If APF is running, but iptables is not. Will it then even work if it's not in monolythic kernel?
When i check the iptables status, i see: # service iptables status
Firewall is stopped.
Someone is assisting me with security installs on my server, and he told me it's is normal? I thought APF is an iptables based script, so iptables must be enabled?
Does the iptables service need to be running in order for APF to function? If so, can APF act like it is running, when the iptables service is not running, thus giving you a false sense of security?
View 14 Replies View RelatedI'm in the process of installing PPA on infrastructure running Parallels Cloud Server. Each container has 2 interfaces, one public facing and a private interface for inter-server communication.
No problems installing PPA 11.5 (specifying IP's on commandline) or adding service nodes however, the firewall rules the documentation speaks of are nowhere to be seen? i.e.:
Important: After the installation, PPA creates the special firewall chain PPA-SN-Rules-INPUT used for communication with service nodes. Do not change it, otherwise, you will not be able to add service nodes to PPA.Click to expand...
Has this been dropped from PPA 11.5 ? (I recall seeing the firewall settings in 11.1) There is also no sign of the ppa.firewall tool that is also mentioned.
The only rule I see inserted is for Postgres on the management node, and 2 for pleskd on all of the nodes (open to world!).
I execute the following commands, in the following order:
iptables --flush
iptables --zero
iptables -A INPUT -s 218.65.12.161 -j DROP
will that last command successfully ban that IP until reboot?
If not, what needs to be done? I can't access my site if I don't flush + zero iptables first but I need to be able to ban with iptables.
I went with the cheapest VPS, no control panel and installed webmin myself (done - saves a quid a month )
I have now setup the virtual domains for multiple domain hosting, to find whilst migrating a website that the current install of php (5.12ish) has --without-mysql
so i got the php install files, went to run ./config to find i'm missing required files
(configure: error: Could not find pcre.h in /usr)
which in turn required more files
the resolution rpms are out of the question too many, I need YUM
yet...
bash: yum: command not found
strange as centos comes with yum i thaught
support is busy, thaught i'd try here
-------------------------------------------------
Me:
Web Designer
Only linux experience prior is Yellow Dog Linux
No prior experience in VPS
VPS:
centos 5
minimum spec
now with webmin
Last night MySQL Crashed, and when the guy that I share the server with found out, he simply restarted the server (because he doesnt know any better). I went to check my email this morning and it wasnt connecting, I assumed the pop3 server or exim was in need of a restart, but when I went to restart pop3, this came up:
Attempting to restart cppop
Waiting for cppop to restart.... . . . . . . . . . . finished.
cppop status
couriertcpd is disabled
Service: [cppop] has been disabled by the sys admin
So, I re-enabled cppop (can't imagine why it would have disabled itself) and still nothing, I looked up couriertcpd to re-enable as well, but found nothing about enabling/disabling it on google.
My vps managed service has disabled this functions in php.ini :
Code:
exec, shell_exec, system, passthru,popen, virtual, show_source, pclose
I asked them why these disabled and the answer was "because of security reasons" .
So for example a Joomla installation with working RSS needs some of these functions and when I install vary php programs I face some strnge problems that I think it may be from these disabilities .
So my question is could these functions usually be disabled ? and may I delete them from disable_functions of php.ini
I am hosted at EuroVPS from my reseller. I have noticed that my disk space has high usage 150MB whereas real usage should be around 30MB. Then I tried report service which stated disk usage is 30MB and Log report is 120MB. I said no problem let delete those Log files where I bumped to a problem, Log rotation is disabled and there is no X (delete button). In few years I could reach to maximum disk usage and disabilty to upload files and etc..
What to do now? I don't have password for support at EuroVPS since I am not reseller and my reseller isn't replying).
Recently your account was utilizing excessive resources and putting load on server, making it unstable. Details are as follows:
A detail of the problem is shown below as:
CPU: 4.34 %
Memory: 0.97 %
Mysql: 4.1 %
My account information:
Disk Space Usage 2642.17 Megabytes
MySQL Disk Space 27.80 Megabytes
Bandwidth (this month) 13591.15 Megabytes
After Lunarpages disabled my index.php file to shut down my site, I transferred my download files to an Online Hard Disk -- Skydrive. With only dozens of IPs per day, the CPU usage will not be excessive.
I don't know if this can solve the problem and let them open my site again. Now with almost two days passed, and still no reply, I get worried.
My happiness with Innohosting (as a reseller) has come to a screeching halt when I found they've disabled exec(). This has sunk my plans to use Typo3 and Gallery for a website I'm creating for a client as they use Imagemagick through exec(). Rather than reconfigure them to use gdlib (possible?) instead, I'm inclined to look for a host that allows exec().
I've asked Innohosting about applying the PHP exec_dir patch found here:[url]
And discussed here:[url]
I'm waiting for them to get back to me. I hope it's a solution as Innohosting seem great otherwise.
Failing all else, how many hosts have PHP exec() disabled? Is this common?
I hosted three domains in dreamhost for at least two years. Several days ago, some guy (registered in one of my websites) complained to dreamhost that I was sending a spam email to him and then Dreamhost disabled my account. I don't even have access to my data now.
