Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
121
PHP / Re: PHP-FPM Running in Top 5 Resources
« on: February 05, 2022, 12:34:27 AM »
You're welcome.
I'm not an expert, but from the small research I've done, php-fpm has more features, is faster, and is more secure than CGI, only downside is it uses more memory. Don't take my word for it. Here's a good article explaining the difference:
https://chriswiegman.com/2011/10/fastcgi-vs-suphp-vs-cgi-vs-mod_php-dso/
I believe the main php (php version switcher menu) on CWP is suPHP.
For security, I wouldn't advice in using CGI unless you can lock down those features that can become a security issue, but PHP CGI on CWP can be applied to specific folders instead of an entire domain which is a cool thing to have for those users/clients who have complicated websites...
I'm not an expert, but from the small research I've done, php-fpm has more features, is faster, and is more secure than CGI, only downside is it uses more memory. Don't take my word for it. Here's a good article explaining the difference:
https://chriswiegman.com/2011/10/fastcgi-vs-suphp-vs-cgi-vs-mod_php-dso/
I believe the main php (php version switcher menu) on CWP is suPHP.
For security, I wouldn't advice in using CGI unless you can lock down those features that can become a security issue, but PHP CGI on CWP can be applied to specific folders instead of an entire domain which is a cool thing to have for those users/clients who have complicated websites...
122
Updates / Adding post-script to auto php updates?
« on: February 04, 2022, 08:27:35 PM »
I currently do not have my php-fpm auto update. I did this because I want to be there when I update it so I can run a script I made that changes some variables at php.ini to secure php. Every php update is a rebuild of php, and it resets the php.ini file.
But, if I want to enable php auto update, is there a way to add my script so it can be automatically executed at the end of a php update?
But, if I want to enable php auto update, is there a way to add my script so it can be automatically executed at the end of a php update?
123
PHP / Re: PHP-FPM Running in Top 5 Resources
« on: February 04, 2022, 06:27:59 PM »
Sorry, I may have misunderstood your previous comment.
yes, you have php cgi in /opt/alt. They are named php74 and php81 for you. PHP-FPM74 for example would be a folder named php-fpm74.
So, now we are back to square one.
If you have root access, login with SSH then install htop if it's not installed.
Run htop then press F4 to filter by word. Write "fpm" and it will show you processes with the name fpm in it. Take a look on the far right and you will see the path of where it is.
Here's an example:
Notice that CWP panel uses php-fpm 7.2.30 located in this path /usr/local/cwp/php71. DO NOT DELETE IT.
php74 php81
That is what I have installed.
yes, you have php cgi in /opt/alt. They are named php74 and php81 for you. PHP-FPM74 for example would be a folder named php-fpm74.
So, now we are back to square one.
If you have root access, login with SSH then install htop if it's not installed.
Code: [Select]
yum install htopRun htop then press F4 to filter by word. Write "fpm" and it will show you processes with the name fpm in it. Take a look on the far right and you will see the path of where it is.
Here's an example:
Notice that CWP panel uses php-fpm 7.2.30 located in this path /usr/local/cwp/php71. DO NOT DELETE IT.
124
SSL / Re: DNS Redirection problem for xxx.com with www and without it
« on: February 04, 2022, 03:54:49 PM »
it's a DNS misconfiguration you have somewhere.
on your pc, do this with cmd:
Does it show the correct IP for the website?
on your pc, do this with cmd:
Code: [Select]
nslookup xxx.comDoes it show the correct IP for the website?
125
Updates / Re: Autoupdater cause wierd problem
« on: February 04, 2022, 10:01:33 AM »
Please stop replying to three years old threads....
I believe your specific issue is only solvable by contacting CWP support
https://control-webpanel.com/contact
I believe your specific issue is only solvable by contacting CWP support
https://control-webpanel.com/contact
126
CentOS 7 Problems / Re: After centos update, all sites go to test page
« on: February 04, 2022, 09:58:02 AM »
Nothing much to do with your information. it's like you go to a car mechanic without the car and say "my car broke after I drove it".
Since we don't have access to your "car", I'd suggest you do some self diagnosing... Check your error logs and your configs.
