Messages

1

CentOS 9 Problems / Re: Disk full

« on: June 24, 2025, 01:44:38 AM »

Install ncdu:

Code: [Select]

# dnf install ncdu
Navigate to the directory you want to search and simply run 'ncdu'.
This will show you how much disk space is consumed by each subdirectory.

Regards,
Netino

2

Installation / Re: Broken uninstallable packages

« on: June 18, 2025, 01:54:27 AM »

I agree, mariadb is a strong candidate to this problem, if the user did not updated as indicated.
Unfortunately, the graphical update of the CWP does not show which package(s) contain the error(s).
Try establishing an SSH connection and performing the manual update with the following command:

Code: [Select]

# dnf update

...and follow the possible program interactions.

Regards,
Netino

3

How to / Re: [Howto] Install Rspamd

« on: June 18, 2025, 01:40:38 AM »

Netino, what's your average daily mail message volume?

I have a low volume of emails, on three servers, about 4 thousand messages per day. But even with this volume, it was enough to consume about 70% of the resources of this server with Spamassassin.
Today, I am using the same rules of Spamassassin, but with only about 2% of the resources of the servers, the difference in resource savings is brutal.
For a small server, this makes a lot of difference.

4

How to / Re: [Howto] Install Rspamd

« on: June 18, 2025, 01:34:24 AM »

Has anyone tested this tutorial on CWP with AlmaLinux 8? Did it work?

Yes, I am running this setup on an AL8.
I have certainly added a few more modules, but this is up to your taste or needs, this is a basic setup, adapted to CWP.
If you wish, you can add any modules you want.

5

PHP / Re: AH01075: Error dispatching request to : (polling)

« on: May 24, 2025, 12:22:59 AM »

The problem isnt with phpfpm restarting @netino. It is something else.
cron logs:
(...)
Uptimerobot says site was down at  01:12:34 but it has a 5 minute interval.
So it can be down from 01:07.

Yeah, it doesn't seem to be something triggered by cron. I see you have CXS, but I don't know what the /etc/cxs/cxsdbupdate.pl script does, it would be good to check.

In accesslog the last line with http 200 code is this:
[23/May/2025:01:08:23 +0200] "POST /wp-admin/admin-ajax.php HTTP/2.0" 200

The first with a 504 error is this
Could it be a crawler taking down the site?

Is it your web server that goes down? If that's the case, you need to check the log in the file '/usr/local/apache/logs/error_log' around that time.
The AH01075 error doesn't seem to be related to this web server crash, because it's a very common error, and I have dozens of them on my server, and it has never crashed because of this error in 8 years.

[23/May/2025:01:07:58 +0200] "GET /robots.txt HTTP/1.1" 504 247 "-" "Mozilla/5.0 (compatible; SemrushBot-BA; +http://www.semrush.com/bot.html)"

Yes, this is a bot, but I don't think it can take down a server unless your server is already overloaded. It will make a lot of connections, and if the server is already overloaded, it could crash.

Most likely, your web server has already experienced problems, and simply can't serve the page.

According to the website <https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Status/504>:
"The HTTP 504 Gateway Timeout server error response status code indicates that the server, while acting as a gateway or proxy, did not receive a response in time from the upstream server in order to complete the request. This is similar to a 502 Bad Gateway, except that in a 504 status, the proxy or gateway did not receive any HTTP response from the origin within a certain time.

There are many causes of 504 errors, and fixing such problems likely requires investigation and debugging by server administrators, or the site may work again at a later time. Exceptions are client networking errors, particularly if the service works for other visitors, and if clients use VPNs or other custom networking setups. In such cases, clients should check network settings, firewall setup, proxy settings, DNS configuration, etc."

But there are other possibilities:
web server built and compiled with error;
customization on your web server;
Server configured with low resources;
Kernel customized/compiled with error;
etc.

Ideally, you should also check your log /var/log/messages around that time.

