Recent Posts
1
SSL / Secure your Webmail with Letsencrypt SSL Certificate , 100% Working
« Last post by glorency on Today at 11:14:47 AM »Hello Guys,
To secure your webmail with Green SSL bar , just follow the steps below describe
1. Follow the Link http://forum.centos-webpanel.com/ssl/install-letsencrypt-ssl-certificate-for-your-server-hostnamefqdn-100-working/
2. Go to "/usr/local/cwpsrv/conf.d/" and open
#vi webmail.conf
server {
listen 2096;
server_name localhost;
ssl on;
ssl_session_timeout 90m;
ssl_certificate /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/server1.datahead.biz/privkey.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
save & exit .
3. Restart your centos webpanel .
4. Now Check https://server1.datahead.biz:2096/
To secure your webmail with Green SSL bar , just follow the steps below describe
1. Follow the Link http://forum.centos-webpanel.com/ssl/install-letsencrypt-ssl-certificate-for-your-server-hostnamefqdn-100-working/
2. Go to "/usr/local/cwpsrv/conf.d/" and open
#vi webmail.conf
server {
listen 2096;
server_name localhost;
ssl on;
ssl_session_timeout 90m;
ssl_certificate /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/server1.datahead.biz/privkey.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
save & exit .
3. Restart your centos webpanel .
4. Now Check https://server1.datahead.biz:2096/
2
E-Mail / Re: To many spams - Postfix Mail Queue
« Last post by puterfixer on April 18, 2018, 10:40:21 PM »#1 - You should change the configuration of your mail server so that the spam filters are enabled. This is to block further receipt of spam mails.
CPanel > Email > MailServer Manager > enable AntiSpam/AntiVirus + rDNS Check if not already enabled > Rebuild mail server.
#2 - To clean up a massive amount of e-mails in the postfix queue, the web interface is not going to work. You'll need to connect to the server using a SSH client, log in with a standard account, SU to get root, then create a PERL script file using the code below and run it with the source or destination e-mail address as parameter:
Save this somewhere (/root would be fine) as pfdel.pl, make it executable with chmod, then run it with keywords like:
./pfdel.pl somedomain.tld
This would process the entire mail queue and delete all mails with the specified text in the e-mail address of sender or receiver.
CPanel > Email > MailServer Manager > enable AntiSpam/AntiVirus + rDNS Check if not already enabled > Rebuild mail server.
#2 - To clean up a massive amount of e-mails in the postfix queue, the web interface is not going to work. You'll need to connect to the server using a SSH client, log in with a standard account, SU to get root, then create a PERL script file using the code below and run it with the source or destination e-mail address as parameter:
Code: [Select]
#!/usr/bin/perl -w
#
# pfdel - deletes message containing specified address from
# Postfix queue. Matches either sender or recipient address.
#
# Usage: pfdel <email_address>
#
use strict;
# Change these paths if necessary.
my $LISTQ = "/usr/sbin/postqueue -p";
my $POSTSUPER = "/usr/sbin/postsuper";
my $email_addr = "";
my $qid = "";
my $euid = $>;
if ( @ARGV != 1 ) {
die "Usage: pfdel <email_address>\n";
} else {
$email_addr = $ARGV[0];
}
if ( $euid != 0 ) {
die "You must be root to delete queue files.\n";
}
open(QUEUE, "$LISTQ |") ||
die "Can't get pipe to $LISTQ: $!\n";
my $entry = <QUEUE>; # skip single header line
$/ = ""; # Rest of queue entries print on
# multiple lines.
while ( $entry = <QUEUE> ) {
if ( $entry =~ / $email_addr$/m ) {
($qid) = split(/\s+/, $entry, 2);
$qid =~ s/[\*\!]//;
next unless ($qid);
#
# Execute postsuper -d with the queue id.
# postsuper provides feedback when it deletes
# messages. Let its output go through.
#
if ( system($POSTSUPER, "-d", $qid) != 0 ) {
# If postsuper has a problem, bail.
die "Error executing $POSTSUPER: error " .
"code " . ($?/256) . "\n";
}
}
}
close(QUEUE);
if (! $qid ) {
die "No messages with the address <$email_addr> " .
