I'm very frustated 'cause i found a "****.txt" into my root directoriy of my server with a lot of usernames and passwords (24Mb)
Example:
<<removed, as they might be active accounts>>
I just put here the first lines but I have yahoo, hotmail, facebook passwords etc ...
I started a friendship network few months ago and now have 8 million people.
Now I send a weekly newsletter and periodic updates to all and my weekly newsletter reaches the last person after a month. The fastes server I have is a quad core and it sends 300,000 in a day.
It takes 15 days for my three servers to send mails to all. And another 5 to 6 days to clear the queue of bounces and all the mess you know. So I am in real trouble. Most memebrs of the network are form India, Indonesia etc so don't make enuf to buy several hgh end servers.
Is there a solution to send them all in a few hours? I would really love that! Also if you can suggest a better software to handle bounces and reporting, I am using OEM Pro which is full of bugs (I think).
I have setup a test server at home, Datacenter edition 2008.
Now, is there a way to allow only a certain username and password combination to access an FTP session/site?
to change all passwords for user account on cpanel server. Is it possible to do it automatically by using some cpanel script? Also I need this information stored in one file in order to know new passwords.
View 4 Replies View Relatedis the best way to handle a 7 Million to 200 Million visitors a day.Knowing that those will be the unique ones only.
View 24 Replies View Relatedto send 3.6 million emails over a week period of time. it is for a client that wants to send an email about their new account policies. these users are clients from different domains. how can this be done.
They have an exchange server onsite. should they use that server or do you recommend going through a service? if so whom do you recommend that is good?
Do you recommend going with a dedciated server for email? what server specs?
the email will not have an attachment just a few lines and a link to their own site.
with whatever solution you recommend? please give me price ranges?
Dell and such enterprise companies send emails all the time with that many emails and more to external clients... how do they do it.
I just do not want to get black listed and want to make sure all or most of they clients get it.
If I used the PHP mediawiki script and I had10,000 wiki articles, and 2 million users were browsing my site which is hosted on two Dedicated servers that are P4 Quad Core 2.6GHZ 4GB RAM 100Mbit dedicated port with a load balancer, would my servers handle this amount of simultaneous users and how fast would each wiki article take to load when all these 2million users are online if each article was 300KB?
And what is the maximum number of users online at the same do you think these 2 servers could handle?
Which shared host you have come across, can handle 1 Million page views per month?
Assuming -
Impression happens across the clock in same pattern.
Maximum pages (60%) are static html, rest php+mysql+drupal
All pageviews consume max of 20 GB
Cost under $20/month
Close to 100% uptime (As we all know 100% is not possible)
I know these name only (not sure they agree all above mentioned conditions or not) -
medialayer
steadfast
unitedhosting
pair - I read some -ve reviews for pair, that they suspend the account without notice
way to set up a user in passwd/shaddow to use no passwords. Not looking for keypair authentication or any authentication. just the abulity to run ssh <host> and I'm in.
Why - you might ask would I want something with no security? Because the shell that they are going to run is going to lock their IP out. This is a trap for SSH hackers allowing them to log in with any password/no password and immediately drop into something that runs iptables to kill their IP instantly. So I'll create a number of dummy accounts with names hackers try and it's a trap.
I'm planning on buying my first domain in order to host various sites of mine in one place. I like the idea of subdomains to separate them, but I was wondering... Is it possible to access different subdomains using different passwords? I'm planning to let a friend of mine use a subdomain to host a site of hers that's related to mine, and I'd like it if she had the security of a different password. I just want to know if I can even do this, and if so, what hosts offer this option?
View 9 Replies View Relatedfor a one-time password system to help us secure some systems... we've looked at RSA SecurID but the software licenses are way too expensive.
Is there any reasonably priced one-time password system that we can use to secure SSH and access to internal systems? We'd like something with a keychain device that will generate the password.
I have about 7 hosting accounts, am a member of over 60 forums and have many other services that require passwords. Generally, I use the same or similar password. However, recently I have been getting more and more hacking of my sites going on and I worry if it is due to my password "system" (or lack of).
How do you go about creating your passwords, and remembering them?
This is probably a long shot, but is there a workaround way to be able to edit passwords for addon domains in cPanel 11? Apparently you can only manage redirection or remove: ...
