We would like to offer root servers to customers, but we worry that they change the IP address to another IP address in our network and make troubles like this. I think, if a customer takes the same IP like our gateway router, our whole network is not reachable anymore. How can I avoid this?
View 10 Replies
I ran the Trojan scan in WHM and it came up with the list below. I have a strong feeling WHM is mis-reporting these as trojans, but I thought I would ask the experts here:
Scan for Trojan Horses
Appears Clean
/dev/stderr
Scanning for Trojan Horses.....
Possible Trojan - /usr/bin/cpan
Possible Trojan - /usr/bin/instmodsh
Possible Trojan - /usr/bin/prove
Possible Trojan - /usr/bin/xmlcatalog
Possible Trojan - /usr/bin/xmllint
Possible Trojan - /usr/bin/xml2-config
Possible Trojan - /usr/lib/libxml2.la
Possible Trojan - /usr/bin/mysqlhotcopy
Possible Trojan - /usr/bin/Wand-config
Possible Trojan - /usr/bin/animate
Possible Trojan - /usr/bin/compare
Possible Trojan - /usr/bin/composite
Possible Trojan - /usr/bin/conjure
Possible Trojan - /usr/bin/convert
Possible Trojan - /usr/bin/display
Possible Trojan - /usr/bin/identify
Possible Trojan - /usr/bin/import
Possible Trojan - /usr/bin/mogrify
Possible Trojan - /usr/bin/montage
Possible Trojan - /usr/bin/curl-config
Possible Trojan - /usr/bin/curl
Possible Trojan - /usr/lib/libcurl.so.3.0.0
Possible Trojan - /usr/lib/python2.3/site-packages/libxml2mod.la
Possible Trojan - /usr/lib/python2.3/site-packages/libxml2mod.so
Possible Trojan - /usr/sbin/pureauth
25 POSSIBLE Trojans Detected
Is there anything that looks fishy here?
when i use Hostname / Reverse IP Lookup and test it with my VPS ip. it show my main server name .
i am so worry about it and want to hide my main server name and other
Got this error on rkhunter 1.3.2
Quote:
[12:16:24] /usr/bin/wget [ Warning ]
[12:16:24] Warning: File '/usr/bin/wget' has the immutable-bit set.
Is that a concern? What does it mean?
I have read that although chained root ssl certificates can be more difficult to install they are actually more secure since the root certificate cannot be compromised, only the intermediary.
Is this true? It looks like both google and amazon both use chained SGC certs.
I have Plesk 11.5 (service provider mode) on a Windows 2008 server IIS7.Most of my sites are developed in .asp and therefore i use a custom 500-100.asp error page that check s the IP of the visitor then displays either a friendly error, or if its my IP a full error of what has happened (it also emails me the error). This allows me to debug pages easily whilst developing and to keep an eye on anyone trying SQL Injection hacks on my sites (as the error and email also have session variables and IP address).I dont have root access to the server as it is a Webfusion dedicated server.I have following the Plesk documentation -
1) Switch on custom errors for the subscription
2) Look in virtual directories and navigate to error documents
3) Find the error in question (500:100) and change it to point at either a file or URL
FILE - I had the data centre add in the 500-100.asp error page in to the virtual template so that my page is available in the list of virtual files - this didn't work but that maybe because its not a static page??
URL - when i add the path it says its incorrect, if i add a fully qualified address, it accepts it but it doesn't work.give me a specific example of the URL that can be entered relative to the root as the format in the documentation isn't accepted. The last step is to restart IIS which is also an issue as i cant seem to do this from the Plesk panel..It is as if it isn't catching the 500:100 error, and only catching the general 500 error??
How can you tell if two IPs are setup on the same server without having access to the server?
View 6 Replies View Relatedserver with many IP (100-200) and possible buying +20-50 each month. Configuration - CPU: 1.5-2ghz, RAM: 512-1024mb, HDD: 40-80gb. Location - any. Traffic - 1-2tb. OS - CentOS preff.
View 8 Replies View RelatedI am having a pretty weird problem about ip s at my server. I have a dedi at netdirekt and they gave me like 4 free ips,
all of the sites are at main ip, but today i created a new account and also add 1 of those ips to server and i changed ip of the site.
After that problem started, when i try to ping site it shows ip of the site (new ip), but it gives request timed out. Also sometimes it says, 89.149.218.46 : Destination host unreachable.
If i change the ip of the new site to main ip, site loads well but when i change it to new ip it doesn't load plus gives that ping problem
How to add an IP adress to CentOS server?
I can't find 'how to"
How can I add secondary adress using SSH?
What command?
i just got a 2nd server
i had a problem at the beginning that i had to reload
so i think the tech forgot to add my other ips to my network card configs
i remember layeredtech once reloaded my server and the same problem happend so they advised me to add it to a config file in my server
My story starts with my getting burned by fumiNET (the first *grrr*)...
Burstnet reactivates my server (for an additional payment of course). The server seems fine but I thought that I might do better with a BurstNET reseller (better service). So...
