This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
301
CentOS-WebPanel Bugs / Re: Way to the Web Ltd and Configserver.com will be closing down permanently!
« on: September 03, 2025, 12:28:41 PM »
You made me curious -- the owner of the fork is from Australia and develops a custom LEMP stack for Alma/Rocky Linux. The stack looks lean and optimized and includes CSF:
https://centminmod.com
Way to the Web/Configserver is from the UK, so no association there. Best to go with the original GhitHub source for sure:
https://github.com/waytotheweb
https://github.com/waytotheweb/scripts/tree/main/csf
https://centminmod.com
Way to the Web/Configserver is from the UK, so no association there. Best to go with the original GhitHub source for sure:
https://github.com/waytotheweb
https://github.com/waytotheweb/scripts/tree/main/csf
302
MySQL / Re: Danger: MySQL root password - BIG SECURITY ISSUE
« on: September 03, 2025, 11:53:47 AM »
Have you run mariadb_secure_installation ?
https://mariadb.com/docs/server/clients-and-utilities/deployment-tools/mariadb-secure-installation
https://mariadb.com/docs/server/clients-and-utilities/deployment-tools/mariadb-secure-installation
303
Addons / Re: Redis server upgrade
« on: September 03, 2025, 11:51:04 AM »
Sure, keep us posted! I'm always in the WordPress optimization battle with some crufty legacy sites that could use a performance boost.
304
CentOS-WebPanel Bugs / Re: Way to the Web Ltd and Configserver.com will be closing down permanently!
« on: September 03, 2025, 01:22:37 AM »
Dang, they snookered me. I had up the correct GitHub page earlier in the day, then did a search before posting and just saw the GPLv3 notice so I used the fork link by mistake. Yes, better/safer to use the original source of the code!
305
CentOS-WebPanel Bugs / Re: Way to the Web Ltd and Configserver.com will be closing down permanently!
« on: September 02, 2025, 07:51:55 PM »
CSF has been released as GPLv3 code:
https://github.com/centminmod/configserver-scripts/tree/main/csf
Starburst has a guide for updating to v15 which removes the update functionality that points to their now defunct servers:
https://starburst.help/security/csf-lfd/csf-firewall-gplv3-release/
https://github.com/centminmod/configserver-scripts/tree/main/csf
Starburst has a guide for updating to v15 which removes the update functionality that points to their now defunct servers:
https://starburst.help/security/csf-lfd/csf-firewall-gplv3-release/
306
Updates / Re: ConfigServer replacement?
« on: September 02, 2025, 07:49:38 PM »
It's been released as GPLv3 and an updated v15 is available that removes the auto-update against their defunct update servers. Read more:
https://forum.centos-webpanel.com/centos-webpanel-bugs/way-to-the-web-ltd-and-configserver-com-will-be-closing-down-permanently!/msg51894/#msg51894
https://forum.centos-webpanel.com/csf-firewall/welp-csf-is-now-open-source/msg52106/#msg52106
https://forum.centos-webpanel.com/csf-firewall/csf-v14-24-do-i-need-to-update-it/msg52143/#msg52143
Starburst has a guide for updating to v15:
https://starburst.help/security/csf-lfd/csf-firewall-gplv3-release/
https://forum.centos-webpanel.com/centos-webpanel-bugs/way-to-the-web-ltd-and-configserver-com-will-be-closing-down-permanently!/msg51894/#msg51894
https://forum.centos-webpanel.com/csf-firewall/welp-csf-is-now-open-source/msg52106/#msg52106
https://forum.centos-webpanel.com/csf-firewall/csf-v14-24-do-i-need-to-update-it/msg52143/#msg52143
Starburst has a guide for updating to v15:
https://starburst.help/security/csf-lfd/csf-firewall-gplv3-release/
307
CentOS-WebPanel Bugs / Re: Unable to open userpanel
« on: September 02, 2025, 12:29:57 PM »
Did they tell you what they did? Was it a unique problem to your server? It's always good to post back solutions to the forum for future reference (for yourself and others!)...
