Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1186
Information / Re: Licensing issues, probably due to not being able to reach the needed server
« on: March 28, 2023, 06:31:58 PM »
Your server pings their licensing server to validate your CWP Pro license.
And as JeroenL discovered, CSF can be overly aggressive and block different IPs and ranges. And be careful about what countries you block -- their data center is in France but the dev team is eastern European. So I have blocked Romania and Bulgaria in the past due to hacking sprees out of those countries. But it could interfere with their support attempts if you need their help. So best just to block the big 3 culprits, based on my experience:
And as JeroenL discovered, CSF can be overly aggressive and block different IPs and ranges. And be careful about what countries you block -- their data center is in France but the dev team is eastern European. So I have blocked Romania and Bulgaria in the past due to hacking sprees out of those countries. But it could interfere with their support attempts if you need their help. So best just to block the big 3 culprits, based on my experience:
Code: [Select]
CC_DENY = "CN,RU,KP"
1187
E-Mail / Re: MX records value for email service
« on: March 27, 2023, 09:23:04 AM »
DNS Functions > List DNS Zones > Edit Record on the domain name you need the MX record.
Add New Records > Type Record [MX]
Add New Records > Type Record [MX]
1188
Information / Re: Roundcube version
« on: March 27, 2023, 09:16:56 AM »
Eventually automatically.
Currently manually.
Currently manually.
1189
SSL / Re: Unable to install AutoSSL with IPv6 only
« on: March 26, 2023, 01:15:18 PM »
This was from cPanel, but applies equally well here:
https://letsencrypt.org/docs/ipv6-support/
https://community.letsencrypt.org/t/enable-ipv6-and-http2/108026
Quote
In AutoSSL, IPv6 checks take precedent and because these records do not resolve, the SSL checks fail. To address this, the IPv6 records should either be removed or updated to an address that is bound and resolves to the server.Here are a couple of salient links:
https://letsencrypt.org/docs/ipv6-support/
https://community.letsencrypt.org/t/enable-ipv6-and-http2/108026
Quote
if you have a working ipv6 configuration, Letsencrypt will use it. If your ipv6 is broken (AAAA record, but no / different answer checking http + /.well-known/acme-challenge/random-filename), that blocks creating a new certificate.
1190
Information / Re: Roundcube version
« on: March 26, 2023, 02:55:40 AM »
Your instructions worked fine on 3x CWP Pro servers. 2 were running 1.5.0, one was still running 1.4.11. All updated just fine, now all 3 are running 1.5.3. Thanks!
1191
DKIM / Re: How to implement 2048 bit DKIM keys on CWP servers.
« on: March 25, 2023, 08:38:43 PM »
Here's a shot in the dark, since I am sticking with the default 1024 for the time being.
/etc/opendkim.conf
/etc/opendkim.conf
Quote
MinimumKeyBits (integer)
Establishes a minimum key size for acceptable signatures. Signatures with smaller key sizes, even if they otherwise pass DKIM validation, will me marked as invalid. The default is 1024, which accepts all signatures. A value of 0 causes the default to be used.
1192
SSL / Re: Unable to install AutoSSL with IPv6 only
« on: March 25, 2023, 08:25:15 PM »
A few points to consider (from an outsider who is only using IPv4):
[/list]
- Is your server fully IPv6 compliant -- in the kernel and also CWP? And in Apache/Nginx: https://geekflare.com/enable-ipv6-nginx-apache/
- The DNS/.htaccess error you noted usually stems from a redirect from HTTP to HTTPS. You must have HTTPS connections enabled.
- If self-signed works for you, go for it! You control your own destiny. And honestly, renewing every 90 days is a pain!
- Consider a Cloudflare Origin SSL Certificate instead if you only need HTTPS/443 service on the server. But their cert is limited to HTTP traffic and won't work with other services (mail,FTP, etc.)
- Otherwise, consider investing in a Comodo PositiveSSL certificate. They typically run $10/yr and are industry standard. So it's set-it-and-forget-it, valid for 1 year. I've had many cases where this is the better option. Pay a few shekels and get peace of mind for a year!
[/list]
1193
CentOS 7 Problems / Re: Error in trasnfer File
« on: March 25, 2023, 08:15:11 PM »
Well, glad you got that sorted out! I just couldn't offer too much advice from afar without being in an interactive mode to try testing different possibilities. I've posted my migration experience to a couple of threads so it's there for posterity. (I post things like that here on the forum so I can look things back up at a later date!)
1194
Installation / Re: New Installation and Problems
« on: March 25, 2023, 08:11:19 PM »I did a fresh install on a new server and there is no way to get NextCloud to work...I personally don't feel that NextCloud is compatible with a standard LAMP/LEMP server profile. I personally have a dedicated VM just for a NC instance, with configured ZFS storage backing. It's just too different of an animal to shoehorn it into a standard shared hosting profile.
1196
Addons / Re: Joomla uninstall remove from addons panel
« on: March 25, 2023, 05:54:06 PM »
Try looking here:
/home/account/.conf
For an add-on WordPress install, I have this conf file:
/home/account/.conf/.addons_wp
So maybe you have
/home/account/.conf/.addons_joomla
and can just delete that conf file.
/home/account/.conf
For an add-on WordPress install, I have this conf file:
/home/account/.conf/.addons_wp
So maybe you have
/home/account/.conf/.addons_joomla
and can just delete that conf file.
1197
Addons / Re: Joomla uninstall remove from addons panel
« on: March 25, 2023, 04:02:55 PM »
Please report this as a bug to the devs so it can get fixed.
1198
Installation / Re: php per domain
« on: March 25, 2023, 04:00:13 PM »
WebServer Settings > WebServers Domain Conf > [Choose username] > Create Configuration
php-fpm option lets you specify PHP version.
php-fpm option lets you specify PHP version.
1199
How to / Re: Upgrade PhpMyAdmin
« on: March 25, 2023, 03:57:09 PM »
Is the MySQL root password the same as your system root password?
1200
SSL / Re: acme cron error renew
« on: March 25, 2023, 03:55:17 PM »
Confirm there is a validation method (usually webroot) in your conf files for those domains:
/root/.acme.sh/cwp_certs/www.domain.com/www.domain.com.conf
/root/.acme.sh/cwp_certs/www.domain.com/www.domain.com.csr.conf
You didn't manually edit these files, did you? You could delete the offending domains in CWP under Web Server > SSL Certificates and then re-add them.
/root/.acme.sh/cwp_certs/www.domain.com/www.domain.com.conf
/root/.acme.sh/cwp_certs/www.domain.com/www.domain.com.csr.conf
You didn't manually edit these files, did you? You could delete the offending domains in CWP under Web Server > SSL Certificates and then re-add them.