"found in queue.\n";
}
exit 0;
Save this somewhere (/root would be fine) as pfdel.pl, make it executable with chmod, then run it with keywords like:
./pfdel.pl somedomain.tld
This would process the entire mail queue and delete all mails with the specified text in the e-mail address of sender or receiver.
3
E-Mail / To many spams - Postfix Mail Queue
« Last post by Damir on April 18, 2018, 07:09:35 PM »On my email account has received more than 32 000 spams( in 12h )
When I have tried to delete those spams on page ( CWP Admin > Email > Manage Mail Queue )
I have got a error message:
Code: [Select]
Fatal error
: Maximum execution time of 90 seconds exceeded in /usr/local/cwpsrv/htdocs/resources/admin/modules/mail_queue.php on line 0I stopped Postfix Mail Server, but next day it's activate again by itself, and now I have more than 53 900 spams for one email account.
I have tried to set new password, but it is not helped.
How to remove those spams?
Thanks
4
CentOS-WebPanel GUI / Re: Cant access IP:2082? 404 not found
« Last post by dmull on April 18, 2018, 06:12:36 PM »I also have the same issue.
Error is "An error occurred, Error 404"
Error is "An error occurred, Error 404"
5
SSL / Install Letsencrypt SSL Certificate for your Server Hostname/FQDN, 100% Working
« Last post by glorency on April 18, 2018, 05:40:20 PM »Hello Guys,
Today I am going to show you a easy steps to install Letsencrypt SSL Certificate for your Server Hostname/FQDN and I hope that it will be 100% working on your CentOS-Webpanel as mine .
Environment Details:
CentOS-Web Panel version: CWP7.admin
IP: Single (103.56.209.100)
RAM: 4 GB
Type: VPS
[root@server1 ~]# hostname
server1.datahead.biz
[root@server1 ~]# cat /etc/redhat-release
CentOS Linux release 7.4.1708 (Core)
[root@server1 ~]# getenforce
Disabled
[root@server1 ~]# systemctl status firewalld
â firewalld.service
Loaded: masked (/dev/null; bad)
Active: inactive (dead)
Must have proper DNS Records/Configuration
My Basic DNS records as follows:
A records with PTR
server1 103.56.209.100
ns1 103.56.209.100
ns2 103.56.209.100
server1.datahead.biz resolves to 103.56.209.100
ns1.datahead.biz resolves to 103.56.209.100
ns2.datahead.biz resolves to 103.56.209.100
After Completing all Basic configuration , Follow the Basic Steps below :
1.Apache Settings >> Letsencrypt Manager >> Install Letsencrypt
2. From Custom Install of Letsencrypt Options , Provide your Basic Information . Example :
Custom Install (can be used for hostname also):
Domain: server1.datahead.biz
Path:/usr/local/apache/htdocs/
UserName: nobody
Email: rubeldonarman@gmail.com [your valid email]
IP: 103.56.209.100
Port: 443
3. Now Click on "Install Custom Certificate"
===================After few Minutes , you will get below information as mine ===============
# vhost_start server1.datahead.biz
<VirtualHost 103.56.209.100:443>
ServerName server1.datahead.biz
ServerAdmin rubeldonarman@gmail.com
DocumentRoot /usr/local/apache/htdocs/
SSLEngine on
SSLCertificateFile /etc/letsencrypt/live/server1.datahead.biz/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/server1.datahead.biz/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_suexec.c>
SuexecUserGroup nobody nobody
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup nobody nobody
suPHP_ConfigPath /home/nobody
</IfModule>
<Directory "/usr/local/apache/htdocs/">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end server1.datahead.biz
========================== Copy the above information ========================
4.Go to Apache Settings >> Apache Include Conf >> hostname-ssl.conf
You will see your server self-sign ssl certificate as below (backup it before proceed):
# vhost_start server1.datahead.biz
<VirtualHost 103.56.209.100:443>
ServerName server1.datahead.biz
DocumentRoot /usr/local/apache/htdocs
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/server1.datahead.biz.cert
SSLCertificateKeyFile /etc/pki/tls/private/server1.datahead.biz.key
