-of-netdata/
- it will now have another service adding to the load of your system
- it will spam you with e-mails every time your server does a daily backup
- it will add a public web interface to display all the server's stats and graphs, with no authentication, and showing all the configuration of your server including mount points and account usernames
Also it is now no longer possible to get rid of it. Sure, you can run the uninstaller, but then somehow CWP remembers that it's supposed to have it running, so every night when it checks for updated packages it will re-install Netdata for you.
Very comforting to know that you're in control of your server, and the software you use is properly documented and doesn't do stuff you're not aware of.
See my thread on the same topic which also is receiving "solutions" which ask ME to fix crap which shouldn't be there in the first place.
http://forum.centos-webpanel.com/how-to/how-do-i-get-rid-of-netdata/
5
How to / Re: How do I get rid of Netdata?
« on: May 03, 2019, 06:33:11 AM »
@adamjedgar so let me get this straight, if someone brings a cat in your house and the cat starts sh*tting all over the place, by your logic the "solution" would be to ask your landlord to protect your furniture in plastic foil so that the cat doesn't make a mess? Because by my logic, the f*ing cat shouldn't be in the house to begin with.
And as a principle I don't want to need to react on stuff that happens on my physical server, and ask third parties to put protections AROUND it, just because CWP decided to force me to swallow the crap it has installed on my server.
Also, why the assumption that I use CWP on a VPS? I don't. I should be able to control my own server without requiring my host's firewall. If you consider otherwise, you need a reality check on your understanding of control, privacy, ownership and security.
And as a principle I don't want to need to react on stuff that happens on my physical server, and ask third parties to put protections AROUND it, just because CWP decided to force me to swallow the crap it has installed on my server.
Also, why the assumption that I use CWP on a VPS? I don't. I should be able to control my own server without requiring my host's firewall. If you consider otherwise, you need a reality check on your understanding of control, privacy, ownership and security.
6
How to / Re: How do I get rid of Netdata?
« on: April 22, 2019, 11:15:34 AM »it's installed only when you click on it so nobody is forcing netdata to be installed, also you have uninstaller which was mentioned several times in other topics.
#1: it doesn't say anywhere that, by clicking the link, a package will be installed.
#2: the uninstaller removes it, but then the nightly CRON job which updates CWP packages installs it again. Am I supposed to make a CRON job to uninstall it every day?
Please don't bother answering if you can't provide a meaningful, valuable information which addresses the topic.
7
How to / Re: How do I get rid of Netdata?
« on: April 20, 2019, 08:54:37 AM »
So? Any official reply on this?
Meanwhile I looked at other impact of Netdata on my system, during the 2 weeks period in which it was running.
So why tf would anyone be running such a resource-intensive monitoring app, especially without being told that it is being enforced on their systems?
Meanwhile I looked at other impact of Netdata on my system, during the 2 weeks period in which it was running.
- Context switches per second: from an average of 300 to about 1800.
CPU utilization: from 0,2-0,4% to 3-6%.
System load averages over 15 minutes: from 0,18-0,25 to 0,5-0,9. This one used to rarely exceed 0,6 peaks (during nightly backups); after Netdata
So why tf would anyone be running such a resource-intensive monitoring app, especially without being told that it is being enforced on their systems?
8
Information / Re: How to enable CWP Panel packages auto update
« on: April 20, 2019, 08:45:05 AM »
But why would you want to enable the automated (and uncontrolled) update of packages? This goes against any good practice in Change Management, whose purpose is to safeguard the well-running state of a Production system. Any change brought into the Production system should have been thoroughly tested in a Quality Assurance or Test environment, which replicates the Production system, but whose failure would not be an issue. Only after you confirmed that an update will not interfere in any way with the OS and the applications running on it, only then should that update be applied in Prod. Otherwise you assume all risks for an update to crash your site or even the server completely. And to apply those automatically, so you don't even see which packages will be installed? I see that you like to live dangerously.
9
How to / Re: How do I get rid of Netdata?
« on: April 14, 2019, 09:41:42 AM »
Correct.
1) Why did it install without asking me if I want it installed or not.
2) How can I get it out completely without Anacron daily job reinstalling it as part of the automated update of server packages.
1) Why did it install without asking me if I want it installed or not.
2) How can I get it out completely without Anacron daily job reinstalling it as part of the automated update of server packages.
10
How to / Re: How do I get rid of Netdata?
« on: April 13, 2019, 07:39:43 PM »
Netdata appeared on the server by itself a couple of weeks ago. After I uninstalled it manually, it reappeared overnight.
I'm the only admin on this server, and I did not install Netdata manually. From automated scripts point of view, only root has 4 cron jobs, which are custom defined for wordpress instances, no other users have cron jobs.
There is also the daily script which came with CWP, which checks latest CWP version and updates LFD and runs backups and all that. This is the only cause for Netdata to have been installed. After all, a new menu entry appeared in CWP for Netdata, with the marking "New", so the CWP admin interface was also updated automatically to add this feature.
Sorry, but I do not believe one second your statement that "cwp is not installing netdata automatically". It has installed the package, it has added the new entry in the CWP admin panel, and it is enforcing its installed status every night without my control.
So we get back to the big question - how come CWP determined that it can install stuff on my server without asking me, especially stuff which creates publicly accessible services with no authentication.
