This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
287
Postfix / Re: Securing POSTFIX
« on: September 30, 2020, 10:36:24 PM »Hello Everyone,
Is the out of the box POSTFIX Configuration secure or are they any tweaks that can be made to secure it even further without breaking it? Does anyone have any secure example configurations they can share?
Thanks
Bossmanuk
Google it. There are lots of tweaks to make.
288
E-Mail / Re: Cant create new email address
« on: September 30, 2020, 06:48:28 PM »
Ditto here. Same exact problem. Screen shot posted in my post in information thread.
289
CSF Firewall / Re: Login to admin takes forever
« on: September 23, 2020, 06:01:02 PM »
I rebooted my linode node. That seemed to fix everything. CWP Dash now shows green again for firewall.
290
CSF Firewall / Re: Login to admin takes forever
« on: September 23, 2020, 05:03:13 PM »
csf.service - ConfigServer Firewall & Security - csf
Loaded: loaded (/usr/lib/systemd/system/csf.service; enabled; vendor preset: disabled)
Active: active (exited) since Fri 2020-08-07 21:45:04 EDT; 1 months 16 days ago
Main PID: 778 (code=exited, status=0/SUCCESS)
CGroup: /system.slice/csf.service
Warning: Journal has been rotated since unit was started. Log output is incomplete or unavailable.
Loaded: loaded (/usr/lib/systemd/system/csf.service; enabled; vendor preset: disabled)
Active: active (exited) since Fri 2020-08-07 21:45:04 EDT; 1 months 16 days ago
Main PID: 778 (code=exited, status=0/SUCCESS)
CGroup: /system.slice/csf.service
Warning: Journal has been rotated since unit was started. Log output is incomplete or unavailable.
291
CSF Firewall / Re: Login to admin takes forever
« on: September 23, 2020, 04:56:00 PM »
This an older install january 2020. firewalld not running.
292
CSF Firewall / Login to admin takes forever
« on: September 23, 2020, 12:20:02 PM »
I logged into admin okay but noticed that the dashboard said CSF not enabled. I clicked to enable and got a message that said CSF is not disabled. In the meantime, dashboard advised new update available. I updated from 1008 to 1009. Now login requires 5 minutes to get in.
ALSO csf is not working properly. I cannot do csf -x or -r or -f. Nothing happens.
Results from perl test of csf
Testing ip_tables/iptable_filter...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_LOG...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_multiport/xt_multiport...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_REJECT...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_state/xt_state...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_limit/xt_limit...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_recent...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for PORTFLOOD and PORTKNOCKING features
Testing xt_connlimit...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for CONNLIMIT feature
Testing ipt_owner/xt_owner...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for SMTP_BLOCK and UID/GID blocking features
Testing iptable_nat/ipt_REDIRECT...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for MESSENGER feature
Testing iptable_nat/ipt_DNAT...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf.redirect feature
RESULT: csf will not function on this server due to FATAL errors from missing modules [6]
[r
ALSO csf is not working properly. I cannot do csf -x or -r or -f. Nothing happens.
Results from perl test of csf
Testing ip_tables/iptable_filter...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_LOG...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_multiport/xt_multiport...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_REJECT...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_state/xt_state...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_limit/xt_limit...FAILED [FATAL Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf to function
Testing ipt_recent...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for PORTFLOOD and PORTKNOCKING features
Testing xt_connlimit...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for CONNLIMIT feature
Testing ipt_owner/xt_owner...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for SMTP_BLOCK and UID/GID blocking features
Testing iptable_nat/ipt_REDIRECT...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for MESSENGER feature
Testing iptable_nat/ipt_DNAT...FAILED [Error: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?] - Required for csf.redirect feature
RESULT: csf will not function on this server due to FATAL errors from missing modules [6]
[r
293
Postfix / Re: postfix force ipv4
« on: September 21, 2020, 02:27:35 PM »
Se7p 21 10:24:30 server.foreveryours.us postfix[6753]: fatal: config variable inet_interfaces: host not found: ipv4
Sep 21 10:24:31 server.foreveryours.us systemd[1]: postfix.service: control process exited, code=exited status=1
Sep 21 10:24:31 server.foreveryours.us systemd[1]: Failed to start Postfix Mail Transport Agent.
