Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - Steff

Pages: [1] 2
Installation / Virtual machine install with redirect issues
« on: November 20, 2022, 04:04:52 PM »
I have a few servers setup with just CWP installed and on a dedicated external ip for each.
I have to move one server and I have run out of server space on a few of the servers. So I thought why not install CWP as a VM and I can then move those accounts over to the VM version of CWP until the physical server is brought down and recommissioned.
So I'm running virtualisation (Proxmox 7) and have successfully installed a vm with Centos7 and CWP.
Because I have other dockers and vm's on that server I run Nginx Proxy Manager to deal with the incoming dns requests.
I think I've shot myself in the foot as if I allow NPM (Nginx Proxy Manager) to redirect external requests to the ip that CWP resides (the virtual machine) then I can't resolve requests within CWP like mail, ftp and so on as I guess Nginx within CWP isn't handling the proxies.
So I thought, why not forget NPM altogether but then any external request to CWP isn't forwarded on to CWP and you get nowhere.
Has anyone any idea how best to set up CWP independently to other resources so that dns requests can be handled by CWP?

Backup / remote backup advise
« on: July 12, 2022, 07:02:11 PM »
Hi guys,
I'm familiar with CWP and have been running the pro version for many years on Centos 7. At the moment I backup using the backup facilities in the web panel. I then ftp those backups to my workstation.
But now I need to do some housework and automate and secure backups. I say now, as before I used CWP for hobbies, but now I host some business websites.

I wanted to set up something like OpenMediaVault on a remote server and back up to that.
So I'm asking for suggestions based on peoples experiences.
I have my CWP at location "A" and that has a dedcated static ip. I say dedicated because the only server running on that ip address is CWP. I have a server at location "B" and that has a static ip, But I have already one server running on that ip so I have Nginx setup to reverse proxy. The backup server I want to build will probably be virtualise to get the best of the hardware, perhaps running dockers or something.

What would you suggest, or use to do this?

CentOS 7 Problems / session token expired, please reload the page
« on: May 08, 2022, 05:57:51 PM »
I have a couple of customers who have this error message pop up and they cannot log in to their accounts.
The error message is:
session token expired, please reload the page
My server is configured as follows:
Webserver Nginx and Apache
Nginx and Apache running on default templates and both running 7.3 FPM with default templates and forced for Apache

Domain server configuration is 7.3 fpm and all templates set to default

Mod Security is set to Combo WAF (V1.223) and process all rules

There is no cron job set to clear server cache

The customers are having problems logging in to a Wordpress site running Woocommerce
Wordpress version 5.9.3 and Woocommerce 6.4.1
I'm not running any pluging cache, so the only cache is server side
The site does have an htaccess file (used mostly for Yoast)
And site wide the security is handled by Wordfence Pro v7.5.9

Customers are reporting that if the refresh the browser after having the error, they still cannot log in or enter address details. Some have cleared cache on their devices and some have tried other browsers, but still get the error.
This suggests to me that this is server side and probably a misconfiguration with cache and security.

Anyone have any idea where I should start with this please. I'd be very grateful for any help.

Other / Nginx-Apache-WP Rocket
« on: January 08, 2022, 07:17:14 PM »
I'm just after a general opinion from anyone who may have run a mix like Nginx and Apache with a Wordpress plugin WP Rocket.
I'm asking as I get a little volatile response from cache now and then and find that I have to clear cache on server side as well as plugin often.
My knowledge of server side caching is limited and I'm keen not to be overdoing the cache setup.
Is there a better way... or is the setup I have ok?

CentOS 7 Problems / Too many 301 redirects
« on: July 01, 2021, 02:49:32 PM »
Just wondering if anyone could help me with this.
I have a domain that until recently I only used for emails. Today I decided to place a website on the domain but before I could do so I found that all the browsers i visited tells me that the domain has too many 301 redirects.
Right now there is no htaccess files anywhere. I've rebuilt Apache, cleared cache on browser as well as CWP. Checked with the domain register to make sure no redirects have ever been put in place.

So as I can't find any reason for the 301 redirects, could this account have a malware infection? Or could there be another reason.
I do have other accounts hosted on CWP (about 12) and none of them are effected.

CSF Firewall / My firewall is off and i can't turn it on
« on: July 24, 2020, 07:18:55 PM »
Hi guys,
I noticed that my firewall was off and so I tried to turn it on but it wouldn't. I then tried to restart the services and still it is off and then I tried to force the restart of services and still it is set to off.
I did get a message saying
[root@server ~]# csf -e
csf and lfd are not disabled!
and that is a bit puzzling as the firewall is actually off.
I have (although I really didn't want to) rebooted the server and still the firewall is off.
Any help with this is much appreciated.