If CWP thinks it has full authority on my server and can install anything it wants on it, then I no longer have any trust in this software. You guys could install crypto mining software on my server overnight for all I know, just because you can. Or anything else for that matter, completely without visibility or control from the actual server owner.
I'm the only admin on this server, and I did not install Netdata manually. From automated scripts point of view, only root has 4 cron jobs, which are custom defined for wordpress instances, no other users have cron jobs.
There is also the daily script which came with CWP, which checks latest CWP version and updates LFD and runs backups and all that. This is the only cause for Netdata to have been installed. After all, a new menu entry appeared in CWP for Netdata, with the marking "New", so the CWP admin interface was also updated automatically to add this feature.
Sorry, but I do not believe one second your statement that "cwp is not installing netdata automatically". It has installed the package, it has added the new entry in the CWP admin panel, and it is enforcing its installed status every night without my control.
So we get back to the big question - how come CWP determined that it can install stuff on my server without asking me, especially stuff which creates publicly accessible services with no authentication.
If CWP thinks it has full authority on my server and can install anything it wants on it, then I no longer have any trust in this software. You guys could install crypto mining software on my server overnight for all I know, just because you can. Or anything else for that matter, completely without visibility or control from the actual server owner.
11
How to / Re: How do I get rid of Netdata?
« on: April 12, 2019, 11:43:04 AM »
I did that already, Netdata was installed again overnight by CWP's update script.
At the moment I turned off the service and removed it from autostarting, then edited the configuration file and set all "enabled = no" and limited access to localhost.
But I should be able to choose if I want this even to exist on the server, not to have it forcefully installed every time I uninstall it.
At the moment I turned off the service and removed it from autostarting, then edited the configuration file and set all "enabled = no" and limited access to localhost.
But I should be able to choose if I want this even to exist on the server, not to have it forcefully installed every time I uninstall it.
12
How to / How do I get rid of Netdata?
« on: April 11, 2019, 04:55:24 PM »
Okay, I am seriously pissed. The appearance of netdata on my server was not announced, it exposes publicly internal server configuration details (such as user accounts) without requiring any authentication on the web frontend, and who knows what other issues it has - like, predefined account password?
I want it out of my server. Right. NOW.
But, after uninstalling it manually, it was re-added overnight automatically.
How do I f*ing get this piece of s* out of my system and keep it out? I mean, who's in control of my server, me or CWP?
I want it out of my server. Right. NOW.
But, after uninstalling it manually, it was re-added overnight automatically.
How do I f*ing get this piece of s* out of my system and keep it out? I mean, who's in control of my server, me or CWP?
13
Installation / Re: increase disk space
« on: April 10, 2019, 10:49:13 PM »
Have you guys never heard of GPartEd Live CD, a bootable ISO file with a graphical user interface for one of the most advanced partition utilities out there? You can resize and rearrange partitions as needed, in order to make more room for the root partition (you just have to figure out which one it is). It will test the resize and, if everything goes well, it will perform the resize including any data movement. No need to reinstall everything just because you set insufficient storage.
Obviously, as with any serious disk operations, you should have a full backup of any important data or settings before you run this, just to be on the safe side.
And next time you install a linux machine, make your life easier and use LVM...
Obviously, as with any serious disk operations, you should have a full backup of any important data or settings before you run this, just to be on the safe side.
And next time you install a linux machine, make your life easier and use LVM...
14
How to / Re: Upgrade Roundcube in Running Versions of CWP
« on: April 10, 2019, 04:48:00 PM »
@iotivedo @sixthsense The issue is caused by the Widescreen layout, enabled by default. Change to Desktop layout in user settings and the display will be normal.
To change this as a default value in roundcube settings, edit the file
Modify the following variable from widescreen to desktop:
To change this as a default value in roundcube settings, edit the file
Code: [Select]
nano /usr/local/cwpsrv/var/services/roundcube/config/defaults.inc.php
Modify the following variable from widescreen to desktop:
Code: [Select]
// Interface layout. Default: 'widescreen'.
// 'widescreen' - three columns
// 'desktop' - two columns, preview on bottom
// 'list' - two columns, no preview
$config['layout'] = 'desktop';
15
How to / Re: [Tutorial] Installing Netdata on Centos Web Panel
« on: April 10, 2019, 04:17:41 PM »
To whom it may concern: uninstalling netdata is done with the command
You will have to answer with yes or just hitting enter on a few deletion questions during the clean-up.
I was not aware of the automated installation of this new service, just started getting e-mails from it. The worse part is that its stats page is fully exposed with no authentication on the url http://yourserverip:19999 - revealing user accounts running, storage paths and so on. Thanks for making user accounts public, now bots can hammer my server with authentication attempts knowing exactly which usernames are valid.
Code: [Select]
/usr/libexec/netdata-uninstaller.sh --yes
You will have to answer with yes or just hitting enter on a few deletion questions during the clean-up.
I was not aware of the automated installation of this new service, just started getting e-mails from it. The worse part is that its stats page is fully exposed with no authentication on the url http://yourserverip:19999 - revealing user accounts running, storage paths and so on. Thanks for making user accounts public, now bots can hammer my server with authentication attempts knowing exactly which usernames are valid.
Pages: [1] 2