This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
16
Updates / Re: Unable to load dynamic library 'intl'
« on: June 25, 2026, 09:36:12 PM »
PHP Warning: PHP Startup: Unable to load dynamic library 'intl' (tried: /usr/local/cwp/php71/lib/php/extensions/no-debug-non-zts-20170718/intl (/usr/local/cwp/php71/lib/php/extensions/no-debug-non-zts-20170718/intl: cannot open shared object file: No such file or directory), /usr/local/cwp/php71/lib/php/extensions/no-debug-non-zts-20170718/intl.so
Code: [Select]
cd /usr/local/src/
wget https://www.php.net/distributions/php-7.2.30.tar.gz
tar -xvzf php-7.2.30.tar.gz
cd php-7.2.30/ext/intl/
/usr/local/cwp/php71/bin/phpize
./configure --with-php-config=/usr/local/cwp/php71/bin/php-config
make
make install
rm -rf /usr/local/src/php-7.2.30*
17
Backup / Re: SFTP test: ALL FAILED
« on: June 22, 2026, 10:35:31 PM »
The error:
Permission denied, please try again.
makes me think the problem is associated with the access permissions on the destination host.
Can you connect from your CWP server to your SFTP (ssh) server from the command prompt and create files, etc ?
Permission denied, please try again.
makes me think the problem is associated with the access permissions on the destination host.
Can you connect from your CWP server to your SFTP (ssh) server from the command prompt and create files, etc ?
18
E-Mail / Re: New Roundcube 1.6 version failed
« on: June 20, 2026, 10:54:19 PM »
Short solution:
1. Create some account with the domain name like:
webmail.hostname.com
(or whatever you want) on your server.
2. Enable PHP 7.3+ for this account
3. Install Roundcube into the public_html of the account
4. Copy and chown the file:
/usr/local/cwpsrv/var/services/roundcube/config/config.inc.php
to
/home/USERNAME/public_html/config/config.inc.php
of the account
5. Set up a redirect in /usr/local/cwpsrv/var/services/roundcube/ to redirect visitors to webmail.hostname.com or block access to /usr/local/cwpsrv/var/services/roundcube/ for security reasons.
6. Use webmail.hostname.com to check emails.
Don't forget to update the installed Roundcube from time to time.
1. Create some account with the domain name like:
webmail.hostname.com
(or whatever you want) on your server.
2. Enable PHP 7.3+ for this account
3. Install Roundcube into the public_html of the account
4. Copy and chown the file:
/usr/local/cwpsrv/var/services/roundcube/config/config.inc.php
to
/home/USERNAME/public_html/config/config.inc.php
of the account
5. Set up a redirect in /usr/local/cwpsrv/var/services/roundcube/ to redirect visitors to webmail.hostname.com or block access to /usr/local/cwpsrv/var/services/roundcube/ for security reasons.
6. Use webmail.hostname.com to check emails.
Don't forget to update the installed Roundcube from time to time.
20
CSF Firewall / Re: CWP / Nginx Reverse Proxy: cwpsrv not logging authentication failures
« on: June 09, 2026, 06:59:09 PM »Quote
Is there a configuration in cwpsrv to enable "Real IP" support similar to how Apache/Nginx handle it?In my option you need to recompile nginx (cwpsrv) used by CWP to handle the requests coming to the panel to add the nginx module called "
ngx_http_realip_module":
https://nginx.org/en/docs/http/ngx_http_realip_module.html
Update the config file:
/usr/local/cwpsrv/conf.d/users.conf
to get the IP from the header X-Forwarded-For or X-Real-IP.
Here is the "configuration" used to compile cwpsrv:
Code: [Select]
--prefix=/usr/local/cwpsrv --sbin-path=/usr/local/cwpsrv/bin/cwpsrv --conf-path=/usr/local/cwpsrv/conf/cwpsrv.conf --pid-path=/usr/local/cwpsrv/var/run/nginx.pid --error-log-path=/usr/local/cwpsrv/logs/error_log --http-log-path=/usr/local/cwpsrv/logs/access_log --user=root --group=root --with-http_ssl_module --with-http_gzip_static_module --with-file-aio --with-http_secure_link_module --with-http_ssl_module --add-module=src/misc/ngx_http_auth_pam_module
Please note you make the changes on your own risk.
21
Apache / Re: HTTP/2 Bomb — Remote DoS Exploit Hits nginx, Apache, IIS, Envoy, and Cloudflare
« on: June 08, 2026, 10:52:58 PM »
I think the only way to find the version of mod_http2 is to check the log of the webserver:
/usr/local/apache/logs/error_log
/usr/local/apache/logs/error_log
Code: [Select]
grep 'mod_http2' /usr/local/apache/logs/error_log
22
SSL / Re: SSL for an IP
« on: June 06, 2026, 10:43:57 PM »
I never requested an SSL certificate for the IP address. However, Certbot and ACME.sh work the same way. They simply send a certificate request to the certificate authority (CA). The CA then verifies that you are the administrator of the IP address or domain name using an HTTP or DNS challenge and issues the certificate if the validation is successful.
Seems you just need to use the "shortlived" profile:
https://letsencrypt.org/2026/01/15/6day-and-ip-general-availability
see "--cert-profile" of ACME.sh and use HTTP-01 acme challenge for verification.
So the command to request such SSL should be:
you can test it by adding "--test"
Seems you just need to use the "shortlived" profile:
https://letsencrypt.org/2026/01/15/6day-and-ip-general-availability
see "--cert-profile" of ACME.sh and use HTTP-01 acme challenge for verification.