I sign up with a reseller, and since I got my new server I've been plagued with email bounces, rejections, etc. Seems that my server (via the reseller) was supplied with a bunch of banned IPs (in other words, crap IPs). (the second *grrrr*)
I've reported to the providers abuse department, but was told that I have to handle this. (third *grrrr* - or is it just continued from the second?)
I've had it. I'm ready to fold up shop. As it is the sites keep me busy - but then...
- I get screwed by fumiNET (losing a big chunk of money)
- the hassle of trying to get my fumiNET server back up (thanks BurstNET)
- transferring to the reseller for better service, and finding out that perhaps BurstNET service was better than the reseller's
I'm open if anyone has suggestions. Some that I've come up with myself...
- finding yet another server provider (recommendations welcome)
- drinking large quantities of Guinness (worth it regardless)
- pulling the plug on the server and getting shared hosting to hold some minimal content
- forgetting the whole damn thing and getting a job as a [pick one]: store clerk, street cleaner, used car salesman
How to view all ip on the server ?
os linux
I want to change whole server IPs. I use cPanel.
I have main IP used for first nameserver and client sites, and second IP used for second name server.
What steps I have to make if I would recive 2 new IPs from my Data Center?
I have DDoS and my DC said that they can only change my IPs to new.
Is there a limit to assigning maximum IPs on a server.
I am not using any contro panel (plesk or cpanel).
I'm upgrading to a new server but when I change IP's on the nameservers I dont want to have data loss due to DNS cache, so I want to forward the old server IP's to the new server IP's, how do I do that?
View 1 Replies View RelatedDue to some of my projects I am looking for a good Dedicated server hosting provider who can offer Muliples IP addressess from different IP Pools.
View 14 Replies View RelatedWe require a server with 10+ IP addresses (Each one with a separate OS and external IP Address, i.e myip.dk)
This is to be used as an added security level for our employees logging into our system from outside the office. Our system monitors the IP Address and we need to restrict access to certain items depending on the IP. We basically would like to set up multiple VPS on one server.
Can you confirm how this would work?I know we can buy a Windows VPS for around £15, but we need multiple of these (10-20)and figure our own server might be the way forward.
how to configure linux so that it allows for two ip addresses on one machine?
I know this is possible because my server administrator setup one of my servers to have two different ip addresses so that I could have a static and dynamic http daemon (two different daemons but listening on different ips).
What do you need to configure?
I've been carrying some weird hours lately, so I'm able to see activity on my sites that I normally don't see.
Certain IPs are trying to diddle their things into my server and need the boot. It's not consistent (ie not happening every 5, 10 mins)... it's periodically throughout the months. I'll see an IP I blocked 2 months ago just randomly show up at 4:30am and try accessing the same files it was probing during it's last visit. Assuming this is just some sort of bot, can I block it permanently?
I know APF has a collection system that purges an IP list to keep it from bloating, and I had PSM do some hardening so I'm not entirely sure about the workings of APF firewall. So far my IP blocks are blank (which is a good sign!), but I'd like to add some nuisances to it, to keep their crap from appearing in my error logs anymore as "Denied by Server Configuration"
My question is: Can I block people at server level permanently? I do not want their IP being taken out with the purge list that comes by every so often.
There are lots of hosts who can give you IPs on different blocks. You should easily be able to find one hosting account that can do this. Of course, you'll need to get a low-end dedicated or colo server to do that, but the IP address thing is no big deal. With the money you would be spending, you're well within the range of a low-end dedicated anyway.
Hi Eric,
I know this thread is old BUT...
This comment interests me a lot, and I hope that somebody can clarify for me that does 50 IPs on one dedicated server require multiple routers (like 2x IPs per router?) to manage all of the IP's communicating with the dedicated server?
Our dedicated server runs our virtual machines for us and the NAT option is terrible...the virtual machines work REALLY well when they use a Bridged connection. The problem is that our virtual machines have to acquire an IP address somehow, and the hosting provider we currently use says they only give one IP address to our server which is fine if the NAT within the software worked really well...is there a webhost that can provide a setup where they have a router hooked to our dedicated server so if we need more local IP's they can be given/assigned by the router. This would then allow us to run our virtual machines much better. Does anybody know of a dedicated server host that will do this?
View 9 Replies View RelatedThe subject pretty much says it all. A simple implementation / reversal is what we are looking for.
View 1 Replies View RelatedI am considering renting a server, but got one question first.
If I sign up for one unmanaged root server with a control panel, from a provider. And just put my website on the server, and let it run there.
Is that a security risk? Is it easy for people to hack into my server, or anything like that?
direct root logon to a server is disabled; using another login, obviously. However, I need to be able to SFTP files from my computer to a directory on the server using said login - yet it does not have correct permissions, evidently, and therefore can't even see the directory I need to be able to SFTP files to.
Tried CHOWNing the directory with that usename, giving it 777 permissions, etc.
