Messages

1066

CentOS Configuration / Re: Help me. lfd on cwp.xxxxxx.com: Suspicious process running under user memcached

« on: May 12, 2023, 01:39:16 PM »

Again, same advice applies -- if you don't need to run Redis, disable it. If you need to run it, add it to the CSF/LDF pignore file. When I was first setting up CWP servers, I had to add several processes to the pignore file, as I was being bothered to death by several message types. I also had to increase the IMAP authentication failure block thresholds, as users would often shoot themselves in the foot with bad authentication plugged into their mail clients -- resulting in their IP getting blocked. Thank you Thunderbird for the ridiculous every 5 min mailbox checking default! (In the days before push notifications, there was POP...)

1067

Installation / Re: Fresh install has MariaDB error. How to resolve?

« on: May 12, 2023, 01:34:26 PM »

Definitely go for 10.6 -- a long term release. I am running it everywhere, very stable. And don't forget to run mysql_secure_installation afterward.

1068

Information / Re: So what's the verdict on AlmaLinux?

« on: May 12, 2023, 01:32:31 PM »

AlmaLinux is my plan for when CentOS 7.9 goes fully EOL in 2024. Others have said it is generally very stable, has good migration, and is less "rocky" than some other distributions...

1069

Information / Re: Reduce server response time [Anyone Else?]

« on: May 11, 2023, 01:25:48 PM »

Varnish is only needed if you need to milk every drop of performance out of your server -- but be advised you will need to create a custom .vcl config for your particular use case. Whatever CMS or engine you employ for your site, it will need proper tuning. It's not an impossible task, but probably not beginner level and generally not necessary unless your site is large or database-heavy where it would benefit from varnish's particular caching. Otherwise, if running WP -- by all means use a caching plugin, just be watchful for security vulnerabilities that crop up from time to time. Stay up to date with your plugins. If you use Cloudflare as your infrastructure provider (as I do), make use of their available CMS resource. You may want to consider making use of Cloudflare's specific $5/mo WP plan for maximum performance.

1070

Installation / Re: How to improve site speed and security

« on: May 11, 2023, 01:19:46 PM »

Agreed with the Nginx recommendation -- it will offer you more "bang for your buck" in terms of being more performant than Apache. But it will add some complexity to your configuration and will not allow customers to use .htaccess files -- so you will need to translate any .htaccess directives from Apache syntax over to an Nginx equivalent.

If you do go with mod_security, I would recommend starting with the Comodo ruleset (available in CWP Pro). It is more beginner-friendly and less prone to generating false positives.

1071

CentOS 7 Problems / Re: Without any type of access

« on: May 11, 2023, 12:53:34 PM »

It actually sounds as if you VPS is offline if not even SSH is accessible. You may need to visit your VPS control panel and restart your VM, or start a support ticket with your host and ask them to restart your server/VPS.

1072

CentOS Configuration / Re: Help me. lfd on cwp.xxxxxx.com: Suspicious process running under user memcached

« on: May 11, 2023, 12:51:36 PM »

And to underscore the importance of not running unneeded services: memcached is often used in amplification attacks to send junk traffic at DDoS targets. Memcached is a potent weapon in this case, amplifying traffic up to 50,000x the original payload!

https://www.cloudflare.com/learning/ddos/memcached-ddos-attack/

1073

PHP / Re: Php-FPM 7.4 users sock not created after user subscription

« on: May 11, 2023, 03:16:03 AM »

Newly installed versions of php-fpm do not create a conf file for you, which in turn causes php-fpm to generate the per-user .sock. You will need to bring forward your existing php-fpm configuration and edit it to reflect the proper PHP version, then restart that version of PHP. Here is an example of copying a PHP 7.1 configuration to 7.4:

Code: [Select]

cp /opt/alt/php-fpm71/usr/etc/php-fpm.d/users/user.conf /opt/alt/php-fpm74/usr/etc/php-fpm.d/users/user.conf
perl -pi -e 's/php-fpm71/php-fpm74/g' /opt/alt/php-fpm74/usr/etc/php-fpm.d/users/user.conf
service php-fpm74 restart

1074

MySQL / Re: User can access other database

« on: May 10, 2023, 01:41:03 PM »

What distribution are you on? What version of MySQL/MariaDB are you running? Did you run mysql_secure_installation ?

1075

Installation / Re: All websites show HTTP Test Page powered by CWP | CentOS-WebPanel.com

« on: May 09, 2023, 01:39:59 PM »

Is this new behavior or just what is happening as you are in the midst of the installation/migration process? Did you run User Accounts > Fix Permissions ? Did you follow the wiki article on that subject? https://wiki.centos-webpanel.com/default-page-displayed-for-all-domains

1076

WebHosting-Billing / Re: WebHosting-Billing by CWP

« on: May 09, 2023, 06:39:41 AM »

Please note that this is not a public version, it's only for developers and testing as it has some vulnerabilities.

Scary! Think I'll pass on this one

1077

Nginx / Re: upstream timed out (110: Connection timed out) - Getting it frequently

« on: May 09, 2023, 05:58:16 AM »

Increase your timeouts so it isn't so finicky about upstream connection delays:

Code: [Select]

fastcgi_read_timeout 540;
proxy_connect_timeout 3000s;
proxy_send_timeout   3000;
proxy_read_timeout   3000;

1078

CentOS 7 Problems / Re: YUM Manager No Longer Working

« on: May 06, 2023, 03:21:27 AM »

3-it says it has been updated,
but when restarting it keeps asking for the same updates.

It usually does that if you have unmet dependencies or an update (such as MariaDB) that requires "divine intervention" -- such as when moving to a major version number that requires a manual update. You think it installed everything, but if you carefully read the results, you can see that it skipped those updates.

1079

DNS / Re: have 2 or more vps

« on: May 06, 2023, 03:15:35 AM »

Are the NS on different subnets? Otherwise, far too easy to get DDoS'ed...

1080

Postfix / Re: All inbound mail fails when enabling Spam Assassin/Avamis

« on: May 06, 2023, 03:13:30 AM »

What guide are you following for your SpamAssassin configuration? The CWP Wiki article with the local.cf or something else? Do you have zen.spamhaus.org in your RBL loop on the CWP server, or just on your testing SMTP server?