Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - idc

Pages: [1] 2
Updates / This server needs to be upgraded by using this instruction!
« on: February 24, 2018, 01:56:27 AM »
Hi I tried to get into webpanel, I have not been in there for quite a few months now, but I get the following error.

This server needs to be upgraded by using this instruction!

For assistance, you can contact our support at:

How do I get back the web panel

CentOS 6 Problems / Valid Mail stuck in queue
« on: October 06, 2017, 08:10:24 AM »

Hope someone can shed some light, sevrer has been workign well for over a year now. But now I have got a strange problem in that valid emails are stuck in queue and not being delivered to mail boxes.

I have checked dovecot.log file, which reported permission error with dovecot-info.log, I think I have corrected this, but now am getting similar error for dovecot-debug.log.

I have tried rebuilding mail server, but this does not help.

Is there some way to rebuild/recreate all necessary log files with the correct owner and group permissions?

I recently cleared a lot of old log files.

Addons / Trying to Install Lets Encrypt, but getting errors
« on: March 09, 2017, 05:06:59 PM »

Thanks to firefox 51 showing insecure message when users login, it has forced me to add ssl to site login.
Lets Encrypt would seem to be the preferred option for me, but following the vid instruction. I can only get so far
When I click install certificate the following error message appears.

Bootstrapping dependencies for RedHat-based OSes...
yum is /usr/bin/yum
Package gcc-4.4.7-17.el6.x86_64 already installed and latest version
Package redhat-rpm-config-9.0.3-51.el6.centos.noarch already installed and latest version
Package ca-certificates-2015.2.6-65.0.1.el6_7.noarch already installed and latest version
Package python-2.6.6-66.el6_8.x86_64 already installed and latest version
There are unfinished transactions remaining. You might consider running yum-complete-transaction first to finish them.
The program yum-complete-transaction is found in the yum-utils package.
Error: python-devel conflicts with python-2.6.6-64.el6.x86_64
 You could try using --skip-broken to work around the problem
** Found 17 pre-existing rpmdb problem(s), 'yum check' output follows:
MariaDB-client-10.1.18-1.el6.x86_64 is a duplicate with MariaDB-client-10.1.16-1.el6.x86_64
MariaDB-common-10.1.18-1.el6.x86_64 is a duplicate with MariaDB-common-10.1.16-1.el6.x86_64
MariaDB-compat-10.1.18-1.el6.x86_64 is a duplicate with MariaDB-compat-10.1.16-1.el6.x86_64
MariaDB-server-10.1.18-1.el6.x86_64 is a duplicate with MariaDB-server-10.1.16-1.el6.x86_64
MariaDB-shared-10.1.18-1.el6.x86_64 is a duplicate with MariaDB-shared-10.1.16-1.el6.x86_64
32:bind-libs-9.8.2-0.47.rc1.el6_8.1.x86_64 is a duplicate with 32:bind-libs-9.8.2-0.47.rc1.el6.x86_64
32:bind-utils-9.8.2-0.47.rc1.el6_8.1.x86_64 is a duplicate with 32:bind-utils-9.8.2-0.47.rc1.el6.x86_64
cronie-1.4.4-16.el6_8.2.x86_64 is a duplicate with cronie-1.4.4-15.el6_7.1.x86_64
cronie-anacron-1.4.4-16.el6_8.2.x86_64 is a duplicate with cronie-anacron-1.4.4-15.el6_7.1.x86_64
galera-25.3.18-1.rhel6.el6.x86_64 is a duplicate with galera-25.3.15-1.rhel6.el6.x86_64
grep-2.20-5.el6_8.x86_64 is a duplicate with grep-2.20-3.el6_7.1.x86_64
1:net-snmp-5.5-57.el6_8.1.x86_64 is a duplicate with 1:net-snmp-5.5-57.el6.x86_64
1:net-snmp-libs-5.5-57.el6_8.1.x86_64 is a duplicate with 1:net-snmp-libs-5.5-57.el6.x86_64
openssl-1.0.1e-48.el6_8.3.i686 is a duplicate with openssl-1.0.1e-48.el6_8.1.x86_64
python-2.6.6-66.el6_8.x86_64 is a duplicate with python-2.6.6-64.el6.x86_64
python-libs-2.6.6-66.el6_8.x86_64 is a duplicate with python-libs-2.6.6-64.el6.x86_64
udev-147-2.73.el6_8.2.x86_64 is a duplicate with udev-147-2.73.el6.x86_64
Could not install OS dependencies. Aborting bootstrap!


