Messages

1111

CentOS 7 Problems / Re: Malware found

« on: May 18, 2023, 09:32:21 PM »

The most usual vector is a web shell under a WordPress install. Have you verified that all your accounts are clean? I run Security Center scans periodically, and each instance of WP runs both WordFence and iThemes Security plugins. Also lock down your CSF firewall to only the ports you need, block certain countries, change your SSH port, do not allow r00t login via SSH (almost never needed). Have you scanned for FritzFrog and other SSH exploits?

Try checking with rkhunter (Rootkit Hunter):
https://medium.com/logistimo-engineering-blog/a-way-to-detect-the-rootkits-and-exploits-in-centos-rhel-5b125a8d6a25

1112

Installation / Re: Virtual machine install with redirect issues

« on: May 18, 2023, 02:53:41 AM »

What's with these new AI bots posting to the forum? Is someone experimenting with ChatGPT and seeing if it offers valid advice?

1113

PHP Selector / Re: cant install any php version

« on: May 18, 2023, 02:51:51 AM »

And out of curiosity, why not PHP 5.6 and 7.4? Even though both are still EOL, they at least feature every available security patch for that code series.

1114

CentOS 7 Problems / Re: hello, web try to update cwp get errors!!

« on: May 18, 2023, 02:45:25 AM »

I am not sure of Sandeep's warning -- is it an edge case? I have applied the GDBus workaround to 3x CWP servers and have not perceived any ill effects related to boot failures. I generally find rcschaff's advice salient and trustworthy, so I would say go for it, unless Sandeep can give more insight to the potential pitfalls of it.

1115

Installation / Re: CentOS migration plan for 2024?

« on: May 18, 2023, 02:39:43 AM »

Josemnunez's announcement of EL9-support is the game changer I have been waiting for. So now the 2024 plan will be AlmaLinux 9 with CWP support. THANK YOU! Go CWP Team!

1116

Installation / Re: New installation of CWP on Alma Linux 9. Will it work?

« on: May 18, 2023, 02:35:51 AM »

The main problem with Stream is that it is a rolling release and once you are in the stream, you have to stick with it -- no outs, no migration opportunity. You're married to it, for better or worse! I know the delayed repositories help to iron out the bleeding edge feel, but still it runs against my more conservative leanings. CWP devs probably pushed it initially due to it being the "official" replacement for CentOS, but really it's not adequate for conservative enterprise-grade server installs with long term support. It's more of a testbed for future RHEL releases, so it feels perpetually in beta. That's what gave rise to the Rocky and AlmaLinux distributions -- a viable, stable alternative for those wanting more of a "spiritual successor" to CentOS 7's LTS-class stability and support. For me, knowing there is a migration path with Rock or AlmaLinux is really what seals the deal. I am much more secure with that over running a rolling release like Stream. (And you can be sure I am not running Arch on the desktop either!) So for me, it's AlmaLinux in 2024 -- hopefully 9 if CWP is up for the challenging timeline!

1117

E-Mail / Re: How to enable SSL/TLS and ports 995 and 465/587 for POP email

« on: May 16, 2023, 10:32:27 PM »

Take stock of what's running

Code: [Select]

lsof -i :25
lsof -i :465
lsof -i :587
lsof -i :110
lsof -i :143
lsof -i :993
lsof -i :995
Also allow your STARTTLS and SSL/TLS ports in CSF (/etc/csf/csf.conf):

Code: [Select]

TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,2031,2083,2087,2096,2304"
PORTS_imapd = "143,993"
PORTS_pop3d = "110,995"
SMTP_PORTS = "25,465,587"
PORTS_smtpauth = "25,465,587"
PORTS_eximsyntax = "25,465,587"

1118

Apache / Re: How to setup Website on the IP address

« on: May 16, 2023, 10:24:16 PM »

What aspect of your .htaccess is not working? Something specific to WordPress?

1119

Installation / Re: mail server only

« on: May 15, 2023, 12:55:57 PM »

Are you an AI bot spouting out marketing copy? Your response doesn't correspond to the topic of this thread!

1120

Installation / Re: New installation of CWP on Alma Linux 9. Will it work?

« on: May 15, 2023, 12:53:41 PM »

I'm sorry, but I'm going to have to go with Starbust's report. You didn't offer any details in your statement and I have no proof of true AlmaLinux 9 compatibility with CWP. And CWP does NOT list AlmaLinux 9 as compatible currently. Maybe next year before CentOS 7 goes EOL, but not right now.

1121

Installation / Re: Centos 7 still the recommended version?

« on: May 15, 2023, 12:48:37 PM »

My plan is a migration to AlmaLinux in May 2024 before CentOS 7.9 goes EOL. I hear it is broadly compatible with CWP, maybe with a few livable bugs or incompatibilities (but not as "rocky" as another distribution). I do not plan on going to CentOS 8 Stream, which is a one-way trip.

If I were starting a server fresh today, it would be AlmaLinux, no doubt.

1122

Information / Re: PHOTO ATTACHEMENTS

« on: May 13, 2023, 12:53:54 PM »

No, it's not the same. It's called a workaround.

It's probably a conscious choice of the devs because image files can be a vector for security exploits -- and lord knows this forum software is vulnerable, being so far out of date!

1123

Updates / Re: Python and CWP

« on: May 13, 2023, 12:47:48 PM »

I answered in your other thread... best not to double-post, even in your distress!

1124

Information / Re: Python and CWP

« on: May 13, 2023, 12:47:00 PM »

Can you login to the server via SSH and roll things back with yum?

1125

CentOS 8 Problems / Re: How to fix roundcube mail server 403 forbidden error

« on: May 13, 2023, 02:44:35 AM »

Are you using the default .htaccess file?

Try this:
https://forum.howtoforge.com/threads/roundcube-gets-403-error-after-i-have-changed-its-default-webmail-url.87416/