Messages

121

CentOS-WebPanel GUI / Re: Known Issue???

« on: October 07, 2024, 05:45:17 AM »

https://blog.alphagnu.com/fix-cwp-500-internal-server-error-expired-white-blank-screen/

122

E-Mail / Re: Strange problem with mac apple mail and new email accounts

« on: October 07, 2024, 05:43:32 AM »

The original post indicated that the authentication type was "PLAIN" -- what you would expect. (Apple Mail used to default to APOP back in the POP days, and has at times tried the full gamut of MD5 and other auth methods. I think the defaults are more sane these days...)

But getting back to basics, I always have the user test their credentials with Roundcube. If they can successfully authenticate there, they should be able to get any MUA to work, even Thunderbird and Mac Mail. CWP defaults to the full e-mail address being the user name, so that is always the starting point to check.

123

CentOS 7 Problems / Re: CPU 100%

« on: October 05, 2024, 10:52:48 PM »

Perchaps perfctl?
https://arstechnica.com/security/2024/10/persistent-stealthy-linux-malware-has-infected-thousands-since-2021/

124

MySQL / Re: MARIADB10.4.0 to 10.10.0

« on: October 03, 2024, 05:41:51 AM »

Wow, what a pickle. You should have full stopped after you didn't complete the backup all databases command at the beginning. That's really an essential prerequisite before doing a major version upgrade like this. Can you image the server as it sits (full VM backup or otherwise)?

125

CentOS 7 Problems / Re: CPU 100%

« on: October 03, 2024, 02:40:22 AM »

Do you see a lot of that? I've never encountered it, personally. Usually just heavy scripts (poorly coded WP themes/extensions, Magento installations) or users with overly zealous cron scripts that consume a lot of CPU when they run -- and they are running them needlessly often for their traffic levels.

126

SSL / Re: Auto SSL certificate for mail only

« on: October 03, 2024, 02:38:03 AM »

Do you have http -> https 301 redirects in place for the domain/www.domain? It needs HTTP access to complete the process successfully.

127

CSF Firewall / Re: SSH Server - Failed $CRYPTO_POLICY

« on: October 02, 2024, 03:25:50 AM »

Maybe incorrect syntax within /etc/ssh/ssd_config?
Is your custom port open in the CSF firewall?

128

CentOS 7 Problems / Re: CPU 100%

« on: October 02, 2024, 03:24:08 AM »

Is it always the entrelac user? Try monitoring in real time with htop or with Netdata.

129

Installation / Re: Installation guide wrong

« on: October 01, 2024, 08:21:31 PM »

I recommend using AlmaLinux 8.

That is the current recommendation for production use! (CWP's EL9 support is still beta.)

130

CentOS 7 Problems / Re: CWP7.PRO - REST API - 404 not found (caused Wordpress not working

« on: October 01, 2024, 08:20:01 PM »

Which version of PHP are you running with your WP sites? Some newer versions (8.2+)  are not fully compatible with WP yet... even 8.0 and 8.1 have some compatibility exceptions:
https://wordpress.org/about/requirements/

131

PHP / Re: Update default PHP version but keep old websites running the current version

« on: September 30, 2024, 04:43:42 AM »

aha, glad you got that cleared up. yes it can be confusing -- but for many people start off with CGI PHP and change the version with the switcher. PHP-FPM is for the web server (web sites), so each once can have its own PHP version -- quite handy for sites that are still anchored via their CMS install to a certain PHP version.

132

CentOS 9 Problems / Re: systemd-analyze security returns a list of exposed and unsafe services

« on: September 30, 2024, 04:38:40 AM »

I would take those results with a healthy grain of salt. A lot of that "exposure" would simply mean it's accessible via the internet -- which is what you want for a public-facing server. Other results, such as for php-fpm74 which EOL are probably actually understated -- it should be replaced by php-fpm81 wherever possible. Here's a good primer from the mother ship:
https://www.redhat.com/sysadmin/systemd-secure-services

But yes, you should take active measures to harden your system after install:
https://www.awsmonster.com/cwp-installation-and-configuration_12
https://www.awsmonster.com/2019/09/how-to-secureharden-cwp-nginx-server.html

133

MySQL / Re: Message after upgrading to MariaDB 11.4.x LTS

« on: September 30, 2024, 04:30:30 AM »

They need to get with the times!
Or switch to Percona...

134

Postfix / Re: postfix only allow PDF attachments

« on: September 25, 2024, 03:31:45 AM »

header_checks = regexp:/etc/postfix/header_checks

Code: [Select]

/name=[^>]*\.(exe|pif|com|dll|vbs|bat)/   REJECT
/name=[^>]*\.zip/ REJECT no ransomware for us, thanks anyway
/name=[^>]*\.pdf/ PASS PDFs are okay with us


135

Other / Re: Yup - RH 10 beta is out...

« on: September 23, 2024, 10:31:21 PM »

No plans here. The only possible temptation would be to run Red Hat proper, as the 16 free licenses would cover my foreseeable usage needs.
https://developers.redhat.com/articles/faqs-no-cost-red-hat-enterprise-linux