The email I sent to that guy was just a regular newsletter of my website. The dreamhost staff Karl said that I should provide proof that users of my website should have confirmation on their registration and I should record their registration IP as well as registration date. Well, my website indeed was designed with such feature. After registration, users will receive a confirmation email on their registration. They should click on a link in the email to activate their account. And we designed the database so that the registration IP and date will be recorded.
However, the dreamhost staff said that not all the fields of IP&date are filled with data, some are blank. Then it must be the problem of our PHP script, not our original purpose, because we designed the database for that.
Now dreamhost disabled my account forever. No response for my emails with questions. No backup for my data that I worked for everyday. I just can't ever believe such a famous hosting provider would act like this. I don't even have a chance to have my data back. I don't even have a chance to correct my PHP script so that the problem will not occur any more.
i have share account ssh my friends, but my friend had been disable ftp by firewall. how to reopen sevices ftp and remove rules disable ftp.
View 5 Replies View RelatedI'm running into a strange problem. I've copied this code from rentyourdot.com and it uses curl and also file_get contents. I keep seeing this:
Warning: include() [function.include]: URL file-access is disabled in the server configuration in
Now i have access to change anything on the server, and both these are set to on in phpinfo.
allow_url_fopen = On
allow_url_include = On
I also have another script that uses file_get_contents to get a remote url and its working fine. Any clue why its even coming up with that error?
im able to login to root via SU perfectly
One problem: All my old files and folders are owned by ROOT so that means my SU account named XXX cant edit/add/delete anything from my SFTP because of folder/file permission.
Is there anyway my SUDO(wheel) account can still edit these files own by ROOT?
i have disbaled many functions in php.ini settings ! for security!
but i need to use some of the functions for my billing System!
how can i enable all the functions just for an account? or a directory!
is it possible to set the disabled functions list for PHP in apache's HTTPD.conf per virtual host? i want a bunch of functions disabled for everyone except the default host (me).
I tried the php_admin_value way and when i look at phpinfo() it shows that the master is disabled and the local is not disabled (exactly what i want) but they arnt actually enabled for me
I have problem with one of our clients, they have disabled network card and of course lost access to windows server. After reboot it looks that it doesn;t auto-start net.
Server is at ovh and there is problem with theirs support (they don;t support windows - or maybe they don;t know how to click on network card at enable).
We have started kvm but it is activated in some virtual network and in network connections is only some "local connection 2" with local address 10.x.x.x
How we can remotly enable/restore network after normal system start ?
Is there any command that we can add to autostart that can enable network, or maybe there is some another way to fix this (change some registry key that network will be activate after restart or sth).
We are having an issue with websites randomly getting disabled within our PPA system. There doesn't seem to be any reason why they are getting disabled. Our PPA is not tied to a billing system that would make them shut off. Turning them back on works fine but it shouldn't be just shutting them off.
View 2 Replies View Relatedserver outside of US has this ping bellow
Is this OK? or painful for users to reach it?[url]
Currently I have a server that has direct root SSH access disabled (have to login as regular user then su to root), but I am currently working on setting up authentication via SSH keys, but I can't seem to get it working with direct root SSH access disabled? Is this normal, and if so is there anyway to work around it?
Basically I'd like to be able to authenticate both ways; both with SSH keys or by logging in as a regular user and su to root.
I installed status2k on my server and i am encountering this error.
Quote:
Warning: shell_exec() has been disabled for security reasons in /home/oxyhosts/public_html/status/includes/functions.php on line 455
You can take a look at the errors on http://tinyurl.com/264tot
I even tried disabling shell_exec and exec from php.ini but that too didnt resolve the issue.
Is there a way i can get this thing to run without / with enabling shell_exec?
We have migrated from an old Expand/Plesk with SmarterMail setup to PPA with SmarterMail. One issue we've noticed is that with Expand, if we disabled the mail on a domain, in SmarterMail it would rename the domain with a .disabled on the end which prevented issues from other users trying to send to that domain on the same SmarterMail server. In PPA when disabling a domain, it disables the mail on SmarterMail but does not rename the domain.
To try illustrate the issue:
If say outsidemail.com is in PPA for hosting but has email elsewhere and mail is disabled for them in PPA, because it does not rename the domain to outsidemail.com.disabled, anyone on outsidemail.com cannot send to anyone on that SmarterMail server as it wants them to authenticate. Also if someone else on that SmarterMail server tries to send to outsidemail.com it will try and send locally.
There is a work around for the second problem by going into the the outsidemail.com domain on the SmarterMail service and setting it to use MX instead of local, but this still does not allow them to send to anyone else on that server.
We can go in and manually rename the domains in SmarterMail but this is difficult to do for everyone not using the SmarterMail. Is there a way to have PPA rename the domain in SmarterMail like the old Expand/Plesk environment did?
If you would disable a subscription and reloaded that domain name. You would be redirected to a default subscription. How can i change this default landing page?
View 2 Replies View RelatedWhen i try to go to horde after my upgrade from plesk 11.5.30 to plesk 12.0.18, my horde is loading as minimal cause this:
JavaScript is either disabled or not available on your browser. You are restricted to the minimal view.
But my javascript is enabled for this site.
The problem appeared from register globals, in the shop oscommerce after the actualization PHP to the version 4.4.5 information appears me: FATAL ERROR: register_globals is disabled in php.ini, please enable it! and if I add: php_flag register_globals On to the file .htaccess this: one can not display page.
View 1 Replies View Related
