Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Information / Questions About Support Services And The Secure Kernel Installation Process
« on: October 01, 2021, 01:50:17 PM »
I just have a few questions before I sign up for support services. I'm looking at getting either the business plan or the enterprise plan. To make things easier, I'm just going to put them in a list.
- How long would the process of installing the secure kernel take? Would my server go down at all?
- Does the process wipe the server and use a fresh install, or will my data remain?
- Why would I need custom server rules? Yes, I have a few of my own custom apps, but they are fairly basic database frontends.
- Why do I want Nagios monitoring? And which one is it? I quickly glanced at their website, and saw multiple products.
- What kind of performance checks are done and how often? If there are any issues, do you fix them?
- Would everything that you do with the server make it PCI Compliant?
2
Apache / Blocking .htaccess for PCI Compliance
« on: December 07, 2020, 05:49:25 PM »
So, I recently scanned my server for PCI compliance, and it failed. One of the reasons that it failed was due to a bunch of htaccess files that contain authentication information.
Here is what the scan results state:
THREAT:
.htaccess contains authentication information.
IMPACT:
Unauthorized users can gather authentication information from this file.
SOLUTION:
Change the Apache configuration so the .htaccess file cannot be accessed via the Internet.
When I visit one of the urls they claim is giving access to .htaccess ( hn.myserver.com:2095/.htaccess ), I can access the file.
I have tried everything that I can think of to prevent this.
In httpd.conf I have this code (which was already there):
<Files ".ht*">
Require all denied
</Files>
That was in there by default, but it doesn't block access. So, I tried adding this code, as per a suggection I found, to httpd.conf:
<Files .htaccess>
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Deny from all
</IfModule>
</Files>
That also didn't block access. I read something where someone said put the above code into the .htaccess file. So, I did a search for all .htaccess file via ssh, and found the one I was pretty sure is the one hn.myserver.com:2095/.htaccess downloads at ./usr/local/cwpsrv/var/services/roundcube/. I added the code, and it still downloads. I check the file, and it did have the new code in it, so I know I found the correct one.
I also read that I can just disable .htaccess by having AllowOverride None in my httpd.conf, but it was already in my httpd.conf file, and it doesn't do anything.
So, how do I block access to these? Nothing makes sense to me!
I should also note, that I am using just straight apache 2.4.39. No Varnish or NGINX
Here is what the scan results state:
THREAT:
.htaccess contains authentication information.
IMPACT:
Unauthorized users can gather authentication information from this file.
SOLUTION:
Change the Apache configuration so the .htaccess file cannot be accessed via the Internet.
When I visit one of the urls they claim is giving access to .htaccess ( hn.myserver.com:2095/.htaccess ), I can access the file.
I have tried everything that I can think of to prevent this.
In httpd.conf I have this code (which was already there):
<Files ".ht*">
Require all denied
</Files>
That was in there by default, but it doesn't block access. So, I tried adding this code, as per a suggection I found, to httpd.conf:
<Files .htaccess>
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Deny from all
</IfModule>
</Files>
That also didn't block access. I read something where someone said put the above code into the .htaccess file. So, I did a search for all .htaccess file via ssh, and found the one I was pretty sure is the one hn.myserver.com:2095/.htaccess downloads at ./usr/local/cwpsrv/var/services/roundcube/. I added the code, and it still downloads. I check the file, and it did have the new code in it, so I know I found the correct one.
I also read that I can just disable .htaccess by having AllowOverride None in my httpd.conf, but it was already in my httpd.conf file, and it doesn't do anything.
So, how do I block access to these? Nothing makes sense to me!
I should also note, that I am using just straight apache 2.4.39. No Varnish or NGINX
3
Other / My Short Review On Pro Support
« on: June 20, 2017, 01:12:57 PM »
First off, I hope this is the right section for this.
Like I said in the title, this review will be short. I've had Pro Support for a few months now, and it is seriously freaking awesome. Every issue that I have run into, they have fixed within one day. For example, I was having issues with email. they solved the problem in just a few hours. They will also let you know what the problem is if you ask (or maybe you don't have to ask, but I always do). They are not like most of the tech support people who I have dealt with. You all know what kind of people I'm talking about. They try to act superior even though all they're doing is reading answers off of a screen. These guy don't act superior and they actually know what they are doing.
