Recent Posts

11

CSF Firewall / Re: CSF Auto Update Re-Enabled v14.24 and v15.00

« Last post by NIIcK on February 24, 2026, 09:19:24 PM »

Hello @Starburst,

Are the mirrors still up? I am getting a expired SSL certificate and no index.

As an example, I cannot find CSF on elrepo.nue.de.ssimn.org and csf -u returns:

Code: [Select]

csf -u
Oops: Unable to download: Not Found
with: if ($chosen eq "") {$chosen = "elrepo.nue.de.ssimn.org"} in /usr/local/csf/lib/ConfigServer/Config.pm

Thank you in advance!

12

CSF Firewall / Re: Should we update CSF to V15??

« Last post by venty on February 24, 2026, 04:03:45 PM »

Just follow Starburst's guide to update to CSF 15.08 (Aetherinox's fork):
https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/aetherinox-csf-firewall-update-to-v15-08/

Hi,

Thanks for the answer, but I'm now with the original CSF of the CWP, version 14.2. Shouldn't I follow one of these two instructions before following the instruction you provided:

https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/csf-firewall-gplv3-release-tweaked-for-cwp/

or

https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/csf-firewall-error-oops-unable-to-download-no-host-option-provided/

or both?

and then the instructions you provided:

https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/aetherinox-csf-firewall-update-to-v15-08/

and I already saw that the following are also available:

https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/aetherinox-csf-firewall-update-to-v15-09/

Please tell me which one to follow and which one to follow after that...

Thanks in advance!


BR
Venty

13

Updates / Re: [SECURITY ALERT] Unauthorized port / [SECURITY ALERT] Unknown/Untrusted file..

« Last post by overseer on February 24, 2026, 02:00:34 PM »

No, it's a scary false positive. Ignore it and it will go away with the next CWP update when they update the script. Or edit the script (/scripts/cwp_security_audit) directly to remove the stanza that checks for ghost files.

Since I run CWP on an alternate port, that script also generates a warning about unauthorized ports -- but of course it's authorized and listed in
/usr/local/cwpsrv/conf/cwpsrv.conf and /etc/csf/csf.conf. So I had to add my alternate port to the list of allowed ports in that script.

14

CSF Firewall / Re: Should we update CSF to V15??

« Last post by overseer on February 24, 2026, 01:55:26 PM »

Just follow Starburst's guide to update to CSF 15.08 (Aetherinox's fork):
https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/aetherinox-csf-firewall-update-to-v15-08/

15

Other / Re: Goodbye CWP — I’m done for good

« Last post by overseer on February 24, 2026, 01:53:51 PM »

Forum downtime actually feels self-inflicted because of 503 gateway errors. Nginx could be updated & tuned better and for sure php-fpm starvation is the root of the problem -- PHP on a PHP-heavy forum needs greater resources, caching, increased timeouts, etc. But for sure CF turnstile would be a great addition for DDoS protection.

16

CSF Firewall / Re: Should we update CSF to V15??

« Last post by venty on February 24, 2026, 10:49:45 AM »

Hi,

Thank you very much for the answers here, but I've gotten distracted...

I'm now with AL 9.7, but with the original CSF of the CWP, and with version 14.2, I'm just asking for the links for:

1. Do I have to be on version 15 of the original CSF of the CWP to be able to switch to the CSF fork of Aetherinox??
A link to switch from version 14.2 to version 15.0 of the original CSF of the CWP...

2. And the link to switch from the original CSF to the CSF fork of Aetherinox...

Thanks in advance!

BR
Venty

17

Updates / Re: [SECURITY ALERT] Unauthorized port / [SECURITY ALERT] Unknown/Untrusted file..

« Last post by venty on February 24, 2026, 10:33:58 AM »

Hi,

thank you very much for the reply..., as far as I can tell, they are fake...

The question is that I deleted them, and today they appeared again, the same two messages. Should I do something?

BR
Venty

18

Other / Re: Goodbye CWP — I’m done for good

« Last post by Purelaise on February 24, 2026, 10:12:13 AM »

I think they could at least put the forum behind some kind of DDOS protection like CloudFlare or whatever as a start. We can build form there 

19

Other / Re: Goodbye CWP — I’m done for good

« Last post by sETu on February 24, 2026, 08:58:22 AM »

Goodbye CWP, I’m done for good.

Alright folks, this is my last post here.

I’m officially moving away from Control Web Panel and I’m not looking back. This isn’t a rage-quit. It’s a long-overdue “operations sanity” decision.

Why I’m leaving:

• Admins missing in action. Too often it feels like nobody is steering the ship.
  
• A few loud users run the forum. If you ask real questions, you get politics instead of answers.
  
• Support reality: Asking for help here is mostly useless and if you positively criticize something, some people act like you committed a crime.
  
• The usual reply: “Go buy a paid panel then.” Cool. That’s exactly what I did because when clients are paying me, I need reliability and support, not forum drama.
  
• Updates went for a toss: There hasn’t been a meaningful update in forever (feels like a year+). PHP updates feel like a wishful dream, roadmap talk stays talk, and the product momentum just isn’t there.
  
• Updates + security: CVEs get discovered fast… but fixes feel slow. And in between, you’re left patching holes with your own custom scripts just to keep things tight.
  
• DIY forever: Fixing loopholes and making things “production-safe” shouldn’t require custom scripts for half the stack, but here we are.
  
• DNS cluster (sorry): It’s not production-grade. I ended up writing my own DNS cluster scripts and they’ve been more stable and predictable than what I got out of the box.
  

My take (simple):
Open-source is amazing when it’s actively maintained and supported. 
But if you’re running a business, charging clients, or your uptime matters, then support and accountability aren’t “luxury items.” They’re the basics.

So yeah… I finally did it. Moved on. 
And honestly, if you’re reading this while firefighting the same stuff every week maybe you should consider it too.

No hate, no personal beef just facts from the trenches.

Wishing you all the best. 
Logging off for good...

--
Jaspreet Singh

can you please suggest me which control panel you are using now or plan to switch?

20

Other / Re: Goodbye CWP — I’m done for good

« Last post by sETu on February 24, 2026, 08:55:08 AM »

Completely agree with Jaspreet Singh.

This project seems to be dead, as we have not received any updates since Nov 2024, and there is no support on the forum either.

Some time ago, I contacted the CWP team, and they said they were working, but they blocked me then. There are a few members who are running the forum by just saying "CWP Team is working, CWP is not dead, blah blah, etc.." and a few of them are sharing their article users, but the actual CWP team doesn't bother looking at the forum.

It's time to move on

Project is NOT DEAD. Not sure why you keep posting that line...

CWP pushed an update today (2026-02-18)  0.9.8.1222.
And before that 0.9.8.1221 was pushed on 2026-02-02

It's personal preference if you want to stop using CWP and 'move on'

I've tested other panels, and they all have CVEs and can not be kept updated as easily as CWP can be.
Some don't even have the features CWP has, and cost $$$ more.

Can CWP do better with some things, yes.

I am also seeing these numbers are changing. which is great. if the number changes means update to you than its ok for you only. dont push it to others. your way of satisfaction and others will be not same. for example i personally needs a full professional description what is actually changed. not just the number. So please stop imposing your thought on others.