Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - ring_c

Pages: [1] 2
1
PHP / How to compile PHP with support for webp in gd?
« on: June 03, 2019, 08:18:26 PM »
I'v already installed it using:
Code: [Select]
yum install libwebp-develBut how can I compile php-fpm with it?

2
CSF Firewall / UDP out port 67
« on: June 03, 2019, 05:38:57 AM »
Checking /var/log/messages, I've found the following notification about blocking UDP port 67 out.
I actually went to CSF's configuration and allowed this port and the message was gone.

After 5 minutes I thought I might have risking my system without properly checking (though sounds like my server is the one which is blocked from sending data out), so I've removed the port from CSF, but would appreciate if anyone has any idea what this might be.


Code: [Select]
Jun  3 08:11:32 cwp dhclient[3102]: DHCPREQUEST on eth0 to 172.31.1.1 port 67 (xid=0x216d4be)
Jun  3 08:11:35 cwp kernel: Firewall: *UDP_OUT Blocked* IN= OUT=eth0 SRC=159.69.16.218 DST=172.31.1.1 LEN=328 TOS=0x00 PREC=0x00 TTL=64 ID=12990 DF PROTO=UDP SPT=68 DPT=67 LEN=308 UID=0 GID=0
Jun  3 08:11:35 cwp dhclient[3102]: send_packet: Operation not permitted
Jun  3 08:11:35 cwp dhclient[3102]: dhclient.c:2697: Failed to send 300 byte long packet over fallback interface.

3
PHP / error while compiling php-fpm v5.3.3
« on: June 01, 2019, 10:58:03 PM »
I was trying to compile php v5.3.3 (the oldest currently available on CWP) under php-fpm menu, in order to host an old site of mine.
Using the trail command after it took too long, I found this error:

Code: [Select]

[root@cwp ~]# tail -f /var/log/php-selector-rebuild.log
shell-init: error retrieving current directory: getcwd: cannot access parent directories: No such file or directory
Skipping as php build failed
exe:/opt/alt/php-fpm53/usr/sbin/php-fpm
Redirecting to /bin/systemctl restart httpd.service


Build Completed
###################




Error:Can't add notification!


Any idea what's the issue?


Also, ever since, whenever I get into php-fpm menu again, I get this in the bottom:
Code: [Select]
Task already running in the background, please wait a few minutes and then check again!!!How can I remove that?

4
Nginx / Nginx failed and can't be restarted
« on: May 29, 2019, 03:55:49 AM »
This morning I woke up to see my server's nginx failed and couldn't restart (CWP tried to restart it every 15 minutes).

This is my error.log for nginx:
Code: [Select]
2019/05/29 04:00:02 [emerg] 13297#13297: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 04:15:03 [emerg] 14094#14094: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 04:30:02 [emerg] 14820#14820: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 04:45:02 [emerg] 15579#15579: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 05:00:02 [emerg] 16292#16292: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 05:15:02 [emerg] 17021#17021: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 05:30:02 [emerg] 17778#17778: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 05:45:02 [emerg] 18567#18567: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:00:02 [emerg] 19346#19346: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:06:23 [emerg] 20056#20056: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 03:08:23 [emerg] 4086#4086: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 03:09:12 [emerg] 4022#4022: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:09:37 [emerg] 4691#4691: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:15:02 [emerg] 6426#6426: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:20:41 [emerg] 7303#7303: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:20:53 [emerg] 7517#7517: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:21:14 [emerg] 7882#7882: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 06:30:02 [emerg] 10127#10127: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17
2019/05/29 03:40:43 [emerg] 3837#3837: the size 20971520 of shared memory zone "SSL" conflicts with already declared size 10485760 in /etc/nginx/conf.d/cwp.hostname.com_ssl.conf:17

So I went into /etc/nginx/conf.d/cwp.hostname.com_ssl.conf and found the following on line 17:
Code: [Select]
ssl_session_cache   shared:SSL:20m;
So according to the error, i changed it to (from 20m to 10m):

Code: [Select]
ssl_session_cache   shared:SSL:10m;


Any idea why did this happened suddenly? And what does this line actually mean (I understand it's some kind of cache size for SSL). Can it be that some update of CWP made this overnight?
Oh, and where is this "already declared size" stored?




