Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
211
CentOS 7 Problems / Re: error 403 Forbidden
« on: April 20, 2019, 04:24:33 AM »
Chrome redirect automatically from 'http' to 'https'.
So, your site *must* be responsive too in 'https'.
This is the case..??
So, your site *must* be responsive too in 'https'.
This is the case..??
212
E-Mail / Re: CWP Email Issue
« on: April 19, 2019, 09:48:27 PM »
What tool are you using to filter spam..??
Regards,
Netino
Regards,
Netino
213
CentOS 7 Problems / Re: error 403 Forbidden
« on: April 19, 2019, 08:22:47 PM »
Error 403 is an webserver level error, just make sense to search in webserver logs.
Might be you looking at the wrong logs.
It may be that a wrong configuration can send requests to other areas, thus logging into different file logs.
If in apache virtual hosts are not being logged events, the first bet is to search in main server error log, at '/usr/local/apache/logs/error_log'.
As you are mentioning to use nginx, you must to check if the events are being logged in nginx logs.
You must check where in your configuration, normally in '/etc/nginx/nginx.conf', and the error log in '/var/log/nginx/error.log'.
Might be too your configuration is not logging events in the severity is wish.
Check the directive "error_log" in the configuration file.
Regards,
Netino
Might be you looking at the wrong logs.
It may be that a wrong configuration can send requests to other areas, thus logging into different file logs.
If in apache virtual hosts are not being logged events, the first bet is to search in main server error log, at '/usr/local/apache/logs/error_log'.
As you are mentioning to use nginx, you must to check if the events are being logged in nginx logs.
You must check where in your configuration, normally in '/etc/nginx/nginx.conf', and the error log in '/var/log/nginx/error.log'.
Might be too your configuration is not logging events in the severity is wish.
Check the directive "error_log" in the configuration file.
Regards,
Netino
214
Apache / Re: Could not Restart Apache
« on: April 18, 2019, 04:06:41 AM »
CentOS7 have a different way to logging events, due to using systemd, mainly to start/restart/stop program events.
You must post here the output of the command:
Regards,
Netino
You must post here the output of the command:
Code: [Select]
# systemctl status httpd.service
Regards,
Netino
215
SSL / Re: File that points to CWP SSLCert
« on: April 15, 2019, 12:42:27 AM »
Sorry if I really do not know if I understand your question, but the answer is:
Regards,
Netino
Code: [Select]
/etc/pki/tls/certs/hostname.crt
Regards,
Netino
216
SSL / Re: SSL on webpanel
« on: April 15, 2019, 12:36:25 AM »
Yes, but for the main host you will not need to install from CWP.
Just put in place the files:
In my case these files don't exist, I just create a symbolic link to the real files.
To create the symbolic links:
Just put in place the files:
Code: [Select]
/etc/pki/tls/certs/hostname.bundle
/etc/pki/tls/certs/hostname.crt
/etc/pki/tls/private/hostname.key
In my case these files don't exist, I just create a symbolic link to the real files.
Code: [Select]
/etc/pki/tls/certs/hostname.bundle -> /etc/pki/tls/certs/host1.panel.xwy.bundle
/etc/pki/tls/certs/hostname.crt -> /etc/pki/tls/certs/host1.panel.xwy.cert
/etc/pki/tls/private/hostname.key -> /etc/pki/tls/private/host1.panel.xwy.key
To create the symbolic links:
Code: [Select]
ln -s /etc/pki/tls/certs/host1.panel.xwy.bundle /etc/pki/tls/certs/hostname.bundle
ln -s /etc/pki/tls/certs/host1.panel.xwy.cert /etc/pki/tls/certs/hostname.crt
ln -s /etc/pki/tls/private/host1.panel.xwy.key /etc/pki/tls/private/hostname.key
218
SSL / Re: SSL on webpanel
« on: April 14, 2019, 04:18:58 AM »
AutoSSL is for Letsencrypt certificates.
If you have already a Comodo Certificate, supposedly you must put the (file with the) cert in the "/etc/pki/tls/certs/" and put the key in "/etc/pki/tls/private/", and access CWP -> Webserver Settings -> Tab "Install From Server", and choose the file certificate, and user and the domain, and click in install.
Regards,
Netino
If you have already a Comodo Certificate, supposedly you must put the (file with the) cert in the "/etc/pki/tls/certs/" and put the key in "/etc/pki/tls/private/", and access CWP -> Webserver Settings -> Tab "Install From Server", and choose the file certificate, and user and the domain, and click in install.
