Messages

16

E-Mail / Re: Postfix, SpamAssassin, or something else

« on: June 25, 2025, 01:16:15 PM »

Forgeries. You should lock down Postfix more to prevent this kind of backscatter. And block Malaysia if you have no need for traffic from there.
https://www.awsmonster.com/how-to-secure-postfixdovecot-on-cwp

If you wanted to block ALL of LeaseWeb, you could add their netblocks to your blocklists, but you might block legitimate traffic:
https://ipinfo.io/AS7203

17

CentOS 7 Problems / Re: Unable to Access CWP Panel : 500 Error

« on: June 25, 2025, 01:05:45 PM »

You need to update your CWP version. Older files that are IonCube encoded will expire and throw these kinds of errors.

Code: [Select]

yum -y update
yum clean all
yum check-update
yum update
sh /scripts/update_cwp

18

CentOS 7 Problems / Re: Aborted connection 155 to db on Postfix Mail Server

« on: June 24, 2025, 09:42:31 PM »

Have you run a MySQL Tuner on your server so it could recommend settings for you?
https://github.com/major/MySQLTuner-perl

19

DKIM / Re: How to change DKIM Selector

« on: June 24, 2025, 05:27:30 PM »

DKIM just pairs a generated key with a DNS TXT record, so you can set up more flexibility behind the scenes of CWP using OpenDKIM's genkey tool:
http://www.opendkim.org/opendkim-genkey.8.html

20

E-Mail / Re: Postfix, SpamAssassin, or something else

« on: June 24, 2025, 05:25:07 PM »

All 3 from LeaseWeb in the Netherlands. Consider reporting to their abuse@ address with the full headers. Also block those offending IPs, but it's 3 for 3 different messages, so likely there is a larger pool of source addresses used in this campaign.

21

E-Mail / Re: Postfix, SpamAssassin, or something else

« on: June 24, 2025, 10:55:36 AM »

Do you need to support mail from Serbia? Do you need to support Romanian e-mail traffic? Madagascar? You can block any/all of these at the CSF level, or by an RBL within Postfix's config:

Code: [Select]

reject_rbl_client rs.country.spameatingmonkey.net,
reject_rbl_client mg.country.spameatingmonkey.net,You can also block full TLDs if you so choose (/ etc /postfix/reject_domains):

Code: [Select]

# Rejecting whole TLDs
/\.pro$/        REJECT
/\.cam$/        REJECT
/\.top$/        REJECT
/\.work$/ REJECT
/\.click$/ REJECT
/\.link$/ REJECT
/\.diet$/ REJECT
/\.party$/ REJECT
/\.zip$/        REJECT
/\.date$/ REJECT
/\.club$/ REJECT
/\.rest$/ REJECT
/\.casa$/ REJECT
/\.bar$/        REJECT
/\.sbs$/        REJECT
/\.xyz$/        REJECT
/\.bio$/        REJECT
/\.best$/ REJECT

22

Other / Re: RBL's down

« on: June 24, 2025, 10:46:00 AM »

Gmail really clamped down a few months back -- I see denials from one domain, consistently. Have you enabled ARC headers?

23

CSF Firewall / Re: CSF analyzer

« on: June 24, 2025, 01:23:35 AM »

CSF... are the scf references a mistake instead of csf?
Out of curiosity, why shell code instead of python or perl?

24

Other / Re: RBL's down

« on: June 24, 2025, 01:21:09 AM »

Not seeing a mass outage here...
https://multirbl.valli.org/

PS I haven't used Barracuda since they did the whole E-mail Reg whitelist protection racket:
https://community.spiceworks.com/t/emailreg-org-a-scam-shame-on-you-barracuda/116005

25

Installation / Re: I don't receive a single message from root..??

« on: June 23, 2025, 08:12:39 PM »

Why don't you just set the destination e-mail under CWP Settings > Edit Settings?

26

Apache / Re: Apache auto turn off on AlmaLinux 9.x

« on: June 19, 2025, 07:06:47 PM »

CentOS is now a beta-quality OS. Fedora is alpha-class, CentOS is the beta, RHEL is the release-quality. AlmaLinux has taken the place of CentOS as the stable, server-quality release for an EL-compatible (formerly clone) OS. You will have the best success with AlmaLinux as the foundation for a server.

Does your Vultr VPS have 4GB of memory? I've frequently seen VPS plans have too low of memory and I would say 4GB is bare minimum. 8GB would be a lot more comfortable headroom on a VPS server. 

27

Updates / Re: Roundcube vulnerability

« on: June 19, 2025, 01:52:55 PM »

Yes, saw that a couple of weeks ago. Other updating directions are here, just update the version number from 1.5.8 to 1.5.11 (LTS version):
https://www.alphagnu.com/topic/33-update-cwp-roundcube-mail-version-158-%E2%80%93-control-web-panel/#comment-35

28

CentOS 9 Problems / Re: Disk full

« on: June 18, 2025, 02:58:59 PM »

Very likely log files that aren't being rotated that ballon out of control. Search for large files:

Code: [Select]

find / -type f -size +100MIf you don't need them, truncate them to zero, starting over:

Code: [Select]

truncate -s0 /var/log/somefile.log

29

Information / Re: Weird Ownership conflicts with cli

« on: June 18, 2025, 12:23:42 AM »

Should be username:username, 755 permissions. r00t should not own any public HTML directories.

30

E-Mail / Re: SpamHause x SpamAssassin

« on: June 17, 2025, 09:34:59 PM »

Not really any steps apart from integrated it in your / etc / postfix / main.cf:

Code: [Select]

smtpd_recipient_restrictions =
        #check_policy_service inet:127.0.0.1:10031,
        permit_sasl_authenticated,
        permit_mynetworks,
        check_client_access hash:/etc/postfix/sender_whitelist,
        check_client_access hash:/etc/postfix/sender_blacklist,
        check_client_access hash:/etc/postfix/rbl_override,
        reject_unauth_destination,
        reject_non_fqdn_sender,
        reject_non_fqdn_recipient,
        reject_unknown_recipient_domain,
        reject_rbl_client YOURDQAPIKEYHERE.zen.dq.spamhaus.net=127.0.0.[2..11],
        reject_rbl_client cn.country.spameatingmonkey.net,
        reject_rbl_client kp.country.spameatingmonkey.net,
        reject_rbl_client ng.country.spameatingmonkey.net,
        reject_rbl_client ru.country.spameatingmonkey.net,
        reject_rbl_client tr.country.spameatingmonkey.net