Since we don't have access to your "car", I'd suggest you do some self diagnosing... Check your error logs and your configs.
127
PHP / Re: PHP-FPM Running in Top 5 Resources
« on: February 04, 2022, 09:54:56 AM »Thank you for reply @iraqiboy90
I see this after runningCode: [Select]ls /opt/alt
php74 php81
That is what I have installed.
This is screencap example: https://i.imgur.com/yMsYqJ0.png
Delete these folders if you like, at your own risk. Maybe a site is using one of them.
128
CentOS-WebPanel Bugs / Re: Problem with VARNISH config files .... and CWP update to new version
« on: February 03, 2022, 11:53:25 PM »1. I have created my own default-XX.vcl
2. rewrited all domains in /etc/varnish/conf.d/vhosts....
I don't understand why you repeat the same error. Are you directly modifying the files in /etc/varnish/conf.d/vhosts ??
129
CentOS-WebPanel GUI / Re: PHP opcache-xcache-apc-varnish - Cache sytem change
« on: February 03, 2022, 11:50:05 PM »
You partially have control over that when you install php with CWP, but you got some problems with your question.
xcache and apc are old (php 5.4 and older) and got replaced by the builtin Opcache.
- You should not have xcache and opcache installed on the same php installation. It will cause conflict.
- Varnish is a separate caching service and it can be "enabled" in the "GUI" only in CWP admin panel. Sadly not in UserCP as far as I am aware.
xcache and apc are old (php 5.4 and older) and got replaced by the builtin Opcache.
- You should not have xcache and opcache installed on the same php installation. It will cause conflict.
- Varnish is a separate caching service and it can be "enabled" in the "GUI" only in CWP admin panel. Sadly not in UserCP as far as I am aware.
130
PHP / Re: PHP-FPM Running in Top 5 Resources
« on: February 03, 2022, 11:16:18 PM »
php-fpm gets installed here:
Run the command above to confirm if there is any php-fpm still installed
Code: [Select]
ls /opt/altRun the command above to confirm if there is any php-fpm still installed
131
Updates / Re: yum upgrade fail in my centos with centos panel
« on: February 03, 2022, 09:47:34 PM »
CWP did some changes to the repo and your server still caches the old info, so do this:
Code: [Select]
yum clean all
132
Installation / Re: Change Domain Home Dir
« on: February 03, 2022, 07:09:06 PM »
You can, if you have access to ssh, to lock the entire folder with
but this defeats the purpose of the button in the UserCP if the user does not have access to ssh.
Code: [Select]
chattr +i folderbut this defeats the purpose of the button in the UserCP if the user does not have access to ssh.
133
Installation / Re: Change Domain Home Dir
« on: February 03, 2022, 06:53:01 PM »
Let me reply to your question by first saying that it's not a good idea to put an addon domain inside public_html. Here's why:
Let's say that you have domainONE.com created with the account. CWP forces* it into public_html folder. Now, you create an addon domain domainTWO.com and you choose it to be inside public_html, meaning public_html/domainTWO.com
Now, we already have a problem.
If someone accesses www.domainONE.com, it will work fine.
but if someone does www.domainONE.com/domainTWO.com, it will show the addon domain within domainONE. Also explained here:
https://forum.centos-webpanel.com/index.php?topic=11600.msg39622#msg39622
This is where CWP's design logic is flawed.
- The first flaw is that CWP forces the use of public_html for the main domain.
- The second flaw is that CWP allows you to put an addon domain inside public_html.
Mentioned here: https://forum.centos-webpanel.com/index.php?topic=7189.msg39661#msg39661
- The third flaw is that CWP devs have said on a thread to create a new user account for each new domain as "this is how it should be done". This is a very flawed logic for me, as I for example have 18 domains that all rewrite/redirect to the main domain. Why should I create 19 different accounts....
So, my suggestion is to accept CWP's logic and just go with it.
- Let the main domain be in /home/user/public_html, and all other addon domains be in /home/user/addonDomain.com
As for your problem with how the filesystemlock works, I did not notice it before. You are correct sir, it seems like this is a fifth design flaw.
According to this, in my understanding and hopefully how it should be interpreted, the entire /home/user should be locked, or just at least all domain folders, including addon domains.