All of a sudden I am getting Client Host rejected: Cannot find your hostname.

I have not changed anything on server, server is not blacklisted, my isp client ip is not black listed.

I have tried restarting SERVER ( this now is not clean, i have to start service manula, and then start most of the services when I get back into centos web panel).

Is there some sort of auto update thing tthat can 'screw up' installations?

belows is file
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
anvil_rate_time_unit = 3600s
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
delay_warning_time = 4
disable_vrfy_command = yes
html_directory = no
inet_interfaces = all
mail_owner = postfix
mailbox_size_limit = 2048000000
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
message_size_limit = 204800000
milter_default_action = accept
milter_protocol = 2
mydestination = $myhostname, localhost.$mydomain, localhost
mydomain = **MYDOMAIN**.com
myhostname = server.**MYDOMAIN**.com
mynetworks = $config_directory/mynetworks
newaliases_path = /usr/bin/newaliases.postfix
non_smtpd_milters = $smtpd_milters
queue_directory = /var/spool/postfix
recipient_bcc_maps = proxy:mysql:/etc/postfix/
recipient_delimiter = +
relay_domains = proxy:mysql:/etc/postfix/
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_tls_CAfile = /etc/pki/tls/certs/ca-bundle.crt
smtp_tls_session_cache_database = btree:$data_directory/smtp_tls_session_cache
smtp_use_tls = yes
smtpd_client_message_rate_limit = 500
smtpd_client_restrictions = reject_unknown_client
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_helo_required = yes
smtpd_helo_restrictions =
smtpd_milters = inet:

smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination,reject_non_fqdn_sender,reject_non_fqdn_recipient,reject_unknown_recipient_domain,reject_rbl_client,reject_rbl_client,reject_rbl_client,check_policy_service unix:private/spfpolicy

smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sender_restrictions =
smtpd_tls_CAfile = /etc/pki/tls/certs/ca-bundle.crt
smtpd_tls_cert_file = /etc/pki/tls/certs/server.**MYDOMAIN**.com.crt
smtpd_tls_key_file = /etc/pki/tls/private/server.**MYDOMAIN**.com.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
soft_bounce = yes
tls_random_source = dev:/dev/urandom
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 550
virtual_alias_maps = proxy:mysql:/etc/postfix/, regexp:/etc/postfix/virtual_regexp
virtual_gid_maps = static:12
virtual_mailbox_base = /var/vmail
virtual_mailbox_domains = proxy:mysql:/etc/postfix/
virtual_mailbox_maps = proxy:mysql:/etc/postfix/
virtual_minimum_uid = 101
virtual_transport = dovecot
virtual_uid_maps = static:101

Hope someone can help, been bashing head against wall. I have checked and double checked that my IP address is allowed through firewall etc.

Question. Would I need to create an entry in CWP dns on server to map my static client ip to belong to domain.

This is a simple config A single site, one user (me) allowed to update and send mail and this user (me) has a static ip; could it get any easier?


E-Mail / Unable to send mails, rejected and not in mail queue
« on: July 20, 2016, 10:01:28 AM »
All of a sudden I cannot send any emails with mail client.
Error is
Server Error: 450
Server Response: 450 4.7.1 Client host rejected: cannot find your hostname, [my isp number]

The message does not appear on mail quueue in web panel

The only change that I know of is my isp number is dynamic; and has changed today after reboot of router.

I can receive emails without issue.

ANy ideas how to fix?