5
Varnish / Varnish won't work
« on: May 12, 2019, 05:45:53 AM »

Hi there,


I'm hosting quite a few websites on my server. I have only one site which is approved to be using varnish with https://isvarnishworking.uk/ - all other won't, although I've set them the same as the one which is working, as per the attached screenshot.

Any idea what might be wrong?


https://pasteboard.co/Iejmr6c.png

6
Addons / netdata installed by itself???
« on: April 30, 2019, 05:11:23 AM »
Hi there,


I'm running CWP7pro and yesterday I've noticed there's a "Graphs" entry in the menu, which I didn't notice before.
I clicked it and there was a sub-entry named "netdata". Clicking it actually resulted in nothing. I mean, there was no data showing except for the headline "netdata".


BUT! Ever since I'm being bombarded with emails from netdata and have noticed a high resources usage. Checking the processes running, I see many netdata processes (/usr/libexec/netdata/...) so I went checking this folder and indeed its date is of yesterday at the time I've accessed this sub menu.



A. How do I uninstall this ASAP?
B. How come it was installed without asking my permission???


I'm totally pissed off currently. Would appreciate a prompt solution please.

7
PHP / Error 503 for WordPress on PHP-FPM 7.3.4
« on: April 29, 2019, 05:29:09 AM »
I've built PHP 7.3.4 and configured a test wordpress site webserver to use it but I get a 503 error.
I've tried with other sites - and the same result.
I've tried disabling plugins, but the error is still there.


Anyone managed to run Wordpress on PHP 7.3.4?

8
PHP Selector / Do I need both php selector and php-fpm selector?
« on: April 24, 2019, 03:54:10 PM »
Do I need to build PHP and PHP-FPM versions or can PHP-FPM be enough?

9
Hi,


I'm using a VPS on Hetzner, and am trying to force wordpress using SMTP to send emails.
Of course I've created a mail address and it's working fine with non secure connection (port 25). I can even connect to the smtp via SSL from outside the server (tested with 3rd part test sites), but when configuring Wordpress with plugins like WP Mail SMTP I'm getting an error.


I just don't want to reveal my domain, so I've change my hostname to hostname.domain.com and domain to domain.com. I've also hide the full IP.


The problem that I believe I'm facing is that the site is presented as hostname.domain.com.domain.com.domain.com? Why is that happening?


Here's the log:


Quote
Apr  9 19:59:10 cwp postfix/smtpd[5488]: connect from hostname.domain.com.domain.com.domain.com[xxx.69.16.xxx]
Apr  9 19:59:10 cwp postfix/smtpd[5488]: SSL_accept error from hostname.domain.com.domain.com.domain.com[xxx.69.16.xxx]: 0
Apr  9 19:59:10 cwp postfix/smtpd[5488]: warning: TLS library problem: 5488:error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown ca:s3_pkt.c:1493:SSL alert number 48:
Apr  9 19:59:10 cwp postfix/smtpd[5488]: lost connection after CONNECT from hostname.domain.com.domain.com.domain.com[xxx.69.16.xxx]
Apr  9 19:59:10 cwp postfix/smtpd[5488]: disconnect from hostname.domain.com.domain.com.domain.com[xxx.69.16.xxx]

And here's the log when I'm trying to send an email from a 3rd party site to my gmail via the same smtp account:


Quote
Apr  9 20:21:16 cwp postfix/smtpd[9061]: connect from ec2-54-184-121-130.us-west-2.compute.amazonaws.com[54.184.121.130]
Apr  9 20:21:16 cwp postfix/smtpd[9061]: Anonymous TLS connection established from ec2-54-184-121-130.us-west-2.compute.amazonaws.com[54.184.121.130]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)
Apr  9 20:21:17 cwp postfix/smtpd[9061]: 68997211CD: client=ec2-54-184-121-130.us-west-2.compute.amazonaws.com[54.184.121.130], sasl_method=PLAIN, sasl_username=wordpress@domain.com
Apr  9 20:21:18 cwp postfix/cleanup[9068]: 68997211CD: message-id=<RNC99NZP77U4.P9KBG3TRCYL33@WIN-AUIR3RRGP88>
Apr  9 20:21:18 cwp postfix/qmgr[700]: 68997211CD: from=<wordpress@domain.com>, size=594, nrcpt=1 (queue active)
Apr  9 20:21:18 cwp postfix/smtpd[9061]: disconnect from ec2-54-184-121-130.us-west-2.compute.amazonaws.com[54.184.121.130]
Apr  9 20:21:18 cwp postfix/smtp[9070]: 68997211CD: to=<myaccount@gmail.com>, relay=gmail-smtp-in.l.google.com[2a00:1450:400c:c0c::1b]:25, delay=1.2, delays=0.63/0.02/0.16/0.35, dsn=2.0.0, status=sent (250 2.0.0 OK  1554830478 q9si21374230wrm.250 - gsmtp)


Would appreciate any help!