I'll try to make this long story short, but this morning I logged into one of my servers and it showed a read-only filesystem, which I thought my server guys could fix easily. So I put in a ticket. 6 hours later, they tell me that they think the OS is corrupted and I need a new install. They give me KVM over IP so I can go in and 'do' things. I tried to log in as root and it wouldn't let me, so they finally booted in single mode and I can get in and such. When I try to su - root, it tells me that user root can't be found. I also tried to ftp into and out of the server with no luck. I really need this box back up. If not, I need to get all the accounts saved off so that I can build a new box. Everything is there, so I don't want to give up yet.
View 10 Replies View RelatedWe are interested to buy different C class IPs so we can host many related sites on the same server. Our hosting provider does not sell different C class IPs. I wanted to know if there is anyway to buy IP addresses from somewhere else, lets say from other hosting companies, or private providers, who would forward the IP to our server. Did you ever hear of such service?
Does any one want to offer us this serivce?
I am setup in a co-location facility. I just recieved my new SonicWall TZ180 which I am trying to setup.
Previously I had my server connected to the internet drop via a static ip address assigned via windows tcp/ip (1.1.1.2), nothing special there. Then I used Plesk and assign domains and ip addresses as normal.
My co-location facility gives me 4 static ip addresses, lets call them:
1.1.1.2
1.1.1.3
1.1.1.4
1.1.1.5
And an ip address called Network Gateway at:
1.1.1.1
And DNS ips at:
2.2.2.2
2.2.2.3
I am trying to figure out how I make this work now with the SonicWall. I am using Plesk, and I have already assigned all DNS settings and name servers to their proper static IP address, such as:
ns.mydomain.com -> 1.1.1.2
ns.myseconddomain.com -> 1.1.1.3
So I cannot use the local ip address (192.168.168.2) assigned to the server box by default by SonicWall using DHCP. I must use the actual static ip addresses assigned to me and already configured in Plesk. I have heard I need to use NAT, and assign the SonicWall the ip address of the network gateway: 1.1.1.1, then add the 4 standard static ip addresses into a pool in the sonic wall.
I am running web hosting server with cPanel, and the Exim settings should be at it's defaults.
When I try to send an email to addresses@sbcglobal.net, I get the following error:
Code:
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:
fasdfasdfa@sbcglobal.net
retry timeout exceeded
------ This is a copy of the message, including all the headers. ------
Return-path: <curt@precision-media.net>
Received: from [71.146.81.209] (helo=CURTPC)
by server.precision-media.net with esmtpa (Exim 4.68)
(envelope-from <curt@precision-media.net>)
id 1IZyCz-0001P8-Ve
for asdfasdfasf@sbcglobal.net; Mon, 24 Sep 2007 17:23:26 -0700
Message-ID: <005001c7ff0a$4b5ab4a0$660aa8c0@CURTPC>
From: "Curt W." <curt@precision-media.net>
To: "asdfasdfas" <fasdfasdf@sbcglobal.net>
Subject: test
Date: Mon, 24 Sep 2007 17:23:25 -0700
Organization: Precision-Media
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_004B_01C7FECF.9D5CF9B0"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3138
X-Antivirus: avast! (VPS 000776-1, 09/24/2007), Outbound message
X-Antivirus-Status: Clean
This is a multi-part message in MIME format.
------=_NextPart_000_004B_01C7FECF.9D5CF9B0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
test
------=_NextPart_000_004B_01C7FECF.9D5CF9B0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.6000.16525" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>test</FONT></DIV></BODY></HTML>
------=_NextPart_000_004B_01C7FECF.9D5CF9B0--
I can receive just fine, I think I was replying to the email, but sending a new email gets the same error. Here are the email headers:
Code:
Return-path: <>
Envelope-to: curt@precision-media.net
Delivery-date: Mon, 24 Sep 2007 17:30:43 -0700
Received: from mailnull by server.precision-media.net with local (Exim 4.68)
id 1IZyK3-0001rA-94
for curt@precision-media.net; Mon, 24 Sep 2007 17:30:43 -0700
X-Failed-Recipients: sasgdafsdfasd@sbcglobal.net
Auto-Submitted: auto-replied
From: Mail Delivery System <Mailer-Daemon@server.precision-media.net>
To: curt@precision-media.net
Subject: Mail delivery failed: returning message to sender
Message-Id: <E1IZyK3-0001rA-94@server.precision-media.net>
Date: Mon, 24 Sep 2007 17:30:43 -0700
X-Antivirus: avast! (VPS 000776-1, 09/24/2007), Inbound message
X-Antivirus-Status: Clean
I am actually very inexpirience in server management. I have a small - I believe - problem. I need to get config file onto my computer from my root server. I can access it through terminal, but it is not very confortable. The config file is on root server.
the file is located at //etc/xxx.conf
Do I need to use web browser to do it? If so how?
Or is there a way that I log to my root server through ssh and transfer onto my computer?
creating a basic redirect. What I need is to redirect the root of my server 173.x.x.x to a file called test.php in the root of my folder.example: when I go to http://173.x.x.x I get redirected to http://173.x.x.x/test.php..
View 3 Replies View Related