SSLCertificateChainFile /etc/pki/tls/certs/server1.datahead.biz.bundle
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_suexec.c>
SuexecUserGroup nobody nobody
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup nobody nobody
</IfModule>
<Directory "/usr/local/apache/htdocs">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end server1.datahead.biz
5. Delete self-sign ssl configuration and paste here your Letsencrypt Configuration as below :
# vhost_start server1.datahead.biz
<VirtualHost 103.56.209.100:443>
ServerName server1.datahead.biz
ServerAdmin rubeldonarman@gmail.com
DocumentRoot /usr/local/apache/htdocs/
SSLEngine on
SSLCertificateFile /etc/letsencrypt/live/server1.datahead.biz/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/server1.datahead.biz/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_suexec.c>
SuexecUserGroup nobody nobody
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup nobody nobody
suPHP_ConfigPath /home/nobody
</IfModule>
<Directory "/usr/local/apache/htdocs/">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end server1.datahead.biz
6. Click on "Save Changes"
7.Restart your Apache server
[root@server1 ~]# systemctl restart httpd
8. Now Edit and Save
[root@server1 ~]# vi /usr/local/cwpsrv/conf/cwpsrv.conf
server {
listen 2031;
listen 2087;
listen 2083;
server_name localhost;
ssl on;
ssl_session_timeout 90m;
ssl_certificate /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/server1.datahead.biz/privkey.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
error_page 497 https://$host:2087$request_uri;
9.Restart the services
[root@server1 ~]# systemctl restart httpd
[root@server1 ~]# systemctl restart cwpsrv
10. Finally Check and visit
CWP Admin Panel Link (by hostname)
https://server1.datahead.biz:2031/
https://server1.datahead.biz:2087/
CWP User Panel Link (by hostname)
https://server1.datahead.biz:2083/
if you need any kind of help , please comment
Today I am going to show you a easy steps to install Letsencrypt SSL Certificate for your Server Hostname/FQDN and I hope that it will be 100% working on your CentOS-Webpanel as mine .
Environment Details:
CentOS-Web Panel version: CWP7.admin
IP: Single (103.56.209.100)
RAM: 4 GB
Type: VPS
[root@server1 ~]# hostname
server1.datahead.biz
[root@server1 ~]# cat /etc/redhat-release
CentOS Linux release 7.4.1708 (Core)
[root@server1 ~]# getenforce
Disabled
[root@server1 ~]# systemctl status firewalld
â firewalld.service
Loaded: masked (/dev/null; bad)
Active: inactive (dead)
Must have proper DNS Records/Configuration
My Basic DNS records as follows:
A records with PTR
server1 103.56.209.100
ns1 103.56.209.100
ns2 103.56.209.100
server1.datahead.biz resolves to 103.56.209.100
ns1.datahead.biz resolves to 103.56.209.100
ns2.datahead.biz resolves to 103.56.209.100
After Completing all Basic configuration , Follow the Basic Steps below :
1.Apache Settings >> Letsencrypt Manager >> Install Letsencrypt
2. From Custom Install of Letsencrypt Options , Provide your Basic Information . Example :
Custom Install (can be used for hostname also):
Domain: server1.datahead.biz
Path:/usr/local/apache/htdocs/
UserName: nobody
Email: rubeldonarman@gmail.com [your valid email]
IP: 103.56.209.100
Port: 443
3. Now Click on "Install Custom Certificate"
===================After few Minutes , you will get below information as mine ===============
# vhost_start server1.datahead.biz
<VirtualHost 103.56.209.100:443>
ServerName server1.datahead.biz
ServerAdmin rubeldonarman@gmail.com
DocumentRoot /usr/local/apache/htdocs/
SSLEngine on
SSLCertificateFile /etc/letsencrypt/live/server1.datahead.biz/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/server1.datahead.biz/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_suexec.c>
SuexecUserGroup nobody nobody
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup nobody nobody
suPHP_ConfigPath /home/nobody
</IfModule>
<Directory "/usr/local/apache/htdocs/">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end server1.datahead.biz