View 1 Replies View RelatedToday we received an email saying that the admin password for the server had been changed by them and that we should log in and change the password again ourselves.
49pence have provided no explanation as to why the password was changed and despite multiple requests have refused to give any kind of explanation. I've also asked to speak to a manager and this request was denied (well, more ignored and I was given the same line that they cannot disclose why they changed a customers' password).
And now after creating a Joomla! site for a school that will be moving to my server from a local small isp that doesn't have a control panel (just a screen to allow users to set-up their email name and pwd) I'm stuck with trying to figure out how to set up their email accounts with their current password.
There are about 40 accounts that I can add manually, but when I change the nameservers, these teachers and staff are going to be at a loss as what to do; like I am at the moment.
From time to time all the POP3 user mailboxes get their password reset and users can't access their mail. I have to go in and manually reset each users password.
Why is this happening and how can I stop it?
I got up today, went to check my emails and received invalid passwords on all my email accounts. I then went to check in the CPanels and get the same error when I try to login.
Then I try the root and same thing!
BUT all my linked FTP accounts work and the sites are online and working. One is giving a 500 error (cgi program) but besides that, they are all online w/ no changes.
My "host want to do a OS reinstall and let me try and restore my sites from a slave drive. I think thats stupid and shouldnt be needed.
They also automatically say I was hacked...Sure a hacker changed all the cpanel and email passwords but worked it so the linked FTP accounts would work and didnt take any sites offline.
I'm getting a big problem on my server.
From 1 week until now I got 4 spam attacks. The attacker is the same, because the emails sent are iqual.
The technique is also the same, they use an email account (compromissed password) and send emails through smtp server.
When I detect the attack, i do:
1. identify the compromised account
2. Change password from the compromised account
3. Stop qmail
4. Clear queue with qmail-remove
5. Start qmail
The problem is that they already used 4 diferent domains since the first attack. So, here is my problem, how do they discover the passwords?! How can I solve this problem? I have hundreds of emails accounts and can't change it all.
CentOS release 5.10 (Final)
Plesk 11.0.9
Why can i login with two different passwords for the user admin in plesk control panel?
View 1 Replies View RelatedCame across an answer within google, but wanted to make sure I have an updated tutorial to prevent crashing the mysql and or server as others did.
How can we reset all customer account passwords at once, whether it be a preset one and or random?
I am having a Plesk server and when I scanned it with tools like OpenVas, It detected the following vulnerabilities with CVE acronym. As the corresponding ports and services are being controlled by Plesk, I require to patch it.URL....As you can see this vulnerability has been hit on port 106. I checked the Plesk server and found the port 106 being used by service "poppassd". This was nothing I installed and came along with the Plesk installation. Hence just wanted to make sure whether it has a patch from Parallels. As per my investigation this service is used for changing mailbox passwords and I am currently using Roundcube client. How to patch this vulnerability.
As per the solution in pic, the vulnerability "SMTP antivirus scanner DoS" can be resolved by upgrading or installing anti virus for Plesk mail server. I am ready to buy Dr.Web or Kaspersky from Parallels. But wanted to make sure whether any of the above antivirus can resolve the vulnerability.
cat /usr/local/psa/version
11.0.9 CentOS 6 110120608.16
I moved from a host to another and wanted to restore/use the email adresses that are already saved on my old host account.
I did a full backup by using Cpanel's wizard and saved it on my computer. Extracted everything and then by using FTP I have put all the files on my new server which is using Cpanel as well.
Although all email adresses are now visible in my Cpanel the old passwords will not work anymore......
We use our own backoffice for remote logins. Passwords for panel login are encrypted. Is it possible to remove the option for customers to change their password for panel login so they will stay in sync with our own backoffice?
If it's not possible, is there a way to decrypt the panel login passwords, like there is for the admin-password (/usr/local/psa/bin/admin --show-password)?
I need to be able to access email passwords in plain text (not encrypted). I'm running with updates so as to not force encryption, which I'm told is a one-way deal. I'm going to have to go to new hardware soon, as I'm finding the hardware starting to fail.
I understand the "mail_auth_view" utility shows the passwords, and was wondering if it will decrypt them for you?
If not, how can I keep the behavior of non-encrypted email passwords so that the customer administrators still have access to them for their users? I know a new install forces encryption, which is why I can't do that. How can I preserve the non-encrypted passwords and move to new hardware? This seems to be a deal breaker for my customers.
