Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
CentOS-WebPanel GUI / Problem port 25
« on: April 16, 2017, 10:46:11 PM »
Good afternoon, excellent hosting program, but it has a great limitation, is that I can not change port 25 that the SORBS organization, does not let me send email, but if they can enter the emails to my mailbox, please could they for the next version Do you have the option to change the port of exit of port 25 to another port? Since I have tried to remove my ip from the blacklist and I have not been able to eliminate it, since I have dynamic ip that changes if I leave my pc off, the dynamic ip is not the problem, since it only changes if I turn off my pc, and As it is a home hosting that I create to host my web page, and I do not delete my pc, then this message always appears:
F306D606C8FF 1311 Sun Apr 16 17:54:05 info@solodvdfull.com.ve
(Connect to alt2.gmail-smtp-in.l.google.com [2a00: 1450: 400c: c08 :: 1b]: 25: Network is unreachable)
Or there is a way to change port 25 to 465 which is the one used by google for your smtp mails.
thanks for your help.
F306D606C8FF 1311 Sun Apr 16 17:54:05 info@solodvdfull.com.ve
(Connect to alt2.gmail-smtp-in.l.google.com [2a00: 1450: 400c: c08 :: 1b]: 25: Network is unreachable)
Or there is a way to change port 25 to 465 which is the one used by google for your smtp mails.
thanks for your help.
2
CentOS-WebPanel GUI / Re: Message id [e7ba6e953c2ddce490621fc7ca7f8cfb]: === SECURITY WARNING === Hide all
« on: April 04, 2017, 11:38:57 PM »
Solved, Format and re-install again. 
3
CentOS-WebPanel GUI / Re: Mod security Problem
« on: April 04, 2017, 11:59:58 AM »
Well I will disable it until I find the way to include that this user and this diminuio are allowed to include in the database information.
4
CentOS-WebPanel GUI / Re: Mod security Problem
« on: April 04, 2017, 11:55:54 AM »
Right now token different id
[Tue Apr 04 07:52:37.371216 2017] [:error] [pid 29625:tid 139999005628160] [client 190.206.63.203:57118] [client 190.206.63.203] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\b(?
?:s(?:t(?:d(?:dev(_pop|_samp)?)?|r(?:_to_date|cmp))|u(?:b(?:str(?:ing(_index)?)?|(?:dat|tim)e)|m)|e(?:c(?:_to_time|ond)|ssion_user)|ys(?:tem_user|date)|ha(1|2)?|oundex|chema|ig?n|pace|qrt)|i(?:s(null|_(free_lock|ipv4_compat|ipv4_mapped|ipv4| ..." at ARGS:google_analytics_code. [file "/usr/local/apache/modsecurity-owasp-old/base_rules/modsecurity_crs_41_sql_injection_attacks.conf"] [line "125"] [id "950001"] [rev "2"] [msg "SQL Injection Attack"] [data "Matched Data: Date( found within ARGS:google_analytics_code: <script>\\x0d\\x0a (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){\\x0d\\x0a (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),\\x0d\\x0a m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)\\x0d\\x0a })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');\\x0d\\x0a\\x0d\\x0a ga('create', 'UA-96537384-1', 'auto');\\x0d\\x0a ga('send', [hostname "www.solodvdfull.com.ve"] [uri "/tienda/admin/index.php"] [unique_id "WOOJBX8AAAEAAHO5j5wAAABJ"], referer: https://www.solodvdfull.com.ve/tienda/admin/index.php?route=extension/analytics/google_analytics&token=usqA3PUepbuQwPK5sitsxCLjSRwlqLZN&store_id=0
[Tue Apr 04 07:52:37.371216 2017] [:error] [pid 29625:tid 139999005628160] [client 190.206.63.203:57118] [client 190.206.63.203] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\b(?
