Messages

301

Installation / Re: CWP without dns and mail

« on: November 17, 2024, 12:32:17 AM »

Not really, your best option is just to disable those services you are not using.

302

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: November 16, 2024, 02:32:44 PM »

The problem looks like a WordPress plugin called Burst Statistics.

Disable that plugin, and see if the error goes away.
Programmers sometime use malicious code in valid programs, which can give 'false positives'.

If the error goes away, maybe check out MonsterInsights instead.

Only other option would be to disable the rule being triggered - 22_SQL_SQLi.conf

But I never recommend doing that, because it could leave the system open to attack.

303

Problems on other RedHat linux servers / Re: I saw that AL 9 has missing features and *EL9 is in beta stage ???

« on: November 16, 2024, 02:28:14 AM »

And we have answered you on those other threads.

But CWP is working on AL9, with only the migration tool having some hicups.

304

Problems on other RedHat linux servers / Re: No SSL / alma

« on: November 16, 2024, 02:26:55 AM »

Check your rDNS.

If that isn't set correctly Let's Encrypt won't generate the SSL.
95% of the time that is the problem.

The other 5% is due to a mis-configured firewall.

305

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: November 15, 2024, 10:22:05 AM »

The Comodo fix was for WooCommerce.

What Rule does WAF show is being triggered by WordPress.

Haven't seen any conflict with Comodo and WordPress on AL8 or AL9.

306

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: November 15, 2024, 08:05:49 AM »

I'm guessing your country code is PK?

That's probably why you can't connect.
Try the link now.

307

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: November 15, 2024, 03:17:02 AM »

@overseer, are you able to login to https://waf.comodo.com, I'm still getting the same error I've been getting for months now.

I've tried contacting them via their email address & forums without success.

308

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: November 15, 2024, 01:06:25 AM »

Comodo was bought out by another company.

You can try and register for an account and download the last ruleset 1.241 from https://waf.comodo.com

Let me know if it works. As I haven't been able to login for a couple months now.
But not sure is @overseer has been able to or not.

If not, you can visit one of our US mirrors at: https://m3.stl.us.ssimn.org/Comodo-Rules/
The latest ruleset I know of is 1.241, unzip that to your local computer, and upload the files from Rules to your server at /usr/local/apache/modsecurity-cwaf/rules

Easiest way is using the SFTP built into Bitvise after you have logged in via SSH.

309

Problems on other RedHat linux servers / Re: I saw that AL 9 has missing features and *EL9 is in beta stage ???

« on: November 15, 2024, 01:00:01 AM »

Are you installing this locally or on a public provider (aka VPS, Dedicated)?

AL9 is working pretty well, as long as you don't need PHP below 7.4.x
AL8 is also working great, and has all the libraries unlike Rocky which for some reason, if missing key libraries.

All new installations we are using AL9.

SSL needs to resolve the rDNS for Let's Encrypt to issue a SSL.

What error messages are the logs showing?

310

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: November 13, 2024, 06:50:58 AM »

It looks like when Comodo was bought out the WAF rules got dropped.
The last ruleset version that came out on 2024-01-21 fixed the WordPress bug, which was 1.241 that you can manually update.

311

PHP / Re: Anti-Change Log

« on: November 11, 2024, 03:19:27 PM »

Thanks for the PHP-FPM tip.

We use allot of just PHP-CGI, which uses the main PHP Selector.
Using Sandeep's method we can update manually.

I don't know how much coding is required on the CWP backend to add new version when they come out.
Sometime they are on top of it, other times they skip a point release, and then add 2 when it updates again.

312

PHP / Anti-Change Log

« on: November 10, 2024, 06:50:45 PM »

I know CWP is probably still busy with tweaking CWP for AL9, but again, PHP came out with 8.2.25 and 8.3.13 on 2024-10-24 (a little over 2 weeks ago), but no update as of yet for CWP.

We've noticed another uptick in PHP attacks.

I know you can manually compile PHP, to do in mass is time consuming, but at this point might be an option.

313

CentOS 9 Problems / Re: Error in SMTP

« on: November 07, 2024, 06:39:33 PM »

No, CWP will build Varnish & Nginx in the background.

Checked the link, it is working.

You can also use:
https://www.alphagnu.com/topic/23-upgrade-mariadb-1011-in-cwp-centos-7-centos-8-stream-almalinux-78-rockylinux-78/#comment-25

314

CentOS 9 Problems / Re: Error in SMTP

« on: November 06, 2024, 09:39:20 PM »

You would just use the providers base AlmaLinux 9 install, and then stop and do not install anything (MariaDB, PHP, etc.) before CWP.

If you do will have all kinds of problems that would be unfixable.

Just do the base image, and then see the following that was posted in another thread:
https://forum.centos-webpanel.com/apache/issues-with-brand-new-fresh-install-with-almalinux-9-4/msg49159/#msg49159

Then you will want to upgrade MariaDB from 10.4 to 10.11.
You can see that guide at AlphaGNU or
https://kb.starburstservices.com/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/upgrade-mariadb-10-x-to-10-11-in-cwp-on-almalinux-9/

Then it just up to you to compile PHP inside CWP to 8.1, 8.2 or 8.3

315

CentOS 9 Problems / Re: Error in SMTP

« on: November 06, 2024, 04:21:33 AM »

I posted a small guide on how to do the basic CWP on AL9, if you don't do it correctly things will get corrupted.

Also make sure you don't have MariaDB, PHP, etc installed. Just the minimal install of AL9