Recent Posts
61
Updates / Re: Will someone update the Changelog
« Last post by Starburst on September 06, 2025, 11:04:07 PM »You can update to PHP 8.4.x manually, but the problem is some modules have been retired by their creators, like IMAP.
So PHP 8.4 is running into their own support problems right now.
So PHP 8.4 is running into their own support problems right now.
Quote
The IMAP extension was moved out of PHP core because the underlying c-client library it relied on was no longer being maintained
62
CSF Firewall / Re: Configserver down?
« Last post by Starburst on September 06, 2025, 10:56:38 PM »CSF is gone for good as of Aug 31st, now what??? Why didn't CWP address this in the fresh installs instead of leaving everyone not working. That is VERY unprofessional!!!
https://configserver.com/announcement/
This is/was not CWP's fault...
They Do Not control 3rd party companies, ConfigServer shocked everyone when they posted their 30 day notice.
Of course it's not their fault. That said, the fact that CWP didn't give a heads up about the fact that their product would stop working is unprofessional. So, I agree with DragoCon.
Even if they didn't have an immediate solution, they could have added a warning message to the CWP Dashboard about the impending change to CSF. That would have let people like me (who rarely visit these support forums or follow news about this stuff) the chance to know something might break before it broke.
Trust me, lots of people are grateful that there are people like you who do provide free support. But that doesn't change the fact that CWP should be more proactive about this stuff.
1. CWP continued to work, so I have no idea what the frak you are talking about with that...
2. The author of CSF didn't put it into the open source arena until 2 days before the end of the month.
Then it took me a few days how to figure out how to re-enable csf -u, so it didn't error.
That just didn't happen to CWP, it also happened to cPanel and Stand-Alone users of CSF.
There is no replacement for CSF, that's the problem.
I saw Imunify 360 try to push ads they that they are a replacement, but they are not. They are just like ClamAV.
Closest replacement would be fail2ban and Nftables, but then still will be missing part of what CSF offers.
Then comes the whole problem that Linux is moving away from IPtables for the for mentioned Nftables in EL10.
But Nftables does have a IPtables compatibility mode.
Which mean some one now has to take the banner and either crate something like CSF from scratch or overhaul CSF completely to work with Nftables in native mode.
CSF was mostly written in Perl, which no one codes in anymore, it's mostly all in PHP now a days.
Thankfully this might happen before the EOL of EL9.
Otherwise, it's just not CWP in trouble, it's also cPanel and others.
Don't get me wrong CWP seems to be dropping the ball lately, I'm not sure what's going on, even from a partner aspect.
@overseer and I try to do the most we can, with @cyberspace helping also.
63
Updates / Re: Will someone update the Changelog
« Last post by Starburst on September 06, 2025, 10:42:01 PM »Hahahaha
Thanks for the laugh. Though my side hurts now...
I'm trying to get them to update the PHP versions. Care more about that than a changelog.
Thanks for the laugh. Though my side hurts now...
I'm trying to get them to update the PHP versions. Care more about that than a changelog.
64
CSF Firewall / Re: Configserver down?
« Last post by alexd on September 06, 2025, 10:36:57 PM »CSF is gone for good as of Aug 31st, now what??? Why didn't CWP address this in the fresh installs instead of leaving everyone not working. That is VERY unprofessional!!!
https://configserver.com/announcement/
This is/was not CWP's fault...
They Do Not control 3rd party companies, ConfigServer shocked everyone when they posted their 30 day notice.
Of course it's not their fault. That said, the fact that CWP didn't give a heads up about the fact that their product would stop working is unprofessional. So, I agree with DragoCon.
Even if they didn't have an immediate solution, they could have added a warning message to the CWP Dashboard about the impending change to CSF. That would have let people like me (who rarely visit these support forums or follow news about this stuff) the chance to know something might break before it broke.
Trust me, lots of people are grateful that there are people like you who do provide free support. But that doesn't change the fact that CWP should be more proactive about this stuff.