-- Subject: Unit postfix.service has failed
Sep 21 10:24:31 server.foreveryours.us systemd[1]: postfix.service: control process exited, code=exited status=1
Sep 21 10:24:31 server.foreveryours.us systemd[1]: Failed to start Postfix Mail Transport Agent.
-- Subject: Unit postfix.service has failed
294
Postfix / postfix force ipv4
« on: September 21, 2020, 02:18:23 PM »
inet_protocols = ipv4 will not allow restart postfix.
Update: I confused protocols with interfaces
Update: I confused protocols with interfaces
295
CentOS-WebPanel GUI / Re: Warning: mysqli_connect(): (HY000/1045) etc etc
« on: July 20, 2020, 11:35:49 AM »
OK. got cwp panel back. Here was the problem.
Apparently, the original root password in cwp database was not changed when I changed the password while the server was off. So I searched the database and found the password field was encrypted. So I tried the old original password in the mycnf file and the db_conn files. and restarted the mysql server. Now I have the cwp panel working again.
I will investigate separating the database from the apache server.
Apparently, the original root password in cwp database was not changed when I changed the password while the server was off. So I searched the database and found the password field was encrypted. So I tried the old original password in the mycnf file and the db_conn files. and restarted the mysql server. Now I have the cwp panel working again.
I will investigate separating the database from the apache server.
296
CentOS-WebPanel GUI / Re: Warning: mysqli_connect(): (HY000/1045) etc etc
« on: July 20, 2020, 04:15:47 AM »
OK. all of my websites came back. But the admin login page still gives me the white screen below. Odd that all databases are working but cwp database.
Warning: mysqli_connect(): (HY000/1045): Access denied for user 'root'@'localhost' (using password: YES) in /usr/local/cwpsrv/htdocs/resources/admin/include/functions.php on line 0
Warning: mysqli_connect(): (HY000/1045): Access denied for user 'root'@'localhost' (using password: YES) in /usr/local/cwpsrv/htdocs/admin/admin/index.php on line 0
Trying to start mysql server, please wait!
Try to restart CentOS Web Panel with command: sh /scripts/restart_cwpsrv
**Check your MySQL root password in: /usr/local/cwpsrv/htdocs/resources/admin/include/db_conn.php and /root/.my.cnf
Warning: mysqli_error() expects exactly 1 parameter, 0 given in /usr/local/cwpsrv/htdocs/admin/admin/index.php on line 0
Could not connect:
Warning: mysqli_connect(): (HY000/1045): Access denied for user 'root'@'localhost' (using password: YES) in /usr/local/cwpsrv/htdocs/resources/admin/include/functions.php on line 0
Warning: mysqli_connect(): (HY000/1045): Access denied for user 'root'@'localhost' (using password: YES) in /usr/local/cwpsrv/htdocs/admin/admin/index.php on line 0
Trying to start mysql server, please wait!
Try to restart CentOS Web Panel with command: sh /scripts/restart_cwpsrv
**Check your MySQL root password in: /usr/local/cwpsrv/htdocs/resources/admin/include/db_conn.php and /root/.my.cnf
Warning: mysqli_error() expects exactly 1 parameter, 0 given in /usr/local/cwpsrv/htdocs/admin/admin/index.php on line 0
Could not connect:
297
CentOS-WebPanel GUI / Re: Warning: mysqli_connect(): (HY000/1045) etc etc
« on: July 20, 2020, 04:04:05 AM »
It took me a day to track it down but I finally found the solution. You need to delete or rename the tc.log file in /var/lib/mysql
First shut down mysql then delete, then restart mysql. Everything came back to me.
I have to say that this all happened because I uploaded a filed that (long story short) got into a loop that ended up completely filling up my hard drive. After that, I was dead in the water with any db sites. Now all is well.
First shut down mysql then delete, then restart mysql. Everything came back to me.
I have to say that this all happened because I uploaded a filed that (long story short) got into a loop that ended up completely filling up my hard drive. After that, I was dead in the water with any db sites. Now all is well.