Regards,
Netino
219
Apache / Re: HSTS in CWP
« on: April 14, 2019, 04:09:57 AM »
In Apache, add the following parameter in the VHOST site:
or
The max-age parameter sets the browser the validity period in seconds that HTTPS will be forced, in which case it will be 6 months. The "includeSubDomains" parameter indicates that this rule will apply to subdomains.
Regards,
Netino
Code: [Select]
Header add Strict-Transport-Security "max-age=15768000"
or
Code: [Select]
Strict-Transport-Security: max-age=15768000; includeSubDomains
The max-age parameter sets the browser the validity period in seconds that HTTPS will be forced, in which case it will be 6 months. The "includeSubDomains" parameter indicates that this rule will apply to subdomains.
Regards,
Netino
220
How to / Re: How do I get rid of Netdata?
« on: April 13, 2019, 11:18:20 PM »
Netdata apeared in my server just by clicking on CWP -> Graphs -> Netdata.
I did not installed.
Check if this was not your case.
Regards,
Netino
I did not installed.
Check if this was not your case.
Regards,
Netino
221
Apache / Re: AH01071: Got error 'Primary script unknown\n' in error log
« on: April 04, 2019, 03:46:05 AM »
Check the following site:
http://www.coders.pro/2017/01/got-error-primary-script-unknown-update-php-fpm-apache-2-4/
Perhaps your site is being attacked, and answering like that.
So, you would need adapt the mentioned '/fc2/' directory to your custom directory.
Regards,
Netino
http://www.coders.pro/2017/01/got-error-primary-script-unknown-update-php-fpm-apache-2-4/
Perhaps your site is being attacked, and answering like that.
So, you would need adapt the mentioned '/fc2/' directory to your custom directory.
Regards,
Netino
222
Apache / Re: Most Memory Efficient Setup for VPS with Shared Wordpress Webhosting
« on: April 03, 2019, 02:13:03 AM »
It's not possible to precisely to define "the most memory efficent configuration for Shared Wordpress Hosting" in any server.
You can have several specific needs.
As much memory your would you have on your server, it's better.
But you can optimize other areas.
For example, I installed Rspamd.
I could to save 1 Gb memory.
So I disable the amavisd, policyd-spf, opendkim, and spamassassin (I think it's a greedy memory eater).
I'm suspect, because I posted a Rspamd howto in this forum.
But with no one optimizations in my customer's sites, I'm running several Wordpress sites, in two VPS servers with exactly identical configuration as you, and I have no problems other than normal security worries.
Regards,
Netino
You can have several specific needs.
As much memory your would you have on your server, it's better.
But you can optimize other areas.
For example, I installed Rspamd.
I could to save 1 Gb memory.
So I disable the amavisd, policyd-spf, opendkim, and spamassassin (I think it's a greedy memory eater).
I'm suspect, because I posted a Rspamd howto in this forum.
But with no one optimizations in my customer's sites, I'm running several Wordpress sites, in two VPS servers with exactly identical configuration as you, and I have no problems other than normal security worries.
Regards,
Netino
223
Apache / Re: Stats shows visitors from my own ip
« on: April 03, 2019, 01:54:49 AM »
So, you can create the file /usr/local/apache/conf.d/rpaf.conf (change [YOUR-IP-ADDRESS] with the correct information) with the following content:
Regards,
Netino
Code: [Select]
<IfModule !mod_rpaf.c>
LoadModule rpaf_module modules/mod_rpaf.so
</IfModule>
RPAF_Enable On
RPAF_ProxyIPs 127.0.0.1 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 [YOUR-IP-ADDRESS]
RPAF_SetHostName On
RPAF_SetHTTPS On
RPAF_SetPort On
RPAF_ForbidIfNotProxy Off
RPAF_Header X-Forwarded-For
Regards,
Netino
224
Installation / Re: Did I finish my install or not? I'm not sure please help.
« on: April 03, 2019, 01:45:56 AM »225
How to / Re: [Howto] Install Rspamd
« on: April 03, 2019, 01:36:46 AM »
Yes, I'm running this configuration with rspamd version 1.9.0, to be more precise, with rspamd-1.9.0-3 rpm from their repository.
Regards,
Netino
Regards,
Netino