In closing, I rate the Pro Support 10/10 and definitely recommend it!!
Like I said in the title, this review will be short. I've had Pro Support for a few months now, and it is seriously freaking awesome. Every issue that I have run into, they have fixed within one day. For example, I was having issues with email. they solved the problem in just a few hours. They will also let you know what the problem is if you ask (or maybe you don't have to ask, but I always do). They are not like most of the tech support people who I have dealt with. You all know what kind of people I'm talking about. They try to act superior even though all they're doing is reading answers off of a screen. These guy don't act superior and they actually know what they are doing.
In closing, I rate the Pro Support 10/10 and definitely recommend it!!
4
PHP / Unable to install PHP 7
« on: February 03, 2017, 03:36:01 PM »
I am currently unable to install PHP 7X. I go to PHP Selector (NEW), installed the dependencies, check the PHP 7.x box, and click start compiler.
This is what the log says:
I think I need to update Autoconf, but I don't want to do anything until I get some advice.
This is what the log says:
Code: [Select]
--2017-02-03 10:15:56-- http://downloads3.ioncube.com/loader_downloads/ioncube_loaders_lin_x86-64.tar.gz
Resolving downloads3.ioncube.com... 54.231.112.178
Connecting to downloads3.ioncube.com|54.231.112.178|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 9125103 (8.7M) [application/x-tar]
Saving to: `ioncube_loaders_lin_x86-64.tar.gz'
0K .......... .......... .......... .......... .......... 0% 864K 10s
50K .......... .......... .......... .......... .......... 1% 860K 10s
100K .......... .......... .......... .......... .......... 1% 871K 10s
150K .......... .......... .......... .......... .......... 2% 1.70M 9s
200K .......... .......... .......... .......... .......... 2% 51.4M 7s
250K .......... .......... .......... .......... .......... 3% 1.68M 7s
300K .......... .......... .......... .......... .......... 3% 1.71M 6s
350K .......... .......... .......... .......... .......... 4% 1.71M 6s
400K .......... .......... .......... .......... .......... 5% 55.9M 5s
450K .......... .......... .......... .......... .......... 5% 1.74M 5s
500K .......... .......... .......... .......... .......... 6% 41.0M 5s
550K .......... .......... .......... .......... .......... 6% 1.76M 5s
600K .......... .......... .......... .......... .......... 7% 37.1M 4s
650K .......... .......... .......... .......... .......... 7% 1.78M 4s
700K .......... .......... .......... .......... .......... 8% 44.4M 4s
750K .......... .......... .......... .......... .......... 8% 82.6M 4s
800K .......... .......... .......... .......... .......... 9% 1.77M 4s
850K .......... .......... .......... .......... .......... 10% 50.6M 4s
900K .......... .......... .......... .......... .......... 10% 1.80M 4s
950K .......... .......... .......... .......... .......... 11% 48.6M 3s
1000K .......... .......... .......... .......... .......... 11% 52.4M 3s
1050K .......... .......... .......... .......... .......... 12% 152M 3s
1100K .......... .......... .......... .......... .......... 12% 1.79M 3s
1150K .......... .......... .......... .......... .......... 13% 43.1M 3s
1200K .......... .......... .......... .......... .......... 14% 89.5M 3s
1250K .......... .......... .......... .......... .......... 14% 1.84M 3s
1300K .......... .......... .......... .......... .......... 15% 55.7M 3s
1350K .......... .......... .......... .......... .......... 15% 48.4M 3s
1400K .......... .......... .......... .......... .......... 16% 93.1M 3s
1450K .......... .......... .......... .......... .......... 16% 83.2M 2s
1500K .......... .......... .......... .......... .......... 17% 1.83M 2s
1550K .......... .......... .......... .......... .......... 17% 63.3M 2s
1600K .......... .......... .......... .......... .......... 18% 57.9M 2s
1650K .......... .......... .......... .......... .......... 19% 74.8M 2s
1700K .......... .......... .......... .......... .......... 19% 1.89M 2s
1750K .......... .......... .......... .......... .......... 20% 56.9M 2s