6

PHP / Re: AH01075: Error dispatching request to : (polling)

« on: May 23, 2025, 12:49:24 AM »

[Wed May 21 00:34:42.824943 2025] [proxy_fcgi:error] [pid 296120:tid 296160] (70007)The timeout specified has expired: [client xxx:43672] AH01075: Error dispatching request to : (polling)

Connection refused: AH02454: FCGI: attempt to connect to Unix domain socket /opt/alt/php-fpm82/usr/var/sockets/domain.sock (localhost:8000) failed

AH01079: failed to make connection to backend: localhost

I Get this error EVERY night at around 00-02 the only way to get the page up again is by restarting the php-fpm service.

All other sites on the server are online only 1 page goes down. i cant figure out what causes this. Any ideas?

A simple restart on your php-fpm server, while serving pages, can cause these messages.

A restart on your php-fpm server can occur if you run a cron process restarting the server at that time, or, for example, if you set a rebuild in the CWP configuration that did not complete.

Check the cron logs (/var/log/cron) at that time to see if there is a process restarting your php-fpm around that time.

Regards,

Netino

7

SSL / Re: Probelm with renewing SSL certs

« on: May 23, 2025, 12:35:48 AM »

Hi friend, I get the next when run the script

ot@mail ~]# ./script.sh xxx.com
[Tue May 20 09:48:46 -05 2025] Unknown parameter: mail

This is not a message from acme.sh.
So, may be you copy something wrong in your script.?

Try to replace the parameters directly in the main command in that script (/root/.acme.sh/acme.sh ... )

Type all these commands, step-by-step, in bash from your server:

Code: [Select]

# DOM=xxx.com
# WEBS=""
# systemctl -q is-active nginx && WEBS="${WEBS} nginx"
# systemctl -q is-active httpd && WEBS="${WEBS} httpd"
# /root/.acme.sh/acme.sh --cert-home /root/.acme.sh/cwp_certs --webroot /usr/local/apache/autossl_tmp --issue -d ${DOM} mail webmail ftp cpanel --ecc \
  --cert-file /etc/pki/tls/certs/${DOM}.cert \
  --key-file  /etc/pki/tls/private/${DOM}.key \
  --fullchain-file /etc/pki/tls/certs/${DOM}.bundle \
  --reloadcmd "systemctl restart ${WEBS}"

Alternatively, you can put your parameters between quotation marks, like:

Code: [Select]

# DOM="xxx.com"
(...)
# /root/.acme.sh/acme.sh --cert-home "/root/.acme.sh/cwp_certs" --webroot "/usr/local/apache/autossl_tmp" --issue -d "${DOM}" "mail" "webmail" "ftp" "cpanel" --ecc \
(...)

You can check where are the error, and post here.

8

SSL / Re: Probelm with renewing SSL certs

« on: May 20, 2025, 02:37:33 AM »

Try to repair and create a new configuration with run the following script(still working with acme.sh):

Code: [Select]

#!/bin/bash

DOM=${1}
WEBS=""
systemctl -q is-active nginx && WEBS="${WEBS} nginx"
systemctl -q is-active httpd && WEBS="${WEBS} httpd"

/root/.acme.sh/acme.sh --cert-home /root/.acme.sh/cwp_certs --webroot /usr/local/apache/autossl_tmp --issue -d ${DOM} mail webmail ftp cpanel --ecc \
  --cert-file /etc/pki/tls/certs/${DOM}.cert \
  --key-file  /etc/pki/tls/private/${DOM}.key \
  --fullchain-file /etc/pki/tls/certs/${DOM}.bundle \
  --reloadcmd "systemctl restart ${WEBS}"

Run it with:

Code: [Select]

# chmod script.sh
# ./script.sh your-domain.com

After that, try to renew with CWP (because CWP still could claim the domain have not a cert)

9

E-Mail / Re: Spamassassin Error: cannot create user preferences file //.spamassassin/user_pre

« on: May 20, 2025, 02:24:56 AM »

The user/group ownerships in /var/lib/spamassassin should be the same configured in your master.cf file.
What procedure you did use to install and configure it?

