I trying to create authentication Key in SSH with plesk 11.5.30 CentOS Linux box...I followed the following KB article to create authentication key. URL...The authentication key not working.
View 3 Replies
Lately I've been spending a lot of time grok'ing the Postfix logfile (i.e., /usr/local/psa/var/log/maillog) and I've been noticing a lot of authentication failures (and even one successful break-in).
Most entries are just a simple pair of log entries that includes the source IP address and then the details of the mailbox name, like this one:
Code:
Aug 12 08:08:18 www postfix/smtpd[4805]: warning: unknown[162.255.86.250]: SASL LOGIN authentication failed: authentication failure
Aug 12 08:08:20 www plesk_saslauthd[4434]: failed mail authenticatication attempt for user 'media@example.com' (password len=6)
[Code]....
How are these entries generated? i.e., Why mailbox name given right away some times (like the first example) while - other times - the account name isn't displayed for several seconds - almost ninety seconds in the second example?
I am using plesk 11.0.9 and I want disable ssl anonymous authentication. A vulnerability exists in SSL communications when clients are allowed to connect using no authentication algorithm.
How I can disable anonymous authentication
Plesk apache + nginx running
I have a brandnew server with CENTOS 6.5 Final with Plesk 12.
For some reason unknown i'm not able to configure Postfix as smtp server and accept plain text autentication. It only accept TLS autentication both on port 25 or 587. If i install Qmail everything works without any problem.
There my configuration files.
(Main.cf)
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
[Code].....
This error occurred always when I try to send one email using my server and authentication STARTTLS. Here message From mailer daemon:
Signature: Postfix SMTP server: errors from unknown[187.75.4.156]
Message:
Transcript of session follows.
Out: 220 age1.com.br ESMTP Postfix
In: EHLO [192.168.1.101]
Out: 250-age1.com.br
Out: 250-PIPELINING
Out: 250-SIZE 20480000
[Code] ....
For other details, see the local mail logfile
/usr/local/psa/var/log/maillog
Code:
Jul 10 14:15:37 ip-172-31-27-123 postfix/smtpd[26508]: warning: cannot get RSA certificate from file /etc/postfix/postfix_default.pem: disabling TLS support
Jul 10 14:15:37 ip-172-31-27-123 postfix/smtpd[26508]: warning: TLS library problem: 26508:error:02001002:system library:fopen:No such file or directory:bss_file.c:355:fopen('/etc/postfix/postfix_default.pem','r'):
Jul 10 14:15:37 ip-172-31-27-123 postfix/smtpd[26508]: warning: TLS library problem: 26508:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:357:
[Code] .....
I have a VPS with plesk 12 I created an email account with one of my domains and when I try to send emails from this account through webmal of roundcube, I get the following error.: An error has occurred! SMTP Error (250): Authentication failed.
View 6 Replies View RelatedI have a new Plesk 11.0.9. #34 server with Centos 6.3 64bit.
I made a few changes in order to be PCI Compliant.
I created a domain and try to send email with no luck.
----------Maillog------------
Jan 24 16:01:28 server7 pop3d-ssl: Connection, ip=[::ffff:X.X.X.X]
Jan 24 16:01:34 server7 pop3d-ssl: IMAP connect from @ [::ffff:X.X.X.X]ERR: LOGIN FAILED, ip=[::ffff:X.X.X.X]
Jan 24 16:01:34 server7 pop3d-ssl: Unexpected SSL connection shutdown.
Jan 24 16:01:48 server7 pop3d-ssl: Connection, ip=[::ffff:X.X.X.X]
[Code] ....
As you can see from the logs, the pop/imap connection is successful. I login to webmail with the username/password successfully. I can't send from Outlook/thunderbird etc.
Tried to rebuild emails with /usr/local/psa/admin/sbin/mchk --with-spam but no luck.
installed on CentOS 6 and Plesk Version 12.0.18.
I initially had trouble where everytime i tried to load webmail.domain.tld i would have a DNS error, I've resolved this by correcting the DNS settings on my domain and now i can login to the webmail and recieve emails. Now, whether i use Horde or Roundcube i get this authentication error for my SMTP. I'm very new to this stuff and i'm not sure where my log files are or what the issue could be or even how to fix it.
I'm currently experiencing a lot of problems, using Horde. Users are not able to log-in due to this error:
Code:
2014-10-09T10:00:54+02:00 EMERG: HORDE Uncaught exception 'Horde_Exception_PushApp' with message 'User xxx@yyy.tld is not authorized for Horde.' in /usr/share/psa-pear/pear/php/Horde/Registry.php:1555
Stack trace:
#0 /usr/share/psa-pear/pear/php/Horde/Registry.php(1198): Horde_Registry->pushApp('horde', Array)
[Code] .....
I've already tried re-installing Horde, but without success.
There's an article in your KB, but `/var/lib/php/session` does not exist and `/var/lib/php5/sessions` has the required perms.
I've also tried to set session.save_path to `/var/lib/php5/sessions` in `/etc/psa-webmail/horde/horde/php.ini` and after a restart, sessions are written into that directory. But the problem still exists.
Code:
_b|i:1412842564;_r|i:1412864164;horde|a:25:{s:11:"auth/authId";s:13:" xxx@yyy.tld";s:12:"auth/browser";s:110:" Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.101 Safari/537.36";s:16:"auth/credentials";s:4:" imp";s:15:"auth/remoteAddr";s:15:" my.ip.addr.ess";s:11:"auth/userId";s:13:"
[Code] .....
Two days ago we have upgrade a Plesk Panel 11.5 to 12.0.18. It have been working properly until today. Lots of mailboxes doesn't work with the error
Jun 24 13:30:12 hosting2 plesk_saslauthd[19704]: No such user 'mailbox@domain.tld' in mail authorization database
Jun 24 13:30:12 hosting2 plesk_saslauthd[19704]: failed mail authenticatication attempt for user 'mailbox@domain.tld' (password len=10)
The /usr/local/psa/admin/bin/mail_auth_view show only a few mailboxes.
The /usr/local/psa/admin/sbin/mchk --with-spam does´t fix the problem.
If we change the password of one of the crashed mailbox, it works until the /usr/local/psa/admin/sbin/mchk command is executed.
If we try to clear a new mailbox in one of the domains that doesn't work, we adquire the error "mailmng-outgoing failed"...
I installed the Google Authenticator extension, and the inevitable happened: my phone died.So now I am left without access to the Plesk panel.How can I disable the authentication in the SQL database, so I can login again?
View 1 Replies View RelatedIn web application we are facing high vulnerability issue based on the session validation.
We can download the files from the server whenever we are passing the link even without login. The links are directly hit into the server and download the files any type of files extension such as .txt, .xml, .zip and so on.
Need the solution for this issue: How will we resolve the issue using validate the session in apache side?
Scenario as below:
When user manually passing the request if user logged they should access the files
When user manually passing the request if user is not login they shouldn't access the files
Here both the scenarios they can access the files but we want to restrict when the request is coming to apache without login.
EX: [URL] ....
When i tried above link I can able to view the file in browser. Even able to download all different fies extension which are having in the under tomcat webapps dir.
How we can restrict this in apache code or any other files in apache side or is there any way to validate the request is logged one or not?.
After updating from Plesk 10 to Plesk 12 I have lost ssh access for all users (service is not running).
While I select ssh connection I still receive an error:
---------------------------
PuTTY Fatal Error
---------------------------
Server unexpectedly closed network connection
---------------------------
OK
---------------------------Click to expand...
ERROR: Zend_Db_Statement_Exception: SQLSTATE[HY000]:
General error: 126 Incorrect key file for table '/tmp/#sql_50f_0.MYI'; try to repair it (Pdo.php:234)
After upgrading to v12 i have no access to the plesk panel. The message above is shown.
I have some issues access my files through FTP. I created a new FTP user, that match the domain name, so it is easy for me to terminate access if i choose to delete the domain.
I can only access / see files that i uploaded with that specific FTP user. If i install a plugin inside Wordpress, i can not access those files via FTP.
If i login via SSH, with the root user, i can see all files.
I have tried to add the FTP user to the psacln group, but no luck.
I have Plesk 12 on Ubuntu. In an earlier version of Plesk I have some domains and all was fine. Now on a new server I have a problem: I cannot access to the domains via ftp. I have have user and I can connect to the server with a ftp client. But after (successful) login I did not receive any data and can not do anything.
View 3 Replies View RelatedI use Plesk 11.5.30 on my vServer. I created a new domain with a new web user and /bin/bash (chroot) setting. I can't login with a SFTP connection to this domain only normal FTP connection works. With existing users I don't have this problem.
View 1 Replies View Related(Plesk version 11.09)
Trying to restrict access to plesk control panel to one IP address (fake 66.67.68.69).
When I add the network 66.67.68.69/255.255.255.254 I recieve the following notification:
Error: The access restriction policy and the list of networks are currently configured the way you will not be able to log in with administrator's rights from your IP address '66.67.68.69'.
Now I would like this to be the ONLY ip address from wich i can log in.
Using Plesk 12 on a VPS with Ubuntu 12.04 LTS. In the Web Server Settings, if I select "Process PHP by nginx", then the URL "<domain>/plesk-stat/webstat/" is answered by Nginx with "404 Not Found". Having sniffed around, it seems:
/var/www/vhosts/system/VHOST/statistics/webstat is getting statistics gathered.I can't say if they are complete, or even sensible, but things are happening there.The various Alias and other statements required for access to AWStats via Apache are contained in the Apache config file /var/www /vhosts/system/VHOST/conf/last_httpd.conf..But no equivalent statements are generated in /var/www/vhosts/system/VHOST/conf/last_nginx.conf.
In Plesk 11.5 I set log rotation to once a day and to keep 365 files. But I can only find 13 files (only one access_log) in /var/www/vhosts/mydomain/log. But Plesk tells me that 100 GB are used for the logs (the 13 files only have about 3 GB). Where are the files? In previous versions (before 11.5) I always had the files (named .1, .2 etc) in the same log directory.
View 3 Replies View RelatedSince one of my scripts was not working fine I came up with enabling
" Home>Subscriptions>tld>Websites & Domains>Web Hosting Access = > Access to the server over SSH : forbidden to /bin/sh "
Is it safe or not?
I need to access plesk 11.0 over a subdomain at port 80 rather than port 8443 as my office firewall blocks the port 8443.
I tried KB article [URL] .... but its not working.
E.g.: I would like to access plesk panel @ portal.example.com rather than @ example.com/8443or8880
I have ample of spare IPs to use it...
I cannot SSH or login into Plesk Admin panel. Once I tried SSH, it says 'connection refused'. Once I tried login into admin panel, it says 'Error: Access for administrator from address 'xxx.xxx.xxx.xxx' is restricted in accordance with IP Access restriction policy currently applied.
Tried restarting the plesk server too. Nothing seems working.
I have just looked at the plesk panel log - /usr/local/psa/admin/logs/panel.log - and seen an alarming number of attempts to access plesk using the admin user. i.e.
[2015-02-02 14:53:46] ERR [panel] [Action Log] Failed login attempt with login 'admin' from IP 50.62.148.176
I have fail2ban installed and set up for other things...
Plesk: 12.0.18
phpMyAdmin: 4.2.5
When I try to access phpMyAdmin directly from the link: [URL] ....
I get the following error:
Welcome to phpMyAdmin
You probably did not create a configuration file. You might want to use the setup script to create one.
Error
MySQL said: Documentation
Cannot connect: invalid settings.
Retry to connectClick to expand...
I need to disable apache access logs. I commented out the access log path in /etc/httpd/conf/httpd.conf and restarted the server but it's still logging access.
View 3 Replies View RelatedI read in the Plesk 12 release notes that resellers should have access to the new Wordpress toolkit. However, when I login with a reseller account, the Wordpress tool does not show up in the left-hand side menu. What do I need to do to give resellers access?
View 1 Replies View RelatedI am running CentOS 5.5, Plesk 12.
Access_log and error_log are being rotated around 10AM daily for my server.
But for busy days access_log and error_log gets very big to inspect. Is there any way that I can manually reset the logs for the time being but without changing the daily rotation time?
This is our first installation of Plesk Panel.
In our root directory have the Logs folder, but do not know how to find the log file to access the error messages that may be generated one.
My reseller have got one plan, where option "Gestion de l'accès au serveur via SSH" (Manage SSH access to server) is on "Peut autoriser l'accès uniquement à un environnement chrooté" (Can autorize access only in chrooted environment).
This plan contains only one subscription in which I would like to permit users to use sftp. If I go in the subscription, and then I click on "Customize subscription", I can see option "Gestion de l'accès au serveur via SSH" (Manage SSH access to server) is on "Peut autoriser l'accès uniquement à un environnement chrooté" (Can autorize access only in chrooted environment)...
=> So same than in the plan.
After that, when I click on subscription => WebSites and Domain => One domain => FTP Access and I choose a ftp user, I don't have any option to allow ssh access to the user.
I've seen a number of exploit attemps on the default website which I believe has come via direct access via ip address i.e http://xxx.xxx.xxx.xxx.I