1800K .......... .......... .......... .......... .......... 20% 62.1M 2s
1850K .......... .......... .......... .......... .......... 21% 60.4M 2s
1900K .......... .......... .......... .......... .......... 21% 83.1M 2s
1950K .......... .......... .......... .......... .......... 22% 144M 2s
2000K .......... .......... .......... .......... .......... 23% 1.85M 2s
2050K .......... .......... .......... .......... .......... 23% 87.8M 2s
2100K .......... .......... .......... .......... .......... 24% 72.9M 2s
2150K .......... .......... .......... .......... .......... 24% 63.7M 2s
2200K .......... .......... .......... .......... .......... 25% 102M 2s
2250K .......... .......... .......... .......... .......... 25% 102M 2s
2300K .......... .......... .......... .......... .......... 26% 1.87M 2s
2350K .......... .......... .......... .......... .......... 26% 83.5M 2s
2400K .......... .......... .......... .......... .......... 27% 68.1M 2s
2450K .......... .......... .......... .......... .......... 28% 84.7M 2s
2500K .......... .......... .......... .......... .......... 28% 95.7M 2s
2550K .......... .......... .......... .......... .......... 29% 123M 1s
2600K .......... .......... .......... .......... .......... 29% 1.88M 2s
2650K .......... .......... .......... .......... .......... 30% 63.7M 1s
2700K .......... .......... .......... .......... .......... 30% 150M 1s
2750K .......... .......... .......... .......... .......... 31% 60.4M 1s
2800K .......... .......... .......... .......... .......... 31% 149M 1s
2850K .......... .......... .......... .......... .......... 32% 94.2M 1s
2900K .......... .......... .......... .......... .......... 33% 125M 1s
2950K .......... .......... .......... .......... .......... 33% 1.93M 1s
3000K .......... .......... .......... .......... .......... 34% 44.5M 1s
3050K .......... .......... .......... .......... .......... 34% 91.8M 1s
3100K .......... .......... .......... .......... .......... 35% 81.7M 1s
3150K .......... .......... .......... .......... .......... 35% 148M 1s
3200K .......... .......... .......... .......... .......... 36% 87.6M 1s
3250K .......... .......... .......... .......... .......... 37% 79.4M 1s
3300K .......... .......... .......... .......... .......... 37% 152M 1s
3350K .......... .......... .......... .......... .......... 38% 1.93M 1s
3400K .......... .......... .......... .......... .......... 38% 63.3M 1s
3450K .......... .......... .......... .......... .......... 39% 88.2M 1s
3500K .......... .......... .......... .......... .......... 39% 67.6M 1s
3550K .......... .......... .......... .......... .......... 40% 125M 1s
3600K .......... .......... .......... .......... .......... 40% 99.7M 1s
3650K .......... .......... .......... .......... .......... 41% 106M 1s
3700K .......... .......... .......... .......... .......... 42% 121M 1s
3750K .......... .......... .......... .......... .......... 42% 111M 1s
3800K .......... .......... .......... .......... .......... 43% 1.85M 1s
3850K .......... .......... .......... .......... .......... 43% 87.1M 1s
3900K .......... .......... .......... .......... .......... 44% 149M 1s
3950K .......... .......... .......... .......... .......... 44% 107M 1s
4000K .......... .......... .......... .......... .......... 45% 103M 1s
4050K .......... .......... .......... .......... .......... 46% 131M 1s
4100K .......... .......... .......... .......... .......... 46% 106M 1s
4150K .......... .......... .......... .......... .......... 47% 104M 1s
4200K .......... .......... .......... .......... .......... 47% 125M 1s
4250K .......... .......... .......... .......... .......... 48% 2.03M 1s
4300K .......... .......... .......... .......... .......... 48% 30.6M 1s
4350K .......... .......... .......... .......... .......... 49% 97.6M 1s
4400K .......... .......... .......... .......... .......... 49% 130M 1s
4450K .......... .......... .......... .......... .......... 50% 129M 1s
4500K .......... .......... .......... .......... .......... 51% 87.2M 1s
4550K .......... .......... .......... .......... .......... 51% 138M 1s
4600K .......... .......... .......... .......... .......... 52% 125M 1s
