Recent Posts
81
CentOS 7 Problems / Re: Download files through FilleZilla stop and do not complete (Centos7)
« Last post by overseer on May 25, 2025, 01:31:30 AM »I haven't had trouble uploading/downloading anything vis FTP/S or SFTP from my CWP servers, but then I don't think I have any dir approaching 10K-50K contents... which I suppose is not a problem on an XFS filesystem. I would suspect the problem lies with Bugzilla, I mean FileZilla -- as a culprit. Or at least perhaps some setting is your limitation. Have you tried with NcFTP or an alternate client?
82
SSL / Re: Unabl to update SSL cert after router upgrade
« Last post by overseer on May 25, 2025, 01:18:43 AM »Does your router support hairpin NAT? You may need to get forward/reverse DNS going on your LAN.
https://arstechnica.com/information-technology/2024/02/doing-dns-and-dhcp-for-your-lan-the-old-way-the-way-that-works/
Offhand, I can't see running a server behind decidedly consumer routers (and as Starburst intimated, TP-Link has some decided concerns due to their relationship with the PRC gov). I would want something SOHO pro-sumer or better (Ubiquiti, SonicWall) with more configurable firewalls and routing options if I were self-hosting in a home lab scenario.
Have you tried dropping the CSF firewall and Mod Security temporarily to make sure they are not interfering?
https://arstechnica.com/information-technology/2024/02/doing-dns-and-dhcp-for-your-lan-the-old-way-the-way-that-works/
Offhand, I can't see running a server behind decidedly consumer routers (and as Starburst intimated, TP-Link has some decided concerns due to their relationship with the PRC gov). I would want something SOHO pro-sumer or better (Ubiquiti, SonicWall) with more configurable firewalls and routing options if I were self-hosting in a home lab scenario.
Have you tried dropping the CSF firewall and Mod Security temporarily to make sure they are not interfering?
83
E-Mail / Re: spamassassin.service: Failed with result 'start-limit-hit'
« Last post by overseer on May 25, 2025, 01:06:58 AM »Sounds as if you are re-setting SPAMDOPTIONS twice in the same file. So likely only the 2nd line would be read (overwrites the first).
Wonder was indicating (as I use and the wiki mentions https://wiki.centos-webpanel.com/how-to-configure-spamassassin) to use /etc/spamassassin/local.cf instead of /usr/share/spamassassin...
Personally, I have had trouble NOT running SpamAssassin in daemon mode, so I don't run it in service mode.
But as mentioned earlier in the thread, did you try:
Wonder was indicating (as I use and the wiki mentions https://wiki.centos-webpanel.com/how-to-configure-spamassassin) to use /etc/spamassassin/local.cf instead of /usr/share/spamassassin...
Personally, I have had trouble NOT running SpamAssassin in daemon mode, so I don't run it in service mode.
But as mentioned earlier in the thread, did you try:
Code: [Select]
StartLimitBurst=084
SSL / Re: Unabl to update SSL cert after router upgrade
« Last post by henryluiz on May 24, 2025, 11:33:17 PM »HI,
Thank u for the resposne.
I have a fixed external IP address 59.167.xxx.yyy and redireted port 80 and 443 to the internal CWP sevrer 192.168.xxx.yyy
A nslookup on my pc on the same netowrk as the CWP server has the below results, same for the dlink and tplink.
Server: dns.google
Address: 8.8.8.8
Non-authoritative answer:
Name: surtrans.com.au
Address: 59.167.xxx.yyy
A record points to 59.167.xxx.yyy
Port forwarding is setup
HTTP 192.168.xxx.yyy 80 80 All
HTTPS 192.168.xxx.yyy 443 443 All
CWP configuration is unchanged when tetsting with dlink and tplink.
apprciate any futher help
Thank u for the resposne.
I have a fixed external IP address 59.167.xxx.yyy and redireted port 80 and 443 to the internal CWP sevrer 192.168.xxx.yyy
A nslookup on my pc on the same netowrk as the CWP server has the below results, same for the dlink and tplink.