So the command to request such SSL should be:
Code: [Select]
acme.sh --issue \
--server letsencrypt \
--cert-profile shortlived \
--days 3 \
-d your.ip.address.here \
-w /document/root/
you can test it by adding "--test"
23
Apache / Re: HTTP/2 Bomb — Remote DoS Exploit Hits nginx, Apache, IIS, Envoy, and Cloudflare
« on: June 05, 2026, 10:16:15 PM »
Guys, check if the protocol http/2 is enabled in Nginx and/or Apache before panic 
If you get nothing or commented lines then http/2 is disabled.
Seems Sandeep provided with the instructions how to update Nginx.
My version of CWP doesn't use mod_http2 for Apache by default. At least I don't see it in the folder used to store the apache modules:
/usr/local/apache/modules/
Anyway, if you need to update mod_http2 for Apache follow the instructions listed below to perform the update:

Code: [Select]
grep ' h2 ' /usr/local/apache/conf* -R
grep 'http2' /etc/nginx/conf* -RIf you get nothing or commented lines then http/2 is disabled.
Seems Sandeep provided with the instructions how to update Nginx.
My version of CWP doesn't use mod_http2 for Apache by default. At least I don't see it in the folder used to store the apache modules:
/usr/local/apache/modules/
Anyway, if you need to update mod_http2 for Apache follow the instructions listed below to perform the update:
Code: [Select]
dnf install libnghttp2-devel.x86_64
cd /usr/local/src/
wget -O mod_http2.zip https://github.com/icing/mod_h2/archive/refs/heads/master.zip
unzip mod_http2.zip
cd mod_h2-master
autoreconf -i
automake
autoconf
./configure --with-apxs=/usr/local/apache/bin/apxs
make
make sure there are no messages containing "error". If all is ok:Code: [Select]
#make backup of the original http2 libs to /root/
cp -p /usr/local/apache/modules/*http2.so /root/
cp -fp mod_http2/.libs/*.so /usr/local/apache/modules/
service httpd restart
24
Nginx / Re: Nginx uploads fail after every package update on CWP / AlmaLinux 8
« on: May 25, 2026, 06:22:50 PM »
It can be solved in one more way using an RPM:
Create and install an RPM package used as a trigger. The task of the custom RPM is to run a script if the "nginx" RPM is updated/installed. The script can do anything (fix permissions).
Create and install an RPM package used as a trigger. The task of the custom RPM is to run a script if the "nginx" RPM is updated/installed. The script can do anything (fix permissions).
25
PHP / Re: Server is down simply after php switcher
« on: May 20, 2026, 10:22:37 AM »
Hi,
The more details you provide about the problem, the more we will be able to help you. Currently, we know that your server is down and that it is somehow related to the PHP switcher.
So can you tell us what happened before your server went down ?
Did you recompile php or make any other changes ?
Is your server down completely or only webserver (apache/nginx) ?
Have you checked logs ?
The more details you provide about the problem, the more we will be able to help you. Currently, we know that your server is down and that it is somehow related to the PHP switcher.
So can you tell us what happened before your server went down ?
Did you recompile php or make any other changes ?
Is your server down completely or only webserver (apache/nginx) ?
Have you checked logs ?
26
PHP / Re: Server is down simply after php switcher
« on: May 20, 2026, 10:14:28 AM »
The first
The first message in this thread was posted 7 years ago.
me too, how u resolve it?
The first message in this thread was posted 7 years ago.
27
Nginx / Re: Nginx uploads fail after every package update on CWP / AlmaLinux 8
« on: May 20, 2026, 10:04:57 AM »
try to add the custom "chown", "chmod" commands to:
/etc/cron.daily/cwp
right after:
/etc/cron.daily/cwp
right after:
Code: [Select]
/usr/local/cwp/php71/bin/php -d max_execution_time=1000000 -q /usr/local/cwpsrv/htdocs/resources/admin/include/cron.phpto fix the permissions after the daily cwp update.
28
Nginx / New Nginx Vulnerability CVE-2026-42945
« on: May 16, 2026, 10:31:36 PM »
Hi guys,
New critical vulnerability CVE-2026-42945 was discovered in nginx webserver:
https://www.picussecurity.com/resource/blog/nginx-rift-cve-2026-42945-critical-heap-buffer-overflow-vulnerability-explained
Almalinux developers released the patched version of nginx:
https://almalinux.org/ru/blog/2026-05-13-nginx-rift-cve-2026-42945/
To fix it is enough to run:
New critical vulnerability CVE-2026-42945 was discovered in nginx webserver:
https://www.picussecurity.com/resource/blog/nginx-rift-cve-2026-42945-critical-heap-buffer-overflow-vulnerability-explained
Almalinux developers released the patched version of nginx:
https://almalinux.org/ru/blog/2026-05-13-nginx-rift-cve-2026-42945/
To fix it is enough to run:
Code: [Select]
dnf update
service nginx restart
and then check the nginx version to make sure you are safe.
29
Updates / Re: Vulnerabilities in Apache 2.4.66 and older versions
« on: May 11, 2026, 08:40:35 AM »If anyone needs help doing the update, we created a KB article at:
Thanks. Very useful !
Did you test it if Nginx works as frontend and Apache as backend (reverse proxy) ?
30
Updates / Vulnerabilities in Apache 2.4.66 and older versions
« on: May 08, 2026, 09:17:41 PM »
New vulnerabilities are discovered in Apache 2.4.66 and older versions.
Update Apache to 2.4.67 or disable the affected modules:
https://httpd.apache.org/security/vulnerabilities_24.html
Update Apache to 2.4.67 or disable the affected modules:
https://httpd.apache.org/security/vulnerabilities_24.html