?:s(?:t(?:d(?:dev(_pop|_samp)?)?|r(?:_to_date|cmp))|u(?:b(?:str(?:ing(_index)?)?|(?:dat|tim)e)|m)|e(?:c(?:_to_time|ond)|ssion_user)|ys(?:tem_user|date)|ha(1|2)?|oundex|chema|ig?n|pace|qrt)|i(?:s(null|_(free_lock|ipv4_compat|ipv4_mapped|ipv4| ..." at ARGS:google_analytics_code. [file "/usr/local/apache/modsecurity-owasp-old/base_rules/modsecurity_crs_41_sql_injection_attacks.conf"] [line "125"] [id "950001"] [rev "2"] [msg "SQL Injection Attack"] [data "Matched Data: Date( found within ARGS:google_analytics_code: <script>\\x0d\\x0a (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){\\x0d\\x0a (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),\\x0d\\x0a m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)\\x0d\\x0a })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');\\x0d\\x0a\\x0d\\x0a ga('create', 'UA-96537384-1', 'auto');\\x0d\\x0a ga('send', [hostname "www.solodvdfull.com.ve"] [uri "/tienda/admin/index.php"] [unique_id "WOOJBX8AAAEAAHO5j5wAAABJ"], referer: https://www.solodvdfull.com.ve/tienda/admin/index.php?route=extension/analytics/google_analytics&token=usqA3PUepbuQwPK5sitsxCLjSRwlqLZN&store_id=0
5
CentOS-WebPanel GUI / Re: Mod security Problem
« on: April 04, 2017, 11:49:15 AM »
The problem is that when I try to inject in the database of my OPENCART mod security detects it as an attack and OPENCART works with random token always changes the id to be inserted in mod security
Mod security log attachment
[Tue Apr 04 07:28:21.239112 2017] [:error] [pid 26775:tid 139839557129984] [client 190.206.63.203:56908] [client 190.206.63.203] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(\\\\!\\\\=|\\\\&\\\\&|\\\\|\\\\||>>|<<|>=|<=|<>|<=>|xor|rlike|regexp|isnull)|(?:not\\\\s+between\\\\s+0\\\\s+and)|(?:is\\\\s+null)|(like\\\\s+null)|(??:^|\\\\W)in[+\\\\s]*\\\\([\\\\s\\\\d\\"]+[^()]*\\\\))|(?:xor|<>|rlike(?:\\\\s+binary)?)|(?:regexp\\\\s+binary))" at ARGS:google_analytics_code. [file "/usr/local/apache/modsecurity-owasp-old/base_rules/modsecurity_crs_41_sql_injection_attacks.conf"] [line "70"] [id "981319"] [rev "2"] [msg "SQL Injection Attack: SQL Operator Detected"] [data "Matched Data: || found within ARGS:google_analytics_code: <script>\\x0d\\x0a (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){\\x0d\\x0a (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),\\x0d\\x0a m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)\\x0d\\x0a })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');\\x0d\\x0a\\x0d\\x0a ga('create', 'UA-96537384-1', 'auto');\\x0d\\x0a ga('send', 'pagevi [hostname "www.solodvdfull.com.ve"] [uri "/tienda/admin/index.php"] [unique_id "WOODVX8AAAEAAGiXuXUAAADA"], referer: https://www.solodvdfull.com.ve/tienda/admin/index.php?route=extension/analytics/google_analytics&token=iI0zE3kZKqDxfJYyiYIFSqQm8eAVYf39&store_id=0
Closed session and returned to open, now see the message that the security token changes again
[Tue Apr 04 07:41:23.639685 2017] [:error] [pid 27577:tid 140466452403968] [client 190.206.63.203:57046] [client 190.206.63.203] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(\\\\!\\\\=|\\\\&\\\\&|\\\\|\\\\||>>|<<|>=|<=|<>|<=>|xor|rlike|regexp|isnull)|(?:not\\\\s+between\\\\s+0\\\\s+and)|(?:is\\\\s+null)|(like\\\\s+null)|(??:^|\\\\W)in[+\\\\s]*\\\\([\\\\s\\\\d\\"]+[^()]*\\\\))|(?:xor|<>|rlike(?:\\\\s+binary)?)|(?:regexp\\\\s+binary))" at ARGS:google_analytics_code. [file "/usr/local/apache/modsecurity-owasp-old/base_rules/modsecurity_crs_41_sql_injection_attacks.conf"] [line "70"] [id "981319"] [rev "2"] [msg "SQL Injection Attack: SQL Operator Detected"] [data "Matched Data: || found within ARGS:google_analytics_code: <script>\\x0d\\x0a (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){\\x0d\\x0a (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),\\x0d\\x0a m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)\\x0d\\x0a })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');\\x0d\\x0a\\x0d\\x0a ga('create', 'UA-96537384-1', 'auto');\\x0d\\x0a ga('send', 'pagevi [hostname "www.solodvdfull.com.ve"] [uri "/tienda/admin/index.php"] [unique_id "WOOGY38AAAEAAGu5VT4AAABJ"], referer: https://www.solodvdfull.com.ve/tienda/admin/index.php?route=extension/analytics/google_analytics&token=usqA3PUepbuQwPK5sitsxCLjSRwlqLZN&store_id=0
And try to include the user in the
-rw-r--r-- 1 root root 40 Apr 4 07:41 /usr/local/apache/userdata/solodvdf/solodvdfull.com.ve/modsec.conf
and nothing
Mod security log attachment
[Tue Apr 04 07:28:21.239112 2017] [:error] [pid 26775:tid 139839557129984] [client 190.206.63.203:56908] [client 190.206.63.203] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(\\\\!\\\\=|\\\\&\\\\&|\\\\|\\\\||>>|<<|>=|<=|<>|<=>|xor|rlike|regexp|isnull)|(?:not\\\\s+between\\\\s+0\\\\s+and)|(?:is\\\\s+null)|(like\\\\s+null)|(?
