Messages

1036

CSF Firewall / Re: I need Suggestion

« on: May 25, 2023, 02:14:25 PM »

If you or your customers only do commerce within your own country, or know for sure you don't need access to some regions (eg southeast Asia), you can use CSF to block entire countries in /etc/csf/csf.conf:

Code: [Select]

CC_DENY = "CN,KP,VN"Do a search and see what are the top 10 hacking countries and include those in the block list.

1037

How to / Re: How to manage hard drive space without losing data

« on: May 25, 2023, 02:07:11 PM »

The answer to the original question is "very carefully." I have done this on two different servers, using both fdisk (for hard partitions) and lvs resizing techniques (easier/safer). Obviously you are using LVM, and as an aside, I prefer my disk layout to all be one under / (meaning one LVM managed volume -- /dev/mapper/centos7-root -- I don't need the separate /dev/mapper/centos7-home partition. I only feel that is needed if you need it to reside on different storage or foresee expanding /home ad infinitum, or I suppose your backup requirements were specialized.

At any rate, do a FULL backup before proceeding. Be aware if you mess up, you will crash your server.
https://linuxhandbook.com/resize-lvm-partition/

1038

Other / Re: how to disable cwp , cpanel ,pma short

« on: May 25, 2023, 01:56:07 PM »

You would have to edit your existing vhost files and the controlling template, going forward. What web server do you use (apache or nginx)?

1039

SSL / Re: DNS Redirection problem for xxx.com with www and without it

« on: May 24, 2023, 02:48:23 AM »

Another pitfall for renewing certificates is if you have your web server (apache or nginx) set up to 301 redirect HTTP to HTTPS requests. You need to disable this temporarily while you renew your certificates. LetsEncrypt needs to connect to the server via standard port 80 (HTTP) for the renewal process to complete successfully.

1040

Apache / Re: My apache has stopped working

« on: May 23, 2023, 05:28:06 AM »

Run a configuration test with apachectl:

Code: [Select]

sudo apachectl configtest
If everything is ok, the configtest command will return the message Syntax OK. If there is a syntax error, configtest will output the invalid configuration option with the filename and the line number.

1041

E-Mail / Re: Can't Receive emails

« on: May 23, 2023, 05:25:14 AM »

And open all mail-related ports in the CSF firewall:
143,993,110,995,25,465,587

1042

CentOS 7 Problems / Re: Pro no work???

« on: May 21, 2023, 08:19:30 AM »

I had one server stall out on an IP address update (basically to transfer the CWP Pro license). I had to contact support and they took care of it promptly. But I haven't seen that behavior lately. You can contact support if you do continue to experience problems.

1043

CentOS-WebPanel Bugs / Re: Cronjob not added from user panel

« on: May 21, 2023, 08:17:23 AM »

It's my thinking
I have about 50 users and believe me, they are almost all non-technical and they hand anything technical off to me to accomplish. Cronjobs definitely fall in that class -- so I have added them from the admin panel (or more likely, from the CLI). It actually allows me to vet what they are wanting to do and choose an appropriate run time and frequency so as not to tax the server. Believe me, one user frequently running a series of Magento cron jobs can really bog down a server!

1044

DNS / Re: How to use 2 domains on one account?

« on: May 21, 2023, 08:11:32 AM »

You can certainly add another add on domain pointing to the same public_html directory. I do that on all my CWP servers. The add-on domains load the same site content as the main domain (in my case, WordPress installs).

1045

Updates / Re: Bugs at 0.9.8.1156

« on: May 20, 2023, 12:45:42 PM »

I will test; haven't noticed any issues yet, but my servers are fairly static -- not a lot of user movement on them.

1046

SSL / Re: Problem SSL certificate

« on: May 18, 2023, 09:36:12 PM »

Are you redirecting HTTP requests to HTTPS? Usually you need to set a 301 redirect from plain HTTP to the preferred HTTPS link. You can do this in your vhost conf or via .htaccess. Are you using Apache or Nginx?

1047

CentOS 7 Problems / Re: Malware found

« on: May 18, 2023, 09:32:21 PM »

The most usual vector is a web shell under a WordPress install. Have you verified that all your accounts are clean? I run Security Center scans periodically, and each instance of WP runs both WordFence and iThemes Security plugins. Also lock down your CSF firewall to only the ports you need, block certain countries, change your SSH port, do not allow r00t login via SSH (almost never needed). Have you scanned for FritzFrog and other SSH exploits?

Try checking with rkhunter (Rootkit Hunter):
https://medium.com/logistimo-engineering-blog/a-way-to-detect-the-rootkits-and-exploits-in-centos-rhel-5b125a8d6a25

1048

Installation / Re: Virtual machine install with redirect issues

« on: May 18, 2023, 02:53:41 AM »

What's with these new AI bots posting to the forum? Is someone experimenting with ChatGPT and seeing if it offers valid advice?

1049

PHP Selector / Re: cant install any php version

« on: May 18, 2023, 02:51:51 AM »

And out of curiosity, why not PHP 5.6 and 7.4? Even though both are still EOL, they at least feature every available security patch for that code series.

1050

CentOS 7 Problems / Re: hello, web try to update cwp get errors!!

« on: May 18, 2023, 02:45:25 AM »

I am not sure of Sandeep's warning -- is it an edge case? I have applied the GDBus workaround to 3x CWP servers and have not perceived any ill effects related to boot failures. I generally find rcschaff's advice salient and trustworthy, so I would say go for it, unless Sandeep can give more insight to the potential pitfalls of it.