Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1021
Information / Re: need help cwp-->cwp
« on: March 03, 2023, 05:26:56 AM »
I am going to duplicate post this solution here, in case it helps someone searching for the answer.
In order to succeed at a CWP->CWP migration, you have to stand on your head, pat your belly, and rub your feet at the same time in order to make this work. Actually, I just had the opportunity to do a CWP -> CWP migration, so here was my solution:
Disable the firewall (CSF & LDF) on both origin and receiving servers.
On both servers, reset the r00t password to be 8 characters or fewer.
In
On the receiving server, use the interface in User Accounts > CWP->CWP Migration.
After successfully migrating the accounts, revert all changes to your SSH configuration, restart sshd, reset the r00t passphrase to strong ones, and re-enable the firewalls.
In order to succeed at a CWP->CWP migration, you have to stand on your head, pat your belly, and rub your feet at the same time in order to make this work. Actually, I just had the opportunity to do a CWP -> CWP migration, so here was my solution:
Disable the firewall (CSF & LDF) on both origin and receiving servers.
On both servers, reset the r00t password to be 8 characters or fewer.
In
Code: [Select]
/etc/ssh/sshd_config set: Code: [Select]
PermitRootLogin yes
StrictModes noRestart sshd:Code: [Select]
service sshd restartOn the source server, set up the API key (CWP Settings > API Manager) for CWP Migration using the default CWP template.On the receiving server, use the interface in User Accounts > CWP->CWP Migration.
After successfully migrating the accounts, revert all changes to your SSH configuration, restart sshd, reset the r00t passphrase to strong ones, and re-enable the firewalls.
1022
Migration from other control panels / Re: cwp-cwp migration Connection not reached The following error occurred
« on: March 03, 2023, 05:16:22 AM »
You have to stand on your head, pat your belly, and rub your feet at the same time in order to make this work. Actually, I just had the opportunity to do a CWP -> CWP migration, so here was my solution:
Disable the firewall (CSF & LDF) on both servers.
On both servers, reset the r00t password to be 8 characters or fewer.
In
On the receiving server, use the interface in User Accounts > CWP->CWP Migration.
After successfully migrating the accounts, revert all changes to your SSH configuration, reset the r00t passphrase to strong ones, and re-enable the firewalls.
Disable the firewall (CSF & LDF) on both servers.
On both servers, reset the r00t password to be 8 characters or fewer.
In
Code: [Select]
/etc/ssh/sshd_config set: Code: [Select]
PermitRootLogin yes
StrictModes noRestart sshd:Code: [Select]
service sshd restartOn the source server, set up the API key (CWP Settings > API Manager) for CWP Migration using the default CWP template.On the receiving server, use the interface in User Accounts > CWP->CWP Migration.
After successfully migrating the accounts, revert all changes to your SSH configuration, reset the r00t passphrase to strong ones, and re-enable the firewalls.
1023
Backup / Re: New Backup Error
« on: February 13, 2023, 09:46:17 AM »
Not to be snarky, but the New Backup is labeled as "beta" for a reason... I would expect to encounter some bugs along the way until it is fully shaken out!
1024
E-Mail / Re: SMTP Error 451
« on: February 13, 2023, 09:31:28 AM »
You can set message throughput limits under the Packages > Packages menu item (don't you love the redundancy there?).
It is set under the Hourly Emails setting.
It is set under the Hourly Emails setting.
1025
E-Mail / Re: I can rececive emails, but cannot send any emails
« on: February 13, 2023, 09:27:04 AM »
I can confirm (testing against 3 CWP servers) that an nmap ping probe (example above) will not set off the CSF firewall. You won't block yourself by doing so.
Code: [Select]
localhost$ nmap -P0 yourserver.com
Starting Nmap 7.93 ( https://nmap.org ) at 2023-02-13 02:20 MST
Nmap scan report for yourserver.com (111.111.111.111)
Host is up (0.075s latency).
Not shown: 982 closed tcp ports (conn-refused)
PORT STATE SERVICE
25/tcp filtered smtp
53/tcp open domain
80/tcp open http
110/tcp open pop3
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
143/tcp open imap
443/tcp open https
445/tcp filtered microsoft-ds
465/tcp open smtps
587/tcp open submission
993/tcp open imaps
995/tcp open pop3s
2031/tcp open device2
3306/tcp open mysql
8888/tcp open sun-answerbook
1026
Other / Re: How to protect my files against download
« on: February 13, 2023, 09:12:42 AM »
curl and wget can get a lot, and many offline web readers can suck down a whole site and localize the HTML. So not much you can do about it.
1027
Installation / Re: Thunderbird problem
« on: February 13, 2023, 09:10:59 AM »
Funny thing is that I've seen countless T-Bird IMAP bugs over the years. And yet, Postbox (a commercial Thunderbird derivative, still using the T-Bird mail engine) seems to have fixed those IMAP errors! I never encounter any when I use Postbox, and having bought a lifetime license years ago, I get all updates that have been released. It offers a lot more spit-n-polish than the default T-bird experience.