*You can change it by adding a custom vhost template for that domain, AFTER creating the account, but you will have a lot of issues because a lot of modules relies on the main domain existing in public_html
Let's say that you have domainONE.com created with the account. CWP forces* it into public_html folder. Now, you create an addon domain domainTWO.com and you choose it to be inside public_html, meaning public_html/domainTWO.com
Now, we already have a problem.
If someone accesses www.domainONE.com, it will work fine.
but if someone does www.domainONE.com/domainTWO.com, it will show the addon domain within domainONE. Also explained here:
https://forum.centos-webpanel.com/index.php?topic=11600.msg39622#msg39622
This is where CWP's design logic is flawed.
- The first flaw is that CWP forces the use of public_html for the main domain.
- The second flaw is that CWP allows you to put an addon domain inside public_html.
Mentioned here: https://forum.centos-webpanel.com/index.php?topic=7189.msg39661#msg39661
- The third flaw is that CWP devs have said on a thread to create a new user account for each new domain as "this is how it should be done". This is a very flawed logic for me, as I for example have 18 domains that all rewrite/redirect to the main domain. Why should I create 19 different accounts....
So, my suggestion is to accept CWP's logic and just go with it.
- Let the main domain be in /home/user/public_html, and all other addon domains be in /home/user/addonDomain.com
As for your problem with how the filesystemlock works, I did not notice it before. You are correct sir, it seems like this is a fifth design flaw.
Quote
File System Lock will lock all files and folders from any changes, this will also block all uploads, file modifications and even backup restore. This will secure your website almost 100%, and it's very useful if you are the only one who modifies website. If you need to modify your website or upload new files then you need to temporary unlock your files.
According to this, in my understanding and hopefully how it should be interpreted, the entire /home/user should be locked, or just at least all domain folders, including addon domains.
*You can change it by adding a custom vhost template for that domain, AFTER creating the account, but you will have a lot of issues because a lot of modules relies on the main domain existing in public_html
134
Updates / Re: yum with CWP repos fails
« on: February 03, 2022, 09:40:00 AM »
Seems like it's fixed now. That link has been updated and the repomd.xml has been updated.
135
CentOS 7 Problems / Re: ALL WEBSITES ARE DOWN
« on: February 02, 2022, 11:02:39 PM »Hi thank you for the immediate reply.. Iam using ultra VNC it was very tuff to copy and past the line so i manually need to enter each letter over there finally inter three command and restart is remaining before restart iam posting the screenshot below.Do this:Code: [Select]getent group polkitd >/dev/null && echo -e "\e[1;32mpolkitd group already exists\e[0m" || { groupadd -r polkitd && echo -e "\e[1;33mAdded missing polkitd group\e[0m" || echo -e "\e[1;31mAdding polkitd group FAILED\e[0m"; }then this:Code: [Select]getent passwd polkitd >/dev/null && echo -e "\e[1;32mpolkitd user already exists\e[0m" || { useradd -r -g polkitd -d / -s /sbin/nologin -c "User for polkitd" polkitd && echo -e "\e[1;33mAdded missing polkitd user\e[0m" || echo -e "\e[1;31mAdding polkitd user FAILED\e[0m"; }then thisCode: [Select]rpm -Va polkit\* && echo -e "\e[1;32mpolkit* rpm verification passed\e[0m" || { echo -e "\e[1;33mResetting polkit* rpm user/group ownership & perms\e[0m"; rpm --setugids polkit polkit-pkla-compat; rpm --setperms polkit polkit-pkla-compat; }then take a screenshot and paste it here
then do this:Code: [Select]shutdown -r now
You could've possibly also put them into a file, uploaded it into the internet. Then wget it into the server and then run it with "sh filename"
By the way. The title of this thread should've been "server is down". I'm not sure this issue is CWP related as your current title would suggest, but I have seen another thread suggesting turning off "secure processes" which is a feature that can be activated through CWP, but again, this issue seems to be a hardware/software limitation/bug with the server itself. So, if you had "secure processes" enabled. Disable it.
I'm running a VPS that supports it, so I'd imagine I'm in the clear.