65
Updates / Re: Will someone update the Changelog
« Last post by Martins-phpbb on September 06, 2025, 08:24:51 PM »Best of luck with that there are a few topics asking for the changelog to be updated but we under bodies just get ignored.
My pro runs out on the 19th and i'm thinking hard about letting it go and going elsewhere due to being ignored by the cwp team with out us they would be nothing.
My pro runs out on the 19th and i'm thinking hard about letting it go and going elsewhere due to being ignored by the cwp team with out us they would be nothing.
66
Updates / Will someone update the Changelog
« Last post by matrix4495 on September 06, 2025, 07:47:20 PM »I noticed my CWP server just dropped an update tarball for CWPpro version: 0.9.8.1214
I have no clue what were the changes or fixes in last few updates or whats going on, No idea on PHP update or 8.4 version or others.
Will someone please update the same?
I have no clue what were the changes or fixes in last few updates or whats going on, No idea on PHP update or 8.4 version or others.
Will someone please update the same?
67
MySQL / Re: Danger: MySQL root password - BIG SECURITY ISSUE
« Last post by dario68 on September 06, 2025, 02:49:18 PM »Thank you so much, I'll try to remove all versions of MariaDB and install 11.4
68
MySQL / Re: Danger: MySQL root password - BIG SECURITY ISSUE
« Last post by overseer on September 06, 2025, 01:56:45 PM »You should find out what extraneous install of MariaDB you have on the server. You may want to go ahead and remove all versions (including 10.11) and upgrade to 11.4.x -- which is an LTS version and backward and forward compatible...
For reference:
https://www.alphagnu.com/topic/23-upgrade-mariadb-1011-in-cwp-centos-7-centos-8-stream-almalinux-78-rockylinux-78/
A key step would be removing your installed version:
https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/upgrade-mariadb-10-x-to-10-11-with-cwp-on-almalinux-9/
For reference:
https://www.alphagnu.com/topic/23-upgrade-mariadb-1011-in-cwp-centos-7-centos-8-stream-almalinux-78-rockylinux-78/
A key step would be removing your installed version:
Code: [Select]
systemctl stop mariadb mysql mysqld
systemctl disable mariadb
rpm --nodeps -ev MariaDB-serverThen to install 11.4 (or you could continue re-installing 10.11 as in the link above):https://starburst.help/control-web-panel-cwp/control-web-panel-cwp-admin-tutorials/upgrade-mariadb-10-x-to-10-11-with-cwp-on-almalinux-9/
69
MySQL / Re: Danger: MySQL root password - BIG SECURITY ISSUE
« Last post by dario68 on September 06, 2025, 06:30:24 AM »I tried to change root password based on the tutorial at https://www.digitalocean.com/community/tutorials/how-to-reset-your-mysql-or-mariadb-root-password and everything was ok except step 5 - restart the database server.
I can't do that. Please check it out:
mariadb.service - MariaDB 10.11.14 database server
Loaded: loaded (/usr/lib/systemd/system/mariadb.service; enabled; vendor preset: disabled)
Drop-In: /etc/systemd/system/mariadb.service.d
└─migrated-from-my.cnf-settings.conf
Active: failed (Result: exit-code) since Sat 2025-09-06 07:13:05 BST; 4min 31s ago
Docs: man:mariadbd(
https://mariadb.com/kb/en/library/systemd/
Process: 82635 ExecStart=/usr/sbin/mariadbd $MYSQLD_OPTS $_WSREP_NEW_CLUSTER $_WSREP_START_POSITION (code=exited, status=1/FAILURE)
Process: 82625 ExecStartPre=/bin/sh -c [ ! -e /usr/bin/galera_recovery ] && VAR= || VAR=`/usr/bin/galera_recovery`; [ $? -eq 0 ] && systemctl set-environment _WSREP_START_POSITION=$VAR || exit 1 (code=exited, status=0/SUCCESS)
Process: 82623 ExecStartPre=/bin/sh -c systemctl unset-environment _WSREP_START_POSITION (code=exited, status=0/SUCCESS)
Main PID: 82635 (code=exited, status=1/FAILURE)
Status: "MariaDB server is down"
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] InnoDB: Plugin initialization aborted with error Generic error
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [Note] InnoDB: Starting shutdown...