1028
MySQL / Re: virtual memory size
« on: February 11, 2023, 12:23:28 AM »
Definitely consider doing some MySQL performance tuning. There are scripts you can download that check your environment and offer suggestions for changes in you my.cnf file.
MySQL allocates memory in tons of places. Especially look at table cache
Performance_schema
Run this:
and look at the last line. That may be the cause for the systems with small amount of RAM, i.e. 1G or less
InnoDB
Run this:
check the buffer pool section, memory allocated for buffer_pool and related caches)
Temporary tables in RAM
Find all in-memory tables by running
Prepared statements, when it is not deallocated (check the number of prepared commands via deallocate command by running
Welcome to the deep end
MySQL allocates memory in tons of places. Especially look at table cache
Performance_schema
Run this:
Code: [Select]
show engine performance_schema status and look at the last line. That may be the cause for the systems with small amount of RAM, i.e. 1G or less
InnoDB
Run this:
Code: [Select]
show engine innodb status check the buffer pool section, memory allocated for buffer_pool and related caches)
Temporary tables in RAM
Find all in-memory tables by running
Code: [Select]
select * from information_schema.tables where engine='MEMORY'Prepared statements, when it is not deallocated (check the number of prepared commands via deallocate command by running
Code: [Select]
show global status like ‘ Com_prepare_sql';show global status like 'Com_dealloc_sql'Welcome to the deep end
1029
E-Mail / Re: I can rececive emails, but cannot send any emails
« on: February 11, 2023, 12:15:15 AM »1030
CSF Firewall / Re: Custom Webpage rather than "not solved"
« on: February 10, 2023, 03:37:45 PM »
The one-liner above should be:
Code: [Select]
cp /etc/csf/csf.conf{,.backup} && csf -u && sed -i 's/MESSENGER = "0"/MESSENGER = "1"/g' /etc/csf/csf.conf ; sed -i 's/MESSENGERV2 = "0"/MESSENGERV2 = "1"/g' /etc/csf/csf.conf ; sed -i 's/MESSENGER_HTTPS_IN = ""/MESSENGER_HTTPS_IN = "443"/g' /etc/csf/csf.conf ; useradd csf -s /bin/false ; csf -ra
And here it is as multiple lines:Code: [Select]
cp /etc/csf/csf.conf{,.backup}
csf -u
sed -i 's/MESSENGER = "0"/MESSENGER = "1"/g' /etc/csf/csf.conf
sed -i 's/MESSENGERV2 = "0"/MESSENGERV2 = "1"/g' /etc/csf/csf.conf
sed -i 's/MESSENGER_HTTPS_IN = ""/MESSENGER_HTTPS_IN = "443"/g' /etc/csf/csf.conf
useradd csf -s /bin/false
csf -ra
1031
MySQL / Re: virtual memory size
« on: February 10, 2023, 08:07:37 AM »
Check the available RAM on your server:
Check mysql configuration: /etc/my.cnf or in the configuration directory: /etc/my.cnf.d.
Run
Do you have a lot of caching in your my.cnf file?
Code: [Select]
free -g
cat /proc/meminfoCheck what applications are using large amounts of RAM: top or htop (see the resident vs virtual memory)Check mysql configuration: /etc/my.cnf or in the configuration directory: /etc/my.cnf.d.
Run
Code: [Select]
vmstat 5 5 to see if the system is reading/writing via virtual memory and if it is swapping...Do you have a lot of caching in your my.cnf file?
1032
MySQL / Re: MySQL Database Server - Failed
« on: February 10, 2023, 07:46:40 AM »
Try moving or removing the aria_log_control file, then start mariadb.
Code: [Select]
/var/lib/mysql/aria_log_control
1033
Mod_Security / Re: Mod Security issue? pid 2459:tid 140698774865664
« on: February 10, 2023, 07:41:15 AM »
You're using the OWASP ruleset. I would suggest trying the Comodo rules instead -- it will throw less false-positives; it's not as restrictive and is more beginner-friendly.
1034
Some people just click on the "Unread" link and only peruse those (few) threads. To discover more, you have use this link instead:
Click here to try all unread topics.
Or better yet, simply look on the Forum homepage and just scroll the forum list to see if any topics are new or interest you. But you don't see the "child" fora:
Control Web Panel
(So you could make a case for there being too many categories and sub-categories. But it does help for categorization of issues.)
Click here to try all unread topics.
Or better yet, simply look on the Forum homepage and just scroll the forum list to see if any topics are new or interest you. But you don't see the "child" fora:
Control Web Panel
(So you could make a case for there being too many categories and sub-categories. But it does help for categorization of issues.)
1035
CentOS-WebPanel GUI / Re: How can I enable force HTTPS for Apache webserver for all domains?
« on: February 10, 2023, 07:31:37 AM »
It's possible to do a permanent redirect in the vhost config:
But a 301 redirect is preferred. In vhost conf or in .htaccess:
Code: [Select]
<VirtualHost *:80>
ServerName example.com
ServerAlias www.example.com
Redirect permanent / https://example.com/
</VirtualHost>But a 301 redirect is preferred. In vhost conf or in .htaccess:
Code: [Select]
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://example.com/$1 [L,R=301]
