This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
E-Mail / Re: Postfix, SpamAssassin, or something else
« on: July 14, 2025, 03:58:49 PM »
https://www.leaseweb.com/en/about-us/legal/abuse-handling
https://kb.leaseweb.com/kb/compliance-security/compliance-and-security-contacting-abuse-prevention-department/
Use their contact forms (above) or e-mail them directly (handy if you have e-mail samples you can send them):
abusedesk@global.leaseweb.com
https://kb.leaseweb.com/kb/compliance-security/compliance-and-security-contacting-abuse-prevention-department/
Use their contact forms (above) or e-mail them directly (handy if you have e-mail samples you can send them):
abusedesk@global.leaseweb.com
2
Suggestions / Re: Simple editor to Master php.ini
« on: July 14, 2025, 03:51:06 PM »
Each user can have .user.ini php settings file in the web root or if you would rather, you can name it php.ini. Just uncomment that directive in the version php-fpm php.ini file.
3
Suggestions / Re: SSH Key generation for domain users
« on: July 14, 2025, 03:48:23 PM »
In the case of SSH access and keygen, I would indeed think you would want direct help desk intervention. I don't think you want to open up shell access to your server lightly, so 1-2 help tickets per server is attainable.
4
Mod_Security / Re: WordPress or WooCommerce, have a conflict with the OWASP CRS v4.16.0
« on: July 14, 2025, 03:42:16 PM »
You will need to look through your error logs and see which rules are triggering the blocks, then add them to the global rules file:
Afterward, don't forget to restart httpd. You can also disable Mod Security on a user-account basis to get you through the WordPress install process.
Code: [Select]
grep "modsecurity" /usr/local/apache/domlogs/*.error.log
Afterward, don't forget to restart httpd. You can also disable Mod Security on a user-account basis to get you through the WordPress install process.
5
Suggestions / Re: :):):) Comodo WAF rules update required :):):)
« on: July 14, 2025, 03:33:39 PM »
yes, exactly.
6
PHP Selector / Re: I can't Change my php version 8.1 to 8.2
« on: July 13, 2025, 10:54:42 AM »
Have you tried changing it from the admin panel side?
https://demo.harkatco.com:2087/login/index.php
https://demo.harkatco.com:2087/login/index.php
7
CSF Firewall / Re: CSF & Modsec
« on: July 12, 2025, 09:13:07 PM »
Confirm your update procedure was along these lines (no missing steps):
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-modsecurity-to-2-9-11-running-cwp-and-apache-on-almalinux-8-9/
Then install the latest OWASP ruleset:
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-to-4-16-0-running-cwp-and-apache-on-almalinux-8-9/
Then if you are having problems with CSF & LFD:
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/no-lfd-notifications-and-or-csf-not-blocking-ips-after-upgrading-to-owasp-latest-with-cwp-on-almalinux-8-9/
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-modsecurity-to-2-9-11-running-cwp-and-apache-on-almalinux-8-9/
Then install the latest OWASP ruleset:
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-to-4-16-0-running-cwp-and-apache-on-almalinux-8-9/
Then if you are having problems with CSF & LFD:
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/no-lfd-notifications-and-or-csf-not-blocking-ips-after-upgrading-to-owasp-latest-with-cwp-on-almalinux-8-9/
8
PHP Selector / Re: I can't Change my php version 8.1 to 8.2
« on: July 12, 2025, 02:08:14 PM »
And you have an active CWP Pro license for the IP of that server?
Code: [Select]
sh /scripts/update_cwp
9
Installation / Re: CWP-CentOS 8 MINIMAL ou BOOT Stream-Delayed
« on: July 12, 2025, 02:28:35 AM »
Please use AlmaLinux 8 or 9 as the foundation for a production-ready server. A beta quality or EOL (end of life) OS is not really suitable for a server.
10
MySQL / Re: increase the characters db
« on: July 10, 2025, 02:51:46 PM »
It takes the form of one entry per line (to map 8 char usernames to longer names):
shortname:longername
shortname:longername
11
MySQL / Re: increase the characters db
« on: July 10, 2025, 12:51:21 PM »Code: [Select]
/usr/local/cwp/.conf/mysql_user_prefix.conf
12
PHP / Re: Difference in the php views...
« on: July 10, 2025, 12:47:39 PM »
The main php version from the CLI that you have set used by PHP Switcher is called for php info on your first case. The display is typical for a 7.x version -- CWP renders it using their stylesheet so it matches the rest of the panel. But if you have an 8.x or later, it will call the normal php.info and display it in that space.
13
CentOS 8 Problems / Re: PHP compiling fails, strange ld / ldconfig behaviour?
« on: July 09, 2025, 11:19:43 PM »
If you want to PM me login details, I could take a look for you. I recommend PHP-FPM for performance reasons, plus the versatility of running php versions on a site-by-site basis with separate configs is a good thing. I have 4 versions running on one server -- legacy 5.6 for one site, 7.4 for a WordPress site that needs full compatibility, 8.1 for other WP sites, and 8.2 for a Drupal site.
14
Backup / Re: Can't locate diagnostics.pm in @INC (you may need to install th....
« on: July 09, 2025, 03:06:01 PM »
Maybe Starburst should answer since his production servers are AL9 -- I run my production servers under AL8 currently and only have a couple of test beds for AL9.
15
CentOS-WebPanel Bugs / Re: [CRITICAL] Multiple CWP Servers Infected – Arbitrary PHP Code Execution via Publ
« on: July 09, 2025, 12:29:06 PM »
Funny, this started as an information sharing thread but then devolved from there -- getting into sour personal attacks. I'm sorry I ever touched this tar baby. My point was, I can appreciate your report and will keep it on the radar because I see that you have a history here and contribute in a meaningful way. But when someone brand new comes on the scene trotting out security buzzwords and offering dubious advice about deleting the filemanager (instead of mitigating the attack vector in a non-destructive way)... well, take that for what it is. I'll go back to monitoring my servers now.
(Both security disclosures you linked to claim the CWP devs have patched the flaw, and both indicated it was against CentOS 7 -- so it bears monitoring but not hyperventilating.)
(Both security disclosures you linked to claim the CWP devs have patched the flaw, and both indicated it was against CentOS 7 -- so it bears monitoring but not hyperventilating.)