?:^|\\\\W)in[+\\\\s]*\\\\([\\\\s\\\\d\\"]+[^()]*\\\\))|(?:xor|<>|rlike(?:\\\\s+binary)?)|(?:regexp\\\\s+binary))" at ARGS:google_analytics_code. [file "/usr/local/apache/modsecurity-owasp-old/base_rules/modsecurity_crs_41_sql_injection_attacks.conf"] [line "70"] [id "981319"] [rev "2"] [msg "SQL Injection Attack: SQL Operator Detected"] [data "Matched Data: || found within ARGS:google_analytics_code: <script>\\x0d\\x0a (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){\\x0d\\x0a (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),\\x0d\\x0a m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)\\x0d\\x0a })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');\\x0d\\x0a\\x0d\\x0a ga('create', 'UA-96537384-1', 'auto');\\x0d\\x0a ga('send', 'pagevi [hostname "www.solodvdfull.com.ve"] [uri "/tienda/admin/index.php"] [unique_id "WOODVX8AAAEAAGiXuXUAAADA"], referer: https://www.solodvdfull.com.ve/tienda/admin/index.php?route=extension/analytics/google_analytics&token=iI0zE3kZKqDxfJYyiYIFSqQm8eAVYf39&store_id=0Closed session and returned to open, now see the message that the security token changes again
[Tue Apr 04 07:41:23.639685 2017] [:error] [pid 27577:tid 140466452403968] [client 190.206.63.203:57046] [client 190.206.63.203] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(\\\\!\\\\=|\\\\&\\\\&|\\\\|\\\\||>>|<<|>=|<=|<>|<=>|xor|rlike|regexp|isnull)|(?:not\\\\s+between\\\\s+0\\\\s+and)|(?:is\\\\s+null)|(like\\\\s+null)|(?
?:^|\\\\W)in[+\\\\s]*\\\\([\\\\s\\\\d\\"]+[^()]*\\\\))|(?:xor|<>|rlike(?:\\\\s+binary)?)|(?:regexp\\\\s+binary))" at ARGS:google_analytics_code. [file "/usr/local/apache/modsecurity-owasp-old/base_rules/modsecurity_crs_41_sql_injection_attacks.conf"] [line "70"] [id "981319"] [rev "2"] [msg "SQL Injection Attack: SQL Operator Detected"] [data "Matched Data: || found within ARGS:google_analytics_code: <script>\\x0d\\x0a (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){\\x0d\\x0a (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),\\x0d\\x0a m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)\\x0d\\x0a })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');\\x0d\\x0a\\x0d\\x0a ga('create', 'UA-96537384-1', 'auto');\\x0d\\x0a ga('send', 'pagevi [hostname "www.solodvdfull.com.ve"] [uri "/tienda/admin/index.php"] [unique_id "WOOGY38AAAEAAGu5VT4AAABJ"], referer: https://www.solodvdfull.com.ve/tienda/admin/index.php?route=extension/analytics/google_analytics&token=usqA3PUepbuQwPK5sitsxCLjSRwlqLZN&store_id=0And try to include the user in the
-rw-r--r-- 1 root root 40 Apr 4 07:41 /usr/local/apache/userdata/solodvdf/solodvdfull.com.ve/modsec.conf
and nothing
6
CentOS-WebPanel GUI / Re: Mod security Problem
« on: April 04, 2017, 10:50:31 AM »
Thanks for replying, what happens is that opencart works with token every time a token change is made mod security changes and blocks the page, I add the code in mos security unlock it, I add a product again and it locks again. I am doing tests to see how I do if I solve it I inform.
7
CentOS-WebPanel GUI / Mod security Problem
« on: April 04, 2017, 12:18:57 AM »
Good night, now I have a problem with mod security OPENCART, for the token I always change when adding a product or email and it blocks the page with 403, I did what they say in the installation but it again blocks the page and generates another id , Please wait for your help.
8
CentOS-WebPanel GUI / Message id [e7ba6e953c2ddce490621fc7ca7f8cfb]: === SECURITY WARNING === Hide all
« on: April 03, 2017, 11:10:17 PM »
Good night first of all I congratulate you for this excellent program, it really is very versatile and friendly, I tell you this because I do not have programming knowledge I do not know anything about php, sql, dns, anything about those scripts, Reading there, I learned a little about this powerful software, hopefully it remains free, I wish I could give donations to you to continue in this super project, but I live in Venezuela and well here there is a government that has us without foreign currency , If I had access to dollars or other currencies I would donate them, well the case is that I have a bug that I do not know how to fix it and I can not find a solution reading there, it is the following "Security - Hide all processes if not owned by The user [STATUS: DISABLED] "good I activate it and this appears" Security - Hide all processes if not owned by the user [STATUS: ACTIVE PERMANENT] "the problem is when I restart the server this message appears again" Message id [e7ba6e953c2ddce490621f C7ca7f8cfb]: === SECURITY WARNING === Hide all processes if not owned by the user is NOT activated on your server, click here to enable it! " When I go and enter to activate it again I find this message inside the panel associated with this message "Security - Hide all processes if not owned by the user [STATUS: DISABLED TEMPORARY and ACTIVE PERMANENT]" is normal? thanks for your help.
Pages: [1]