========================== Copy the above information ========================
4.Go to Apache Settings >> Apache Include Conf >> hostname-ssl.conf
You will see your server self-sign ssl certificate as below (backup it before proceed):
# vhost_start server1.datahead.biz
<VirtualHost 103.56.209.100:443>
ServerName server1.datahead.biz
DocumentRoot /usr/local/apache/htdocs
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/server1.datahead.biz.cert
SSLCertificateKeyFile /etc/pki/tls/private/server1.datahead.biz.key
SSLCertificateChainFile /etc/pki/tls/certs/server1.datahead.biz.bundle
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_suexec.c>
SuexecUserGroup nobody nobody
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup nobody nobody
</IfModule>
<Directory "/usr/local/apache/htdocs">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end server1.datahead.biz
5. Delete self-sign ssl configuration and paste here your Letsencrypt Configuration as below :
# vhost_start server1.datahead.biz
<VirtualHost 103.56.209.100:443>
ServerName server1.datahead.biz
ServerAdmin rubeldonarman@gmail.com
DocumentRoot /usr/local/apache/htdocs/
SSLEngine on
SSLCertificateFile /etc/letsencrypt/live/server1.datahead.biz/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/server1.datahead.biz/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_suexec.c>
SuexecUserGroup nobody nobody
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup nobody nobody
suPHP_ConfigPath /home/nobody
</IfModule>
<Directory "/usr/local/apache/htdocs/">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end server1.datahead.biz
6. Click on "Save Changes"
7.Restart your Apache server
[root@server1 ~]# systemctl restart httpd
8. Now Edit and Save
[root@server1 ~]# vi /usr/local/cwpsrv/conf/cwpsrv.conf
server {
listen 2031;
listen 2087;
listen 2083;
server_name localhost;
ssl on;
ssl_session_timeout 90m;
ssl_certificate /etc/letsencrypt/live/server1.datahead.biz/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/server1.datahead.biz/privkey.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
error_page 497 https://$host:2087$request_uri;
9.Restart the services
[root@server1 ~]# systemctl restart httpd
[root@server1 ~]# systemctl restart cwpsrv
10. Finally Check and visit
CWP Admin Panel Link (by hostname)
https://server1.datahead.biz:2031/
https://server1.datahead.biz:2087/
CWP User Panel Link (by hostname)
https://server1.datahead.biz:2083/
if you need any kind of help , please comment
6
E-Mail / Failed to connect to server. Make sure you have entered the data correctly.
« Last post by paiano on April 18, 2018, 02:23:10 PM »I get this error when logging in to Roundcube. But the information is correct, I have 3 domains on the server, the login works perfectly on 1 of the domains, and 2 does not work by reporting the error above.
Has anyone had a similar problem? Aah, that same E-mail also does not connect in Gmail, but the domain that works, connects perfectly, all the settings are identical for all accounts with the same package and adjustments, there is nothing wrong.
Has anyone had a similar problem? Aah, that same E-mail also does not connect in Gmail, but the domain that works, connects perfectly, all the settings are identical for all accounts with the same package and adjustments, there is nothing wrong.
7
E-Mail / Re: Problem With Email
« Last post by Petersool on April 18, 2018, 11:24:31 AM »I checked both
but still spam
but still spam
8
CentOS-WebPanel Bugs / Re: letsencrypt ad postfix dovecot questions
« Last post by alessandrogiussani on April 18, 2018, 11:20:50 AM »i'd like to work on mysql , dovecot config and postfix config
please help me !!!!!
please help me !!!!!
9
CentOS-WebPanel Bugs / letsencrypt ad postfix dovecot questions
« Last post by alessandrogiussani on April 18, 2018, 11:17:00 AM »does anybody know how to resolve in a dinamic way the letsencrypt certificates to trust the mail server for every domains? 