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Plugin 'InnoDB' registration as a STORAGE ENGINE failed.
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [Note] Plugin 'FEEDBACK' is disabled.
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Could not open mysql.plugin table: "Unknown storage engine 'Aria'". Some plugins may be not loaded
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Failed to initialize plugins.
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Aborting
Sep 06 07:13:05 srv.com systemd[1]: mariadb.service: Main process exited, code=exited, status=1/FAILURE
Sep 06 07:13:05 srv.com systemd[1]: mariadb.service: Failed with result 'exit-code'.
Sep 06 07:13:05 srv.com systemd[1]: Failed to start MariaDB 10.11.14 database server.
It looks like I have another instance of MariaDB because all my websites work fine at the moment, CWP works fine too
https://drive.google.com/file/d/1yMnBGR5a7IO3kibchbPAc-pTS1Iny72T/view?usp=sharing
Reboot server helped to start MariaDB with CWP
I can't do that. Please check it out:
mariadb.service - MariaDB 10.11.14 database server
Loaded: loaded (/usr/lib/systemd/system/mariadb.service; enabled; vendor preset: disabled)
Drop-In: /etc/systemd/system/mariadb.service.d
└─migrated-from-my.cnf-settings.conf
Active: failed (Result: exit-code) since Sat 2025-09-06 07:13:05 BST; 4min 31s ago
Docs: man:mariadbd(
https://mariadb.com/kb/en/library/systemd/
Process: 82635 ExecStart=/usr/sbin/mariadbd $MYSQLD_OPTS $_WSREP_NEW_CLUSTER $_WSREP_START_POSITION (code=exited, status=1/FAILURE)
Process: 82625 ExecStartPre=/bin/sh -c [ ! -e /usr/bin/galera_recovery ] && VAR= || VAR=`/usr/bin/galera_recovery`; [ $? -eq 0 ] && systemctl set-environment _WSREP_START_POSITION=$VAR || exit 1 (code=exited, status=0/SUCCESS)
Process: 82623 ExecStartPre=/bin/sh -c systemctl unset-environment _WSREP_START_POSITION (code=exited, status=0/SUCCESS)
Main PID: 82635 (code=exited, status=1/FAILURE)
Status: "MariaDB server is down"
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] InnoDB: Plugin initialization aborted with error Generic error
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [Note] InnoDB: Starting shutdown...
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Plugin 'InnoDB' registration as a STORAGE ENGINE failed.
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [Note] Plugin 'FEEDBACK' is disabled.
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Could not open mysql.plugin table: "Unknown storage engine 'Aria'". Some plugins may be not loaded
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Failed to initialize plugins.
Sep 06 07:13:05 srv.com mariadbd[82635]: 2025-09-06 7:13:05 0 [ERROR] Aborting
Sep 06 07:13:05 srv.com systemd[1]: mariadb.service: Main process exited, code=exited, status=1/FAILURE
Sep 06 07:13:05 srv.com systemd[1]: mariadb.service: Failed with result 'exit-code'.
Sep 06 07:13:05 srv.com systemd[1]: Failed to start MariaDB 10.11.14 database server.
It looks like I have another instance of MariaDB because all my websites work fine at the moment, CWP works fine too
https://drive.google.com/file/d/1yMnBGR5a7IO3kibchbPAc-pTS1Iny72T/view?usp=sharing
Reboot server helped to start MariaDB with CWP
70
CentOS-WebPanel Bugs / Re: [CRITICAL] Multiple CWP Servers Infected – Arbitrary PHP Code Execution via Publ
« Last post by overseer on September 05, 2025, 01:28:11 PM »Oh for sure -- I thought you had already done that as a first step. They are likely what gives the attacker persistence on your server.