4650K .......... .......... .......... .......... .......... 52% 82.2M 1s
4700K .......... .......... .......... .......... .......... 53% 143M 1s
4750K .......... .......... .......... .......... .......... 53% 130M 1s
4800K .......... .......... .......... .......... .......... 54% 1.98M 1s
4850K .......... .......... .......... .......... .......... 54% 54.1M 1s
4900K .......... .......... .......... .......... .......... 55% 138M 1s
4950K .......... .......... .......... .......... .......... 56% 103M 1s
5000K .......... .......... .......... .......... .......... 56% 126M 1s
5050K .......... .......... .......... .......... .......... 57% 107M 1s
5100K .......... .......... .......... .......... .......... 57% 115M 1s
5150K .......... .......... .......... .......... .......... 58% 145M 1s
5200K .......... .......... .......... .......... .......... 58% 106M 1s
5250K .......... .......... .......... .......... .......... 59% 101M 1s
5300K .......... .......... .......... .......... .......... 60% 131M 1s
5350K .......... .......... .......... .......... .......... 60% 2.00M 1s
5400K .......... .......... .......... .......... .......... 61% 52.7M 1s
5450K .......... .......... .......... .......... .......... 61% 154M 1s
5500K .......... .......... .......... .......... .......... 62% 128M 0s
5550K .......... .......... .......... .......... .......... 62% 82.5M 0s
5600K .......... .......... .......... .......... .......... 63% 101M 0s
5650K .......... .......... .......... .......... .......... 63% 67.5M 0s
5700K .......... .......... .......... .......... .......... 64% 99.9M 0s
5750K .......... .......... .......... .......... .......... 65% 88.9M 0s
5800K .......... .......... .......... .......... .......... 65% 125M 0s
5850K .......... .......... .......... .......... .......... 66% 79.4M 0s
5900K .......... .......... .......... .......... .......... 66% 96.3M 0s
5950K .......... .......... .......... .......... .......... 67% 2.18M 0s
6000K .......... .......... .......... .......... .......... 67% 38.3M 0s
6050K .......... .......... .......... .......... .......... 68% 75.3M 0s
6100K .......... .......... .......... .......... .......... 69% 155M 0s
6150K .......... .......... .......... .......... .......... 69% 90.1M 0s
6200K .......... .......... .......... .......... .......... 70% 129M 0s
6250K .......... .......... .......... .......... .......... 70% 126M 0s
6300K .......... .......... .......... .......... .......... 71% 82.1M 0s
6350K .......... .......... .......... .......... .......... 71% 90.6M 0s
6400K .......... .......... .......... .......... .......... 72% 88.6M 0s
6450K .......... .......... .......... .......... .......... 72% 108M 0s
6500K .......... .......... .......... .......... .......... 73% 158M 0s
6550K .......... .......... .......... .......... .......... 74% 80.1M 0s
6600K .......... .......... .......... .......... .......... 74% 2.23M 0s
6650K .......... .......... .......... .......... .......... 75% 37.9M 0s
6700K .......... .......... .......... .......... .......... 75% 73.0M 0s
6750K .......... .......... .......... .......... .......... 76% 84.0M 0s
6800K .......... .......... .......... .......... .......... 76% 93.0M 0s
6850K .......... .......... .......... .......... .......... 77% 155M 0s
6900K .......... .......... .......... .......... .......... 77% 108M 0s
6950K .......... .......... .......... .......... .......... 78% 101M 0s
7000K .......... .......... .......... .......... .......... 79% 132M 0s
7050K .......... .......... .......... .......... .......... 79% 82.6M 0s
7100K .......... .......... .......... .......... .......... 80% 90.6M 0s
7150K .......... .......... .......... .......... .......... 80% 127M 0s
7200K .......... .......... .......... .......... .......... 81% 132M 0s
7250K .......... .......... .......... .......... .......... 81% 136M 0s
7300K .......... .......... .......... .......... .......... 82% 107M 0s
7350K .......... .......... .......... .......... .......... 83% 2.21M 0s
7400K .......... .......... .......... .......... .......... 83% 43.9M 0s
7450K .......... .......... .......... .......... .......... 84% 93.7M 0s