10
CentOS-WebPanel Bugs / chome on android doesn't trust letsencrypt
« Last post by alessandrogiussani on April 18, 2018, 11:07:16 AM »chome on android doesn't trust letsencrypt
hi , i,ve found the solution
change in /usr/local/apache/conf.d/vhosts-ssl.conf
in this way on every vhosts
SSLCipherSuite ALL:!ADH:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP
SSLProtocol All -SSLv2 -SSLv3
SSLCertificateFile /etc/pki/tls/certs/yourdomain.bundle
SSLCertificateKeyFile /etc/pki/tls/private/yourdomain.key
SSLCertificateChainFile /etc/pki/tls/certs/yourdomain.bundle
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
(SSLCertificateFile /etc/pki/tls/certs/yourdomain.cert becames now SSLCertificateFile /etc/pki/tls/certs/yourdomain.bundle)
and change on CWP Configuration Templates for apache_ssl
in this way for the future ssl domail
# vhost_start DOMAIN_REPLACE
<VirtualHost IP_REPLACE:PORT_REPLACE>
ServerName DOMAIN_REPLACE
ServerAlias www.DOMAIN_REPLACE
ServerAdmin webmaster@DOMAIN_REPLACE
DocumentRoot PATH_REPLACE
UseCanonicalName Off
ScriptAlias /cgi-bin/ PATH_REPLACE/cgi-bin/
# Custom settings are loaded below this line (if any exist)
# Include "/usr/local/apache/conf/userdata/USER_REPLACE/DOMAIN_REPLACE/*.conf
SSLEngine on
SSLCipherSuite ALL:!ADH:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP
SSLProtocol All -SSLv2 -SSLv3
SSLCertificateFile /etc/pki/tls/certs/DOMAIN_REPLACE.bundle ######## here i've changed
SSLCertificateKeyFile KEY_PATH/DOMAIN_REPLACE.key
SSLCertificateChainFile /etc/pki/tls/certs/DOMAIN_REPLACE.bundle
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_userdir.c>
UserDir disabled
UserDir enabled USER_REPLACE
</IfModule>
<IfModule mod_suexec.c>
SuexecUserGroup USER_REPLACE USER_REPLACE
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup USER_REPLACE USER_REPLACE
suPHP_ConfigPath /home/USER_REPLACE
</IfModule>
<Directory "PATH_REPLACE">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end DOMAIN_REPLACE
thats all
hi , i,ve found the solution
change in /usr/local/apache/conf.d/vhosts-ssl.conf
in this way on every vhosts
SSLCipherSuite ALL:!ADH:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP
SSLProtocol All -SSLv2 -SSLv3
SSLCertificateFile /etc/pki/tls/certs/yourdomain.bundle
SSLCertificateKeyFile /etc/pki/tls/private/yourdomain.key
SSLCertificateChainFile /etc/pki/tls/certs/yourdomain.bundle
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
(SSLCertificateFile /etc/pki/tls/certs/yourdomain.cert becames now SSLCertificateFile /etc/pki/tls/certs/yourdomain.bundle)
and change on CWP Configuration Templates for apache_ssl
in this way for the future ssl domail
# vhost_start DOMAIN_REPLACE
<VirtualHost IP_REPLACE:PORT_REPLACE>
ServerName DOMAIN_REPLACE
ServerAlias www.DOMAIN_REPLACE
ServerAdmin webmaster@DOMAIN_REPLACE
DocumentRoot PATH_REPLACE
UseCanonicalName Off
ScriptAlias /cgi-bin/ PATH_REPLACE/cgi-bin/
# Custom settings are loaded below this line (if any exist)
# Include "/usr/local/apache/conf/userdata/USER_REPLACE/DOMAIN_REPLACE/*.conf
SSLEngine on
SSLCipherSuite ALL:!ADH:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP
SSLProtocol All -SSLv2 -SSLv3
SSLCertificateFile /etc/pki/tls/certs/DOMAIN_REPLACE.bundle ######## here i've changed
SSLCertificateKeyFile KEY_PATH/DOMAIN_REPLACE.key
SSLCertificateChainFile /etc/pki/tls/certs/DOMAIN_REPLACE.bundle
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
<IfModule mod_userdir.c>
UserDir disabled
UserDir enabled USER_REPLACE
</IfModule>
<IfModule mod_suexec.c>
SuexecUserGroup USER_REPLACE USER_REPLACE
</IfModule>
<IfModule mod_suphp.c>
suPHP_UserGroup USER_REPLACE USER_REPLACE
suPHP_ConfigPath /home/USER_REPLACE
</IfModule>
<Directory "PATH_REPLACE">
AllowOverride All
</Directory>
</VirtualHost>
# vhost_end DOMAIN_REPLACE
thats all