I've got a VPS which is serving as the main server for a number of sites. Web Server, SSH Server, and Mail Server.
What I've got running:
Apache2, PHP5, MySQL5, Dovecot, Postfix
One of the sites is a growing forum with a MASSIVE photo album. This is the site where I notice the most slowness.
Changing the server software is not an option - Only optimization.
Quote:
Originally Posted by httpd.conf
ServerTokens OS
ServerRoot "/etc/httpd"
PidFile run/httpd.pid
Timeout 300
KeepAlive Off
MaxKeepAliveRequests 100
KeepAliveTimeout 5
<IfModule prefork.c>
StartServers 8
MinSpareServers 8
MaxSpareServers 13
ServerLimit 256
MaxClients 256
MaxRequestsPerChild 50
</IfModule>
<IfModule worker.c>
StartServers 2
MaxClients 150
MinSpareThreads 25
MaxSpareThreads 75
ThreadsPerChild 25
MaxRequestsPerChild 0
</IfModule>
Listen 80
LoadModule auth_basic_module modules/mod_auth_basic.so
LoadModule auth_digest_module modules/mod_auth_digest.so
LoadModule authn_file_module modules/mod_authn_file.so
LoadModule authn_alias_module modules/mod_authn_alias.so
LoadModule authn_anon_module modules/mod_authn_anon.so
LoadModule authn_dbm_module modules/mod_authn_dbm.so
LoadModule authn_default_module modules/mod_authn_default.so
LoadModule authz_host_module modules/mod_authz_host.so
LoadModule authz_user_module modules/mod_authz_user.so
LoadModule authz_owner_module modules/mod_authz_owner.so
LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
LoadModule authz_dbm_module modules/mod_authz_dbm.so
LoadModule authz_default_module modules/mod_authz_default.so
LoadModule ldap_module modules/mod_ldap.so
LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
LoadModule include_module modules/mod_include.so
LoadModule log_config_module modules/mod_log_config.so
LoadModule logio_module modules/mod_logio.so
LoadModule env_module modules/mod_env.so
LoadModule ext_filter_module modules/mod_ext_filter.so
LoadModule mime_magic_module modules/mod_mime_magic.so
LoadModule expires_module modules/mod_expires.so
LoadModule deflate_module modules/mod_deflate.so
LoadModule headers_module modules/mod_headers.so
LoadModule usertrack_module modules/mod_usertrack.so
LoadModule setenvif_module modules/mod_setenvif.so
LoadModule mime_module modules/mod_mime.so
LoadModule dav_module modules/mod_dav.so
LoadModule status_module modules/mod_status.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule info_module modules/mod_info.so
LoadModule dav_fs_module modules/mod_dav_fs.so
LoadModule vhost_alias_module modules/mod_vhost_alias.so
LoadModule negotiation_module modules/mod_negotiation.so
LoadModule dir_module modules/mod_dir.so
LoadModule actions_module modules/mod_actions.so
LoadModule speling_module modules/mod_speling.so
LoadModule userdir_module modules/mod_userdir.so
LoadModule alias_module modules/mod_alias.so
LoadModule rewrite_module modules/mod_rewrite.so
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule proxy_connect_module modules/mod_proxy_connect.so
LoadModule cache_module modules/mod_cache.so
LoadModule suexec_module modules/mod_suexec.so
LoadModule disk_cache_module modules/mod_disk_cache.so
LoadModule file_cache_module modules/mod_file_cache.so
LoadModule mem_cache_module modules/mod_mem_cache.so
LoadModule cgi_module modules/mod_cgi.so
Include conf.d/*.conf
User apache
Group apache
Quote:
Originally Posted by my.cnf
[mysqld]
datadir=/var/lib/mysql
socket=/var/lib/mysql/mysql.sock
# Default to using old password format for compatibility with mysql 3.x
# clients (those using the mysqlclient10 compatibility package).
old_passwords=1
[mysql.server]
user=mysql
basedir=/var/lib
[mysqld_safe]
log-error=/var/log/mysqld.log
pid-file=/var/run/mysqld/mysqld.pid
I looked a lot - can not find solution ....
I want to transfer a file from [url]to [url]or [url]Without it will pass my localcomputer (slow upload)
It can be also a script i will install like this one - this is only for images
[url](remote)