Server: dns.google
Address: 8.8.8.8
Non-authoritative answer:
Name: surtrans.com.au
Address: 59.167.xxx.yyy
A record points to 59.167.xxx.yyy
Port forwarding is setup
HTTP 192.168.xxx.yyy 80 80 All
HTTPS 192.168.xxx.yyy 443 443 All
CWP configuration is unchanged when tetsting with dlink and tplink.
apprciate any futher help
85
SSL / Re: Unabl to update SSL cert after router upgrade
« Last post by Starburst on May 24, 2025, 05:55:44 PM »NAT problems are difficult, due to all the various hardware and configuration settings.
You need to make sure ports 80 & 443 are open & being forwarded correctly, not only on the router but also CWP.
If the IP changed, then you will need to update CWP.
Then also do you have a static or dynamic IP.
Good luck.
This is where network config knowledge comes into play as a Sys Admin, as they can't be diagnosed most times remotely.
--
Also FYI, TP-Link hardware use has been suspended due to security backdoors found in their hardware.
You need to make sure ports 80 & 443 are open & being forwarded correctly, not only on the router but also CWP.
If the IP changed, then you will need to update CWP.
Then also do you have a static or dynamic IP.
Good luck.
This is where network config knowledge comes into play as a Sys Admin, as they can't be diagnosed most times remotely.
--
Also FYI, TP-Link hardware use has been suspended due to security backdoors found in their hardware.
86
E-Mail / Re: spamassassin.service: Failed with result 'start-limit-hit'
« Last post by anandmys on May 24, 2025, 11:23:16 AM »I see error in maillog
Quote
spamd[3368847]: razor2: razor2 check failed: No such file or directory razor2: Can't read: /var/lib/razor/ at /usr/share/perl5/vendor_perl/Mail/SpamAssassin/Plugin/Razor2.pm line 331.
87
SSL / Unabl to update SSL cert after router upgrade
« Last post by henryluiz on May 24, 2025, 10:01:49 AM »HI,
I have upgraded my router and enured all the required port forwarding is enabled. I use my ISP DNS to point to my server that hosts the web site.
When useing the new router (TP-link) and try to update the SSL I get the followng message.
"DNS Redirection problem for surtrans.com.au with www and without it"
and sometimes i rec
"DNS of your domain doesn't point to this server or you have htaccess restrictions"
I roll back to my old router (Dlink) and the SSL updates successfuly.
I have disabled most features in the new router including the fire wall
Apprciate youe help.
regards
Henry
I have upgraded my router and enured all the required port forwarding is enabled. I use my ISP DNS to point to my server that hosts the web site.
When useing the new router (TP-link) and try to update the SSL I get the followng message.
"DNS Redirection problem for surtrans.com.au with www and without it"
and sometimes i rec
"DNS of your domain doesn't point to this server or you have htaccess restrictions"
I roll back to my old router (Dlink) and the SSL updates successfuly.
I have disabled most features in the new router including the fire wall
Apprciate youe help.
regards
Henry
88
E-Mail / Re: spamassassin.service: Failed with result 'start-limit-hit'
« Last post by anandmys on May 24, 2025, 08:42:09 AM »Also have
/usr/share/spamassassin/local.cf with options below:
/usr/share/spamassassin/local.cf with options below:
Quote
rewrite_header Subject *****SPAM*****
# report_safe 1
# trusted_networks 212.17.35.
required_score 5.0
use_bayes 1
bayes_auto_learn 1
bayes_ignore_header X-Bogosity
bayes_ignore_header X-Spam-Flag
bayes_ignore_header X-Spam-Status
include /usr/share/spamassassin/
89
E-Mail / Re: spamassassin.service: Failed with result 'start-limit-hit'
« Last post by anandmys on May 24, 2025, 08:35:42 AM »First of all, sorry for the delay of about 2 months in replying. I read your answer, and I really appreciate it.
However, during this time I have been looking for information by conducting tests ... etc ... and although I could have answered before, I have chosen to answer after having carried out tests and to say forcefully, that the results are positive after a month having implemented the last change / test.