CentOS 7 Problems / Excessive resource usage
« on: June 26, 2020, 11:02:01 AM »
I'm getting emails about excessive resource usage and there are a couple of accounts that are problematic.
I've increases the timeout from 1800 to 15000 but still get the email warnings.
I don't want to stop the warnings as that isn't a good idea, but I do need help in understanding how to deal with this account that is using up resources.
The culprit is Gnome desktop and I have tried to stop the service and restart the firewall, but the errors still come.
Here's an email:
Time:         Thu Jun 25 22:59:25 2020 +0100
Account:      gdm
Resource:     Process Time
Exceeded:     362636 > 15000 (seconds)
Executable:   /usr/libexec/gsd-sharing
Command Line: /usr/libexec/gsd-sharing
PID:          3085 (Parent PID:2814)
Killed:       No

At the moment I'm getting about 900 emails a day

The other account that is as bad is:

Time:         Thu Jun 25 22:59:25 2020 +0100
Account:      avahi
Resource:     Process Time
Exceeded:     362653 > 15000 (seconds)
Executable:   /usr/sbin/avahi-daemon
Command Line: avahi-daemon: running [srv1.local]
PID:          1002 (Parent PID:1002)
Killed:       No

Anyone know where I should be looking to bring these accounts back in line and stop the excessive resource usage please

CentOS 7 Problems / Memory and Cache usage high
« on: June 21, 2020, 02:04:03 PM »
I've notice a sudden increase in RAM and CACHE usage that doesn't seem to be easing. I'm running CWP pro and this is on a Dell Power edge with 48gb DDR3 ram and dual Intel Xeon X5675 @ 3.07GHz
Apart from expected services I'm running:
MOD Security

Should I be concerned at this usage?

E-Mail / email spam
« on: June 18, 2020, 01:12:32 PM »
OK, I'm completely lost on how to track down spam that I have across multiple domains hosted on a single server.
I think I must have misconfigured my email server somehow, but am lost as to how.
The dns checks that I've done all say that the email server is running fine, but here are my issues.
1 when sending emails from any domain I get a warning from the email client that the email I'm sending has the host name
2 spam email isn't being marked as spam and even though I manually mark domain as spam, they still come through

I've run quite a few malware scans and haven't found any infections, but recently a non delivery email was sent back to me and the header was a fake email address from my own host server.

I've checked and I have no open relay, the server is configured not to allow null mail.

I'm running CWP Pro on Centos 7 with all updates. I have spf and dkim and antispam installed and running.

Can anyone suggest where I can begin or what I need to do to check that I've properly configured the mail server please.

SSL / Trusted but invalid how can it be both
« on: May 10, 2020, 03:53:10 PM »
I've installed a combo SSL license through CWP Autossl and it says that all services are licensed (Ftp, Cpanel, Webmail and so on) I've also checked using the test buttons 1 through to 4 and as far as I can see the certificates are all fine. I've entered "A" records for the host name, ptr records and hostname resolve with dns, yet every browser I've tried says that the certificates for the host is invalid. the host is
Clearly I must have done something wrong... Has anyone got any ideas that might help please?

Installation / Paid configuration
« on: April 30, 2020, 10:00:33 PM »
Although I have two accounts of CWP pro on two servers. I'm about to set up portal for several small businesses in our area. I'm doing this for them in the hope that when the time comes (after the shutdown) they can use the online presence to re-build their business.
That said I need the CWP configured to the most secure and best practice it can possible be.
Is their a paid service that can do this?
I can't take risks with other peoples chances and need this done correctly.

Other / Hardware firewall
« on: April 30, 2020, 09:52:40 PM »
I've decided to upgrade a few things and wondered what are your thoughts on hardware firewalls. Do I need one Does the firewall in CWPpro protect the operating system as well.

I have fibre connection to the server and at present use a Fritzbox 3940 as a router. I'm thinking to upgrade the fritzbox with something that has better security, but since I've just paid out a load on IT kit, I don't have a lot of money left. What would you recommend (if I need it at all) a router for this job please?

Installation / Is my server worthy?
« on: April 27, 2020, 09:27:03 PM »
I'm installing a second server at a new location and wondered if I could ask your opinion.

The server is a Dell PowerEdge T310.
I'm not running a raid but have three drives installed:
Root (primary drive) 100gb SATA2
2 x 500gb SATA2
8gb DDR3 (planning on upgrading to 16gb)
2.40GHz X3430 4-Cores

and this is connected to fibre optics at 20mb up and 75mb down stream.
The website will be a Wordpress backbone with WooCommerce
There will be an ad campaign through email as well

I plan to run a takeaway ordering website for our local area. I'm expecting about 500+ users to be browsing the site at once with about 100 actually ordering at once.
Can you see any obvious bottlenecks with this setup or recommendations or anything that needs to be planned in relation to hardware or CWP

CentOS 7 Problems / 504 Gateway timeout error
« on: April 09, 2020, 05:41:13 PM »
Apologies if this is in the wrong forum, and if so can I request an admin to relocate it please.
I'm hosting a Woocommerce website on one of my CWP servers and part of the shop ordering process is that when the customer orders a meal they get a popup telling them that the restaurant will either accept or cancel their order. The message keeps refreshing whilst it is waiting for a response from the restaurant kitchen to click at their end to accept the order or not.
If this process takes a little longer than expected, the customer gets a 504 Gateway Timeout error and the popup dissappears leaving the customer unaware if their order is coming or not.
Am I right in thinking that somewhere I need to increase the wait time on the server in order to give this app more time. If so has anyone any idea where this would be.
I'm running PHP 7.3, nginx-varnish-apache. Apache version 2.4.39

CentOS 7 Problems / using www I get site untrusted warning
« on: April 03, 2020, 06:59:08 PM »
Hi guy's.. This has baffled me for a while and I'm trying to work out what I've done or not.
Basically if a user visits our website using they get the padlock and all is well. However, if they visit the website with https:/ they get a warning that the site might be bogus and you shouldn't trust it.
Any ideas what I need to do.

Pages: [1] 2