308
CentOS-WebPanel Bugs / Re: Mysql DB and User created without account username prefix
« on: September 02, 2025, 10:56:15 AM »
Can you give the username? What version of MariaDB are you running?
What do you have in /usr/local/cwp/.conf/mysql_user_prefix.conf ?
What do you have in /usr/local/cwp/.conf/mysql_user_prefix.conf ?
309
CSF Firewall / Re: csf: v14.24, do I need to update it?
« on: September 02, 2025, 10:52:04 AM »
The company behind CSF closed down on August 31. Configserver Firewall has been released as GPLv3 code, with an update to v15 that removes the autoupdate code. The simplest advice would be do nothing, ignore the error and wait until CWP starts tracking the new release. Alternately, you can follow Starburst's lead and install v15 and start updating from his mirror:
https://starburst.help/security/csf-lfd/csf-firewall-gplv3-release/
https://starburst.help/security/csf-lfd/csf-firewall-gplv3-release/
310
Mod_Security / Re: issues while switching from comodo waf to OWASP latest waf
« on: September 02, 2025, 12:56:56 AM »
Comodo's WAF ruleset is dead -- it hasn't been updated in a year and a half. Try the OWASP Old style ruleset, but follow Starburst's guide here how to update Mod Security to the latest compatible version and the ruleset to the latest version:
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-modsecurity-to-2-9-12-running-cwp-and-apache-on-almalinux-9/
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-running-cwp-and-apache-on-almalinux-9/
(tested on AlmaLinux 8 and 9)
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-modsecurity-to-2-9-12-running-cwp-and-apache-on-almalinux-9/
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-running-cwp-and-apache-on-almalinux-9/
(tested on AlmaLinux 8 and 9)
311
CentOS 9 Problems / Re: EL9 recent update casusing boot issue
« on: September 01, 2025, 05:29:34 PM »
Was it a CWP or CentOS 9 Stream update that triggered your issue? There is no specific EL9 version of CWP -- the codebase is the same for EL8 or EL9. But CWP is still officially only in beta for EL9 -- so EL8 releases (AlmaLinux or Rocky Linux) offer the broadest compatibility. And CentOS 7 is EOL, so we won't even talk about it anymore (R.I.P.).
312
Mod_Security / Re: OWASP CRS v4.15.0 Just Release
« on: September 01, 2025, 05:15:10 PM »
If you're calling it with an "Include" line as with Starburst's configuration, it will be utilized by Mod Security. But the GUI in CWP will be editing a different file:
/usr/local/apache/modsecurity-owasp-old/global_disabled_rules.conf
So you may want to Include that one specifically/additionally as well.
/usr/local/apache/modsecurity-owasp-old/global_disabled_rules.conf
So you may want to Include that one specifically/additionally as well.
313
Mod_Security / Re: OWASP CRS v4.15.0 Just Release
« on: September 01, 2025, 03:57:39 PM »1) the CWP admin dashboard "Global Disabled Rules" file is NOT the same with the one that our customized mod_security is currently using.My solution to that was to also strictly enumerate the file the GUI calls for in /usr/local/apache/modsecurity-owasp-old/owasp.conf:
No edit on that file will work. The user has to add/remove rules on the new global_disabled.conf under the newly created folder.
Code: [Select]
Include /usr/local/apache/modsecurity-owasp-old/global_disabled_rules.conf
314
CentOS 9 Problems / Re: EL9 recent update casusing boot issue
« on: September 01, 2025, 01:16:20 PM »
Do you have an installer ISO that you could boot the VM from and try to rescue the system? I've had to do this for XFS errors before.
315
CSF Firewall / Re: Tweaked CSF update instructions for CWP path
« on: August 30, 2025, 11:46:26 PM »
No functional changes with v15 yet, correct? Just re-jiggering the update mechanism and changing the license, I assume...
