21
Information / Re: CWP New installation
« Last post by Starburst on September 26, 2025, 10:40:32 AM »You mean like the knowledge base at: https://starburst.help
22
Mod_Security / Re: OWASP CRS v4.15.0 Just Release
« Last post by Starburst on September 26, 2025, 10:37:48 AM »No, you want to use a new directory, and when you unzip the new rules, it will make it's own subdirectory.
Either way, you have to update you ModSecurity from the CWP default to 2.9.12
How to do this, and the ruleset can be found at our knowledge base at:
https://starburst.help
Either way, you have to update you ModSecurity from the CWP default to 2.9.12
How to do this, and the ruleset can be found at our knowledge base at:
https://starburst.help
23
Mod_Security / Re: OWASP CRS v4.15.0 Just Release
« Last post by anandmys on September 26, 2025, 10:34:28 AM »Trying to follow https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-to-4-16-0-running-cwp-and-apache-on-almalinux-8-9/
But I dont have this folder.
I have
Path: /usr/local/apache/modsecurity-owasp-old/base_rules
Should I use this path?
Quote
cd /usr/local/apache/modsecurity-rules/owasp-crs
But I dont have this folder.
I have
Path: /usr/local/apache/modsecurity-owasp-old/base_rules
Should I use this path?
24
Information / CWP New installation
« Last post by anandmys on September 26, 2025, 10:12:11 AM »I tried installing CWP after couple of years on a new VPS
This is the first time I tried on AL 8
I had forgotten the issues I had earlier
It would be a great help if someone can compile a complete list of things to do on a fresh installation.
In continuation of steps in https://control-webpanel.com/installation-instructions
I am looking at steps like
Securing MySQL
SSH port change
php-fpm
Select Web server option
Mod Security settings / updates
Also I moved few accounts from another installation
Few things like
The Google MX records didnt get transferred
It will be a great thing if few experts start a thread and compile these OR put these as a blog post in their personal / company blog / article section
This is the first time I tried on AL 8
I had forgotten the issues I had earlier
It would be a great help if someone can compile a complete list of things to do on a fresh installation.
In continuation of steps in https://control-webpanel.com/installation-instructions
I am looking at steps like
Securing MySQL
SSH port change
php-fpm
Select Web server option
Mod Security settings / updates
Also I moved few accounts from another installation
Few things like
The Google MX records didnt get transferred
It will be a great thing if few experts start a thread and compile these OR put these as a blog post in their personal / company blog / article section
25
Information / Re: CWP Pro IP Change
« Last post by anandmys on September 26, 2025, 08:40:19 AM »Thank you. It got updated after an hour or so.
I tried running the update script earlier. But wasnt effective
I tried running the update script earlier. But wasnt effective
26
CentOS-WebPanel Bugs / Re: Server Somehow Got Hacked
« Last post by overseer on September 25, 2025, 09:18:18 PM »Starburst has a guide for updating to Apache 2.4.65 on AlmaLinux 8/9:
https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/update-apache-to-2-4-65-in-cwp-on-almalinux-8-9/
https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/update-apache-to-2-4-65-in-cwp-on-almalinux-8-9/
27
CentOS-WebPanel Bugs / Re: Server Somehow Got Hacked
« Last post by gbyteinfotech on September 25, 2025, 07:52:41 PM »CWP Support found malware in the Apache server due to an old version.
28
CentOS-WebPanel Bugs / Re: Server Somehow Got Hacked
« Last post by gbyteinfotech on September 25, 2025, 04:11:16 PM »Do you want to PM the domain name in question so we can see the page, look at the code -- or have you already done that?
my question is how could even a blank directory can show a web page when I change the user agent to googlebot (via browser developer tool)
BTW it has been fixed now by the CWP support team.. still I would like to know how it happen...
29
CentOS-WebPanel Bugs / Re: Server Somehow Got Hacked
« Last post by gbyteinfotech on September 25, 2025, 04:09:18 PM »all of the website in the server is same.. it's not for perticuler domain.. even If I delete all the files from a purticuler domain.. still showing spam page
example
for example.com I deleted all the files inside public_html/* complete blank public_html directory.. but if I view the website as google bot it'll show me the spam page.. but if I open it normally it's show forbidden as it should be..
example
for example.com I deleted all the files inside public_html/* complete blank public_html directory.. but if I view the website as google bot it'll show me the spam page.. but if I open it normally it's show forbidden as it should be..
30
SSL / Re: AutoSSL Renewal Issues
« Last post by overseer on September 25, 2025, 03:59:01 PM »Cloudflare, yes. I am using the AutoSSL method on my CWP servers. On another dedicated mail server I maintain, it uses the DNS method with certbot and I have never had issues with renewals using that method.