Effectively your answer / solution solves the initial problem that I expose in this thread, even so, it has always surprised me a lot that, spamassassin raises the cpu consumption to 0.90 - 1.00 on average, regardless of the fact that, no matter how much we configure spamassassin such and as the cwp wiki says, also as it supports cwp (I requested support for it) never send any mail to the spam folder ... this was very strange to me.
The answer to this increase in cpu is that perhaps, I would have many emails on my server ...
The tests I have done on 4 servers, I have 3 for testing 1 in production.
Gradually I was eliminating mails from the main test server, and the consumption was always the same ... there came a day that, I eliminated all the accounts of that server, no account, no mail, nothing, the consumption of spamassassin was still the same, I raised the server to 0.90 - 1.00 on average. Something very very high.
Too bad it didn't save the url where I got the information, I did write it down in kate (linux notepad) and I have it saved in my documents. If you have saved the url, you could say the clear terms of the explanation.
Well, the change happens by modifying / etc / sysconfig / spamassassin file:
In wiki they indicate:Code: [Select]SPAMDOPTIONS = "- d -c -m5 -u nobody -s $ {SAHOME} spamd.log"But we actually remove the "-d" from the beginning, looking like this:Code: [Select]SPAMDOPTIONS = "-c -m5 -u nobody -s $ {SAHOME} spamd.log"If my memory does not fail me (and it is easy for it to fail) this causes spamassassin to be executed as a service (I do not remember exactly if it was a service or another ...) and now it does, spamassassin, without making the changes that you mention in your post and that I had also seen in other internet threads, it is always executed, without any crash and without load on the server, the server load is normal, if you are using apache, then whatever Apache loads or whatever, and during non-use hours, the server load is 0.00 and spamassassin is active.
The reason why, despite this, spamassassin does not filter, does not take the identified emails to the spam folder and does not rename them with *** SPAM *** as indicated in the wiki, is because it should not be configured in / usr / share /spamassassin/local.cf
Rather, it must be configured in another path.
After that, you can test by sending an email with the subject:
"XJS * C4JDBQADN1.NSBN3 * 2IDNEN * GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL * C.34X" (without quotes) and it looks like the mail is put in the spam folder and renamed the subject to *** SPAM ***.
Greetings.
I have in / etc / sysconfig / spamassassin file
Quote
# Options to spamd
SPAMDOPTIONS="-c -m5 -H --razor-home-dir='/var/lib/razor/' --razor-log-file='sys-syslog'"
SAHOME="/var/lib/spamassassin/"
SPAMDOPTIONS="-d -c -m5 -u nobody -s ${SAHOME}spamd.log"
/etc/postfix/master.cf I have
Quote
smtp inet n - n - - smtpd
-o content_filter=smtp-amavis:127.0.0.1:10024
-o receive_override_options=no_address_mappings
-o content_filter=spamassassin
spamassassin unix - n n - - pipe
user=nobody argv=/usr/bin/spamc -f -e
/usr/sbin/sendmail -oi -f ${sender} ${recipient}
What else should I be looking?
90
CentOS 7 Problems / Download files through FilleZilla stop and do not complete (Centos7)
« Last post by changlee on May 24, 2025, 07:48:42 AM »Hello,
I use CWP at a VPS CentOS Linux release 7.9.2009
I download a big eshop folders/files through FilleZilla but I face the following issue: When FilleZilla downloads the contents of /catalog it can no download every file.
This folder contains a large number of aprox. 50.000 images but FileZilla downloads only aprox. 10.000 files. Is that a server/CWP setting that I have to change?
Thanks!
I use CWP at a VPS CentOS Linux release 7.9.2009
I download a big eshop folders/files through FilleZilla but I face the following issue: When FilleZilla downloads the contents of /catalog it can no download every file.
This folder contains a large number of aprox. 50.000 images but FileZilla downloads only aprox. 10.000 files. Is that a server/CWP setting that I have to change?
Thanks!