7500K .......... .......... .......... .......... .......... 84% 82.8M 0s
7550K .......... .......... .......... .......... .......... 85% 83.3M 0s
7600K .......... .......... .......... .......... .......... 85% 142M 0s
7650K .......... .......... .......... .......... .......... 86% 114M 0s
7700K .......... .......... .......... .......... .......... 86% 94.4M 0s
7750K .......... .......... .......... .......... .......... 87% 126M 0s
7800K .......... .......... .......... .......... .......... 88% 142M 0s
7850K .......... .......... .......... .......... .......... 88% 74.0M 0s
7900K .......... .......... .......... .......... .......... 89% 154M 0s
7950K .......... .......... .......... .......... .......... 89% 138M 0s
8000K .......... .......... .......... .......... .......... 90% 98.9M 0s
8050K .......... .......... .......... .......... .......... 90% 107M 0s
8100K .......... .......... .......... .......... .......... 91% 138M 0s
8150K .......... .......... .......... .......... .......... 92% 2.28M 0s
8200K .......... .......... .......... .......... .......... 92% 42.1M 0s
8250K .......... .......... .......... .......... .......... 93% 82.6M 0s
8300K .......... .......... .......... .......... .......... 93% 84.5M 0s
8350K .......... .......... .......... .......... .......... 94% 118M 0s
8400K .......... .......... .......... .......... .......... 94% 104M 0s
8450K .......... .......... .......... .......... .......... 95% 138M 0s
8500K .......... .......... .......... .......... .......... 95% 85.9M 0s
8550K .......... .......... .......... .......... .......... 96% 131M 0s
8600K .......... .......... .......... .......... .......... 97% 107M 0s
8650K .......... .......... .......... .......... .......... 97% 123M 0s
8700K .......... .......... .......... .......... .......... 98% 140M 0s
8750K .......... .......... .......... .......... .......... 98% 91.2M 0s
8800K .......... .......... .......... .......... .......... 99% 149M 0s
8850K .......... .......... .......... .......... .......... 99% 106M 0s
8900K .......... . 100% 122M=0.9s
2017-02-03 10:15:57 (9.32 MB/s) - `ioncube_loaders_lin_x86-64.tar.gz' saved [9125103/9125103]
Initialized empty Git repository in /tmp/php-build/php-src/.git/
Loaded plugins: fastestmirror, security
Setting up Install Process
Loading mirror speeds from cached hostfile
* base: cosmos.illinois.edu
* extras: centos.pymesolutionsweb.com
* rpmforge: mirror.nexcess.net
* updates: centos.firehosted.com
Package gcc-4.4.7-17.el6.x86_64 already installed and latest version
Package gcc-c++-4.4.7-17.el6.x86_64 already installed and latest version
Package 1:make-3.81-23.el6.x86_64 already installed and latest version
Package openssl-devel-1.0.1e-48.el6_8.3.x86_64 already installed and latest version
Package autoconf-2.63-5.1.el6.noarch already installed and latest version
Package bison-2.4.1-5.el6.x86_64 already installed and latest version
Package git-1.7.1-4.el6_7.1.x86_64 already installed and latest version
No package checkinstall available.
Package libxml2-devel-2.7.6-21.el6_8.1.x86_64 already installed and latest version
Package libcurl-devel-7.19.7-52.el6.x86_64 already installed and latest version
Package libjpeg-turbo-devel-1.2.1-3.el6_5.x86_64 already installed and latest version
Package 2:libpng-devel-1.2.49-2.el6_7.x86_64 already installed and latest version
Package libXpm-devel-3.5.10-2.el6.x86_64 already installed and latest version
Package mysql-devel-5.1.73-8.el6_8.x86_64 is obsoleted by MariaDB-devel-10.1.21-1.el6.x86_64 which is already installed
Package postgresql-libs-8.4.20-6.el6.x86_64 already installed and latest version
Package libicu-devel-4.2.1-14.el6.x86_64 already installed and latest version
Package freetype-devel-2.3.11-17.el6.x86_64 already installed and latest version
Package libxslt-devel-1.1.26-2.el6_3.1.x86_64 already installed and latest version
Package bzip2-devel-1.0.5-7.el6_0.x86_64 already installed and latest version
Package gmp-devel-4.3.1-10.el6.x86_64 already installed and latest version
Package matching libmcrypt-devel-2.5.7-1.2.el6.rf.x86_64 already installed. Checking for update.