10

I've got the following mail from the firewall. Any idea what it means? I didn't see anything odd and the site is loading.
[/size]I've replaced the username with {USERNAME}.[/color]
[/size][/color]


[/size][/color]
[/size]Subjetct: lfd on {HOSTNAME}: Suspicious process running under user {USERNAME}[/color]
[/size]Time:    Thu Feb 14 22:38:21 2019 +0200[/color][/size]PID:     25646 (Parent PID:3086)Account: {USERNAME}Uptime:  67 seconds


Executable:

/opt/alt/php-fpm56/usr/sbin/php-fpm


Command Line (often faked in exploits):

php-fpm: pool {USERNAME}


Network connections by the process (if any):

tcp: 127.0.0.1:42342 -> 127.0.0.1:3306


Files open by the process (if any):

/tmp/.ZendSem.Od78F8 (deleted)
/dev/urandom
/home/{USERNAME}/public_html/wp-content/wflogs/ips.php
/home/{USERNAME}/public_html/wp-content/wflogs/config.php
/home/{USERNAME}/public_html/wp-content/wflogs/attack-data.php
/home/{USERNAME}/public_html/wp-content/wflogs/config-synced.php
/home/{USERNAME}/public_html/wp-content/wflogs/config-livewaf.php
/home/{USERNAME}/public_html/wp-content/wflogs/config-transient.php
/home/{USERNAME}/public_html/wp-content/wflogs/GeoLite2-Country.mmdb
/etc/pki/nssdb/cert9.db
/etc/pki/nssdb/key4.db
[/size]

11
PHP / Changes in PHP.INI won't work!
« on: February 05, 2019, 08:16:55 AM »
Hi,


I'm using CWP PRO 0.9.8.763 and my server is configured to use NGINX+APACHE+VARNISH+PHP-FPM, and I was trying to increase upload_max_size for a user. I've tried the following:
1. Adding a php.ini file - didn't work.
2. Editing php.ini within the user's CWP panel - didn't work.
3. Deleting php.ini caused the panel to create a default php.ini, yet - didn't work.
4. I've found an answer here that since 0.9.8.742 we should use .user.ini instead of php.ini - didn't work.
5. Putting this .user.ini in wp-admin folder - didn't work.
6. Putting php.ini in wp-admin folder - didn't work.
7. Another answer here said something about a trailing slash after localhost - but mine didn't have this slash.


So... why do we have to guess? Why for instance the definitions for php.ini the user sets in his panel won't work. Even the definitions under PHP Settings -> PHP Simple Editor in the main CWP panel won't change anything.


I'm really puzzled where I can change this php settings either globally or per user (preferably per user).

12
Mod_Security / Hugh log files!
« on: February 02, 2019, 10:01:00 PM »
I just found that my mod security log file was 4GB large!!!
Is there a way to limit this log?

13
Apache / Large domlogs files
« on: February 02, 2019, 09:59:44 PM »
In /usr/local/apache/domlogs/ I have very large log files. Is there a way to make them up to a specific size?


14
Mod_Security / Changing rules on Comodo WAF with CWP Pro
« on: December 10, 2018, 06:00:08 AM »
Hi,


I've just got my CWP Pro enabled and installed Comodo's WAF but I need to disable some rules. Where do I do that?

15
Aplications / Wordfence / Ninja Firewall
« on: December 09, 2018, 06:14:36 PM »
Hi,


Since the update to PHP-FPM I can't install Wordfence or Ninja Firewall (both are using auto_prepend_file) on my wordpress sites.
My webserver is apache + varnish + php-fpm. I've also tried changing the webserver to use fastcgi, but it didn't change anything.


Any idea?

Pages: [1] 2