Messages

166

Installation / Re: ionCube Error after building PHP 8.3 with CWP on AlmaLinux 8/9

« on: March 05, 2025, 12:24:36 PM »

I'm working on why those new images are giving errors.

But @rcschaff is correct, it doesn't effect the text instructions.

And using the SFTP inside Bitvise is pretty simple.

167

CSF Firewall / Re: Unable to retrieve blocklist MAXMIND - Unable to download: Not Found

« on: February 28, 2025, 12:05:10 AM »

CSF will still query Maxmind for GeoLocation.

AbuseIPDB is:
https://www.abuseipdb.com/csf

168

Suggestions / Re: Default notifications

« on: February 28, 2025, 12:02:59 AM »

??

I don't receive any emails about secure kernels, etc.

Maybe something new they started?

169

CentOS 9 Problems / Re: apache wont restart after enabling mod_security.

« on: February 27, 2025, 09:34:11 AM »

That's not a valid config for ModSecurity.
One is generated automatically and installed when you install ModSecurity, so not sure how that happened.

If you are using the old Comodo the main configuration should look like (/usr/local/apache/conf.d/mod_security.conf)

Code: [Select]

LoadFile /usr/lib64/libxml2.so
LoadFile /usr/lib64/liblua-5.4.so

<IfModule !unique_id_module>
LoadModule unique_id_module modules/mod_unique_id.so
</IfModule>

<IfModule !mod_security2.c>
LoadModule security2_module  modules/mod_security2.so
</IfModule>

<IfModule mod_security2.c>
    <IfModule mod_ruid2.c>
        SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit
        SecAuditLogType Concurrent
    </IfModule>
    <IfModule itk.c>
        SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit
        SecAuditLogType Concurrent
    </IfModule>

           
              SecRuleEngine On
              SecAuditEngine RelevantOnly
    SecAuditLog /usr/local/apache/logs/modsec_audit.log
    SecDebugLog /usr/local/apache/logs/modsec_debug.log
    SecAuditLogType Serial
    SecDebugLogLevel 0
    SecRequestBodyAccess On
    SecDataDir /tmp
    SecTmpDir /tmp
    SecUploadDir /tmp
    SecCollectionTimeout 600
    SecPcreMatchLimit 1250000
    SecPcreMatchLimitRecursion 1250000
              Include "/usr/local/apache/modsecurity-cwaf/cwaf.conf"
</IfModule>
From your input, it looks like you are trying to load the site config files from the WebServers Configuration Editor.

170

CSF Firewall / Re: Unable to retrieve blocklist MAXMIND - Unable to download: Not Found

« on: February 27, 2025, 09:27:20 AM »

It looks like Maxmind made their blocklist paid now.
When you goto the URL in the list nothing comes up.

But there are plenty of other good blocklists in the config file, as well as you can add others like AbuseIPDB, etc.

171

Information / Re: No CSF on rocky8 install

« on: February 27, 2025, 01:27:33 AM »

Before installing CWP on AlmaLinux, run:

Code: [Select]

update-crypto-policies --set DEFAULT:SHA1
Then all their steps:

dnf --refresh update
cd /usr/local/src
wget http://centos-webpanel.com/cwp-el9-latest
sh cwp-el9-latest

172

Installation / Re: ...server under AL9?

« on: February 25, 2025, 05:49:09 PM »

For the

Repository 'mariadb' is missing name in configuration, using id.

Check the MariaDB.repo file.

It should look something like:

[mariadb]
name = MariaDB
baseurl = https://rpm.mariadb.org/10.11/rhel/$releasever/$basearch
gpgkey = https://rpm.mariadb.org/RPM-GPG-KEY-MariaDB
gpgcheck = 1

And then when you run a dnf clean all, it will usually show x file removed.

10.11.11 is the current version, and the 10.11 is a LTS (5 year) supported version.

173

Information / Re: No CSF on rocky8 install

« on: February 25, 2025, 01:32:06 AM »

Yea. Rocky has had an issues with missing libraries since the start.

That's why AlmaLinux 8 or 9 is the recommended version.
Also because I think it's the free version of CloudLinux (allot of the same developers)

Usually csf lives in /etc/csf.

174

Information / Re: Roundcube big security issue.

« on: February 24, 2025, 01:12:04 AM »

Sent you a DM.

Just out of curiosity I deleted the /usr/local/cwpsrv/var/services/roundcube/logs/errors.log, and it's still trying to download it form somewhere.

Not sure how I got sucked into this blackhole, it's 0113...

175

Information / Re: Roundcube big security issue.

« on: February 23, 2025, 10:42:47 PM »

So neither fix did anything on a system without the Comodo ruleset.

Interesting.

Followed what @rcschaff, and @cyberspace posted.

Both /usr/local/cwpsrv/conf/cwp_services.conf & /usr/local/cwpsrv/conf.d/webmail.conf where updated.

https://webmail.DOMAIN.COM/logs/errors.log still allowed the error log to be downloaded.

Port 2095 & 2096 have to be public also.

The team who builds Roundcube is blaming this on a deleted .htaccess file, which are confirmed there with proper permissions like @Vinayak posted.
So the webserver should be looking at those rule denying access as well.

176

Installation / Re: Public beta of CWP for AlmaLinux 9 Available

« on: February 23, 2025, 10:19:26 PM »

From scratch, the CWP script automatically queries your OS.

177

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: February 21, 2025, 01:04:19 AM »

The other never auto updated either for some reason, but this manually update won't.

Path names would all change to the new version, so I'm not sure how a script might do this or not.

178

Information / Re: Roundcube big security issue.

« on: February 21, 2025, 12:58:34 AM »

All of our CWP installation didn't have this issue.

Logs where not accessible, the screen up up with the generic permission denied screen.

But a working ModSecurity properly configured seems to block it, along with updating to RoundCube 1.5.9, which is a LTS version.

179

CentOS 9 Problems / Re: Can not log in control panel

« on: February 19, 2025, 10:39:37 PM »

Their site shows they offer AlmaLinux 8 and 9, as well as custom images.

If you don't need PHP support under 7.4, I would go with AlmaLinux 9.

180

CentOS 8 Problems / Re: Problem with webmail roundcube

« on: February 19, 2025, 12:55:01 AM »

Did you update RoundCube to 1.5.9 or are you using the default installed 1.4.11 version?