Package 12:aspell-devel-0.60.6-12.el6.x86_64 already installed and latest version
Package recode-devel-3.6-28.1.el6.x86_64 already installed and latest version
Resolving Dependencies
--> Running transaction check
---> Package httpd-devel.x86_64 0:2.2.15-56.el6.centos.3 will be installed
--> Processing Dependency: httpd = 2.2.15-56.el6.centos.3 for package: httpd-devel-2.2.15-56.el6.centos.3.x86_64
--> Running transaction check
---> Package httpd.x86_64 0:2.2.15-56.el6.centos.3 will be installed
--> Finished Dependency Resolution
Dependencies Resolved
================================================================================
Package Arch Version Repository Size
================================================================================
Installing:
httpd-devel x86_64 2.2.15-56.el6.centos.3 updates 156 k
Installing for dependencies:
httpd x86_64 2.2.15-56.el6.centos.3 updates 834 k
Transaction Summary
================================================================================
Install 2 Package(s)
Total download size: 990 k
Installed size: 3.5 M
Downloading Packages:
--------------------------------------------------------------------------------
Total 5.2 MB/s | 990 kB 00:00
Running rpm_check_debug
Running Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : httpd-2.2.15-56.el6.centos.3.x86_64 1/2
Installing : httpd-devel-2.2.15-56.el6.centos.3.x86_64 2/2
Verifying : httpd-2.2.15-56.el6.centos.3.x86_64 1/2
Verifying : httpd-devel-2.2.15-56.el6.centos.3.x86_64 2/2
Installed:
httpd-devel.x86_64 0:2.2.15-56.el6.centos.3
Dependency Installed:
httpd.x86_64 0:2.2.15-56.el6.centos.3
Complete!
buildconf: checking installation...
buildconf: autoconf version 2.63 (ok)
rebuilding aclocal.m4
rebuilding configure
configure.ac:276: error: Autoconf version 2.64 or higher is required
build/ax_check_compile_flag.m4:60: AX_CHECK_COMPILE_FLAG is expanded from...
autom4te: /usr/bin/m4 failed with exit status: 63
rebuilding main/php_config.h.in
configure.ac:276: error: Autoconf version 2.64 or higher is required
build/ax_check_compile_flag.m4:60: AX_CHECK_COMPILE_FLAG is expanded from...
autom4te: /usr/bin/m4 failed with exit status: 63
autoheader: '/usr/bin/autom4te' failed with exit status: 63
/usr/local/cwp/.conf/php_conf/php7.conf: line 1: ./configure: No such file or directory
make: *** No targets specified and no makefile found. Stop.
make: *** No rule to make target `install'. Stop.
Stopping httpd: [ OK ]
Starting httpd: httpd: Could not reliably determine the server's fully qualified domain name, using s100541.wholesaleinternet.net for ServerName
(98)Address already in use: make_sock: could not bind to address [::]:80
(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80
no listening sockets available, shutting down
Unable to open logs
[FAILED]
Build Completed
###################
d084527b3418a339ac15b4863183d75dI think I need to update Autoconf, but I don't want to do anything until I get some advice.
5
Postfix / ERROR: You don't have a valid hostname set!
« on: January 23, 2017, 03:23:39 PM »
Hey guys, I'm new to CWP and I need some help.
I want to switch to a new server and start using CWP, so I am currently setting up the new server. I've run into a couple of issues, but I've been able to do some searching and solve them. This issue has not answer that I can find though.
Basically, when I go to Postfix Mail Server Manager, I get the message "ERROR: You don't have a valid hostname set!" in red.
The thing is, I'm pretty sure I have my hostname set. Can anyone please help me?
I want to switch to a new server and start using CWP, so I am currently setting up the new server. I've run into a couple of issues, but I've been able to do some searching and solve them. This issue has not answer that I can find though.
Basically, when I go to Postfix Mail Server Manager, I get the message "ERROR: You don't have a valid hostname set!" in red.
The thing is, I'm pretty sure I have my hostname set. Can anyone please help me?
Pages: [1]