E-Mail / Getting blacklisted
« on: July 09, 2016, 11:27:34 PM »
I am getting repeatadly blacklisted on Protected Sky.
I have valid spf, dmarc and rdns set up.
My mail score is 10/10. No OPen Relays..
Checked mail loggs no un authorized mail is being sent.
I have noticed messages where some spammers are pretending to be from my domain, mail server is responding with IP is not from authorized sender and sender not authorized in domain. SPF failed, DMARC failed etc.
Which is what I would expect it to reply. But am still getting lsited.

is there a solution to this?


E-Mail / BackScatter
« on: June 30, 2016, 07:57:32 AM »
Is there anyway to minimize the amount of backscatter?

CSF Firewall / list ip tables rules not showing
« on: June 28, 2016, 10:26:58 AM »
When I click
List Ip Tables Rules
Web Panel, just sits there with a spinning busy icon.
i have left it for over 10 minutes; just spinning (working) and nothing is showing.

Is this normal?
Any ideas?

I am getting quite a few emails to admin that are saying the has sent an email and is being bounced as spam, the user is not a valid user, and I suspect this is a spoofed email.
My mail-check report is 10/10, I haveno open relay as everything is checking out fine with all online test. And I have checked server logs, and no email has been genereated from my server.

So how can I auto drop these emails that are arriving so that admin does not even see them, as they are unknown users to domain.

Any Ideas?


Installation / How to auto start services ?
« on: June 14, 2016, 03:16:04 PM »
I had to uninstall clamv,antispam and Amavis, to solve a problem
I re-installed amavis as AV and spamfilter not required.

Now when I restart Reboot server, i have to start the web panel service maually
service cwpsrv restart
this produces
Stopping cwpsrvd:                                          [FAILED]
Starting cwpsrvd: cwpsrvd: Could not reliably determine the server's fully qualified domain name, using s for ServerName
                                                           [  OK  ]

Now when i load panel
the following services are not started and need manual starting

When I click these they start up fine.

How can I configure so that the services start up on reboot of server?

CSF Firewall / CSF Firewall completely locked me out.
« on: June 14, 2016, 11:03:45 AM »
I have been trying to get the ftp folder to work, and was getting a connection issue, I think this is what started the problems.

All of a sudden, my CW Panel stopped working, I could not get access via TTY and also I could not view my website. All services were locked out.

Contacted Host provider who said everything was working at there end, and asked for my IP, I gave this and they logged in and removed my ip from the CSF Firewall blocked IP List.

Obviously this is not ideal, as if this happens again I get completely locked out of everything.
Also looking at CSF blocked IP list, i can see entries for Failed SSH login from from ip addresses in china, korea, germany, vietnam etc.

Any ideas

FTP / ftp user limit to a folder
« on: June 14, 2016, 07:08:45 AM »
I need to create an ftp account that has access to a single folder only

I created a folder on root of domain called User_Folder
I then created an ftp account and set the folder to User_Folder

When I try to connect to this user Filezilla reports '421 Home directory not available - aborting'

If I delete the account and leave the folder as the default entry then I can connect, but then this account has access to all files and folders.

How can I create an ftp account that can only view and access a specified folder


Postfix / rebuild postfix and getting can't open clamd.log
« on: June 12, 2016, 08:17:22 PM »

I changed the domain for postfix and rebuilt postfix and now I get the following error

Stopping Clam AntiVirus Daemon: [FAILED]
Starting Clam AntiVirus Daemon: ERROR: Can't open /var/log/clamav/clamd.log in append mode (check permissions!).

ClamAV is now RED and I cannot restart/start it.

Any ideas?


Hope this makes sense, I can view email etc (cannot send) with roundcube webmail. But no mail is being received using Microsoft LiveMail or Thunderbird, No error appears in these when checking for mail. if I try to send mail I then get an error.

The message could not be sent. The setting for your outgoing email [SMTP] server might need to be configured. To find the server settings for '', please contact your email service provider.

Server Error: 550
Server Response: 550 Administrative prohibition
Protocol: SMTP
Port: 25
Secure(SSL): No

Any thoughts appreciated.


FTP / disable the @domain suffix from ftp account logins
« on: June 12, 2016, 11:42:22 AM »
is it possible to disable the @domain suffix that is added to a new ftp account when it is created.
thanks in advance.

Pages: [1] 2