Check if you already created a user for spamassassin.
If you don't have already made, create the user for spamassassin(any name you choose, here is 'spamfilter'):

Code: [Select]

groupadd -g 1001 spamfilter
useradd -u 1001 -g spamfilter -s /sbin/nologin -d /var/lib/spamassassin spamfilter
chown -R spamfilter:spamfilter /var/lib/spamassassin

And try to replace that line in your master.cf file, with this:

Code: [Select]

spamassassin unix -     n       n       -       -       pipe user=spamfilter argv=/usr/bin/spamc -f -e  /usr/sbin/sendmail -oi -f ${sender} ${recipient}


10

E-Mail / Re: Spamassassin Error: cannot create user preferences file //.spamassassin/user_pre

« on: May 15, 2025, 11:29:52 PM »

Run these commands:

Code: [Select]

# ls -alF /var/lib/spamassassin

Code: [Select]

# grep spamassassin /etc/postfix/master.cf | grep pipe | sed -r 's/^spamassassin.*pipe user=(\S+).*/\1/'
and post here.

Regards,
Netino

11

SSL / Re: Probelm with renewing SSL certs

« on: May 14, 2025, 02:20:06 AM »

Ah but the website is in other server that I dont adimistrate. How can I to change the comprobation mode?

You simply can't get certificates via LetsEncrypt in apache mode if you can't save tokens in a specific are of the web server.
But with another app (certbot) in DNS mode, you could.
You manage the DNS server of these sites?

12

E-Mail / Re: How to enforce strong passwords when creating email accounts in CWP

« on: May 09, 2025, 01:56:56 AM »

The process of forcing the creation of stronger passwords can be seen here:
https://docs.redhat.com/en-us/documentation/red_hat_enterprise_linux/7/html-single/security_guide/index#sec-Forcing_Strong_Passwords

However, this reinforcement is done at the operating system level through the Linux kernel PAM module.

At the CWP application level, this choice is not offered to the user when creating/changing the password, and I have never tested whether, if the password is not accepted by the operating system, CWP will recognize it and request the password again. You will only find out by running a test.

Regards,
Netino

13

SSL / Re: Probelm with renewing SSL certs

« on: May 09, 2025, 01:38:16 AM »

Possibly a bug from CWP.
This happened to me migrating domains from another server.
Once the domain was renewed manually, now the renewing process is automatic again.

Try to create a script, named like 'renew-cert.sh', to renew manually:

Code: [Select]

#!/bin/bash

DOM=${1}
/root/.acme.sh/acme.sh --home /root/.acme.sh/cwp_certs --renew --ecc -d ${DOM} --force

Change permissions:

Code: [Select]

# chmod 700 renew-cert.sh
And run the script (replacing "domain.com" with your domain):

Code: [Select]

# ./renew-cert.sh domain.com
Regards,
Netino

14

Information / Re: check all autoSSL (Lets encrypt) that failed

« on: May 03, 2025, 01:31:27 AM »

Thanks! No way for an integrated feature in the panel? To alert us, etc?

While this feature is not implemented in CWP, you can use this command in cron, to be alerted:

Code: [Select]

# find /etc/pki/tls/certs -type f -name \*.cert -mtime +60 | sed -e 's#^/etc/pki/tls/certs/##g' -e 's#\.cert$##' | xargs -I '{}' bash -c 'echo -e "Domain Cert {} expired.\n.\n" | mail -s "ALERT: Domain Cert {} expired" your-mail@yourdomain.com'
Regards,
Netino

15

CentOS 8 Problems / Re: ImageMagick installation on Almalinux 8

« on: April 29, 2025, 03:12:16 AM »

Hi,

php -v giving error of unable to load dynamic library 'imagick.so'
(...)
but found that following line not working:
ln -s /usr/local/include/ImageMagick-6 /usr/local/include/ImageMagick

On checking, I didnot found any folder /usr/local/include/ImageMagick-6  in my Almalinux ver 8
(...)

I think the right command is:

Code: [Select]

ln -s /usr/include/ImageMagick-6 /usr/local/include/ImageMagick-6
The include library exists in '/usr/include/ImageMagick-6' in AL8.

Regards,
Netino