Messages

1

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: March 19, 2025, 02:00:04 PM »

Hi,

in this article :

https://starburst.help/control-web-panel-cwp/modsecurity/owasp-crs-ruleset-update-to-4-12-0-running-cwp-and-apache-on-almalinux-8-9/

here ( step 8 ), please look maybe there is an error: https://prnt.sc/CrpsjlKky6R2

After the correction I made and when trying to test the mod security, the test does not work???

BR
Venty

2

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: March 18, 2025, 02:06:51 PM »

What is your country? https://dl.starburst.help/ works here with Xfinity (Comcast) in the USA.

Hi,

Bulgaria, please come ...

BR
Venty

I'll take a look, IP's from BG like attacking the servers.

Try now, if you are still blocked, then Cloudflare has either the individual IP range or AS blocked.

Thank you very much!

3

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: March 18, 2025, 01:25:54 PM »

What is your country? https://dl.starburst.help/ works here with Xfinity (Comcast) in the USA.

Hi,

Bulgaria, please come ...

BR
Venty

4

Problems on other RedHat linux servers / Re: daily "Anacron" messages?

« on: March 18, 2025, 01:24:40 PM »

Again, those are Notices -- not errors. If you prefer not to notice them, you can do as I suggested earlier in the thread and change your warning level so they aren't brought front & center to your attention on a regular basis.

Hi,

I'm very sorry, I did what you gave me as recommendations, but the notices continue to appear ...

On the other hand, please advise me on which "official" bases it is expected that there will be a daily, etc. archive available ...

BR
Venty

5

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: March 18, 2025, 07:16:51 AM »

Just created a ModSecurity folder. There will be some more tutorials coming soon.

If it doesn't redirect you, the new URL is:
https://starburst.help/control-web-panel-cwp/modsecurity/owasp-crs-ruleset-update-to-4-12-0-running-cwp-and-apache-on-almalinux-8-9/

Yes, Step 8 creates the global_disabled_rules.conf file.

What is put in here depends on personal needs/wants to allow thru.

Step 9 is depending on how mod_security.conf was setup.

Either way, it should be changed to

Code: [Select]

Include "/usr/local/apache/modsecurity-owasp-latest/owasp.conf"If you are following that KB to the letter.

This KB moved it to to sub-root directory, so it is easily modified for the next OWASP CRS update (e.g. 4.13.0), you just have to change a couple numbers, instead of creating a whole new owasp.conf file every time you update.

Hi,

thank you very much for the answer...

https://dl.starburst.help/ does not work...

BR
Venty

6

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: March 17, 2025, 04:29:43 PM »

Updated both KB articles.

We updated some paths on the downloads server.

https://dl.starburst.help/

Hi,

thank you very much for the answer...

I try to access and download the file from the new download path, but again it doesn't work, it returns This site can't be reached / dl.starburst.help took too long to respond. Could it be that there is protection or limited access from a certain country...?

Please clarify - in the article about the rules 4.12.0:

https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/owasp-crs-ruleset-update-to-4-12-0-running-cwp-and-apache-on-almalinux-8-9/

1. In step 8, I create the file global_disabled_rules.conf and then change its content or itself with it with what I download as recommended.conf?

2. The lobal_disabled_rules.conf file remains in the /usr/local/apache/modsecurity-owasp-latest/coreruleset-4.12.0/ directory

3. In step 9, as far as I understand, there are two options for the code:
3.1 Include “/usr/local/apache/modsecurity-owasp-latest/coreruleset-4.12.0/owasp.conf” - which owasp.conf remains in the coreruleset-4.12.0 directory??

3.2 Include "/usr/local/apache/modsecurity-owasp-latest/owasp.conf" - which owasp.conf is moved to the modsecurity-owasp-latest directory??

3.1 or 3.2 is better?

4. You say:
"Notice we moved the owasp.conf to the root of the OWASP Rulesets, so any future updates you can just update the version number in the Include path." - update the version number in the Include path = version number in the Include path in the three lines of the owasp.conf file ??

5. If option 3.2 is chosen, where we move the owasp.conf file to the modsecurity-owasp-latest directory - other files from the coreruleset-4.12.0 directory are not moved, right?

Thanks in advance!

BR
Venty

7

Other / Re: Nginx Varnish Apache php-fpm 403 Forbidden

« on: March 17, 2025, 02:44:26 PM »

For me, this is usually solved with a simple "WebServer Rebuild" which you can found under each domain WebServer configuration.

Hi,

but for me it's like this:

https://prnt.sc/ag3vdF6hfnd7

is that the problem? I use AL 9...

Thanks in advance!

8

Suggestions / Re: :):):) Comodo WAF rules update required :):):)

« on: March 17, 2025, 09:34:59 AM »

Hi,

I sincerely thank Starburst for the good article..

https://kb.starburstservices.com/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/update-to-owasp-crs-ruleset-running-cwp-and-apache-on-almalinux-8-9/


but I saw that there is a new one:

https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/owasp-crs-ruleset-update-to-4-12-0-running-cwp-and-apache-on-almalinux-8-9/

Given that I have completed the first one verbatim, do I now have to complete everything from the second one?

And also - the link provided does not work, please help:

https://prnt.sc/itInIPhlID4o

Thanks in advance!

BR
Venty

9

Other / Re: Nginx Varnish Apache php-fpm 403 Forbidden

« on: March 17, 2025, 09:12:04 AM »

Hi
I have tested this on Alma Linux 8 and 9. Same problem on both OS.
After fresh install of CWP, PHP7.4 and FPM or PHP8.3 and FPM
i goto SelectWebServer option under WebServer Settings menu and select Nginx & Varnish & Apache.
I install varnish directly from ssh and start the process successfully.
I add New user and domain.
After that i generate SSL successfully.
Then i goto WebServerDomain Conf and enable Varnish on the domain.

As soon as i enable it, and try to browse the domain, i get NGINX 403 Forbidden.
As soon as i disable Varnish by deleting the config from WebServerDomain Conf , website starts working again.
Could anyone please guide me how to fix this? I am using CWP Pro.

Hi,

+ 1 for NGINX 403 Forbidden...

BR
Venty

10

Other / Re: Nginx Varnish Apache php-fpm 403 Forbidden

« on: March 17, 2025, 09:09:05 AM »

On Alma Linux 8 it installs automatically.
On Alma Linux 9 I need to install it manually.
Forgot to mention this.
Doesn't matter if it's installed auto or manually, I still get the same problem.

Hi,

1. How to install Varnish on Alma Linux 9 and SVP?
2. How to enable for SelectWebServer / WebServer Settings menu and select Nginx & Varnish & Apache mode?

Thanks in advance!

BR
Venty

11

Problems on other RedHat linux servers / Re: no Varnish...

« on: March 15, 2025, 02:01:20 AM »

PHP 8.1.---no  Varnish too?¿???

12

Problems on other RedHat linux servers / no Varnish...

« on: March 14, 2025, 12:41:04 PM »

Hi,

I am using Alma Linux 9.

After a fresh install of CWP, PHP7.4 and FPM or PHP8.1 and FPM

I got to the SelectWebServer option under the WebServer Settings menu and select Nginx & Varnish & Apache, but I found no Varnish...

What should I do?

BR
Venty

13

PHP / Re: FYI - ionCube Release new loaders 13.3.0

« on: March 12, 2025, 09:33:42 AM »

Hi,

Many thanks to Starburst for this post...

His last post on the subject:

https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/ioncube-error-after-building-php-8-3-with-cwp-on-almalinux-8-9/

Please help - if I have compiled PHP 8.3.17 via PHP Version Switcher and have followed all Starburst instructions (for which I thank him again very much), and I have a working version of PHP 8.3.17, then when compiling PHP 8.3.17 with PHP Selector and PHP-FPM Selector - do I need to do anything else?

Thanks in advance!

BR
Venty

14

PHP / Re: PHP Version Switcher

« on: March 12, 2025, 08:08:01 AM »

CWP 0.9.8.1142 free version and i cannot use php switch
how can i pay for pro version? i tried with skrill but cannot pay..
Can anybody help?

PHP Switcher2 * PHP-FPM is part of CWPpro, it does not function in the Free version of CWP.
But from your post above, you already know that.

Also for some odd reason, for PHP-CGI to compile correctly, you have to have your DNS in the Admin panel set to valid servers, and have the hostname SSL installed.

Brought up 5 servers earlier in February, and found that little bug.

Hi,
quote:
Also for some odd reason, for PHP-CGI to compile correctly, you have to have your DNS in the Admin panel set to valid servers, and have the hostname SSL installed.

this about "your DNS in the Admin panel set to valid servers" I didn't understand it, if my domain was purchased from my ISP and the DNS is with them?

BR
Venty

15

PHP / CWPanel ---> PHP Settings section --->PHP info....

« on: March 11, 2025, 03:51:30 PM »

Hi,

I used AL 9.5 .... Previously, and now when I look at the videos, I notice that In CWPanel ---> PHP Settings section --->PHP info, the PHP settings of the server and the user were visible one after another. Still, now I only see the PHP settings of the server, what should I do?

Thanks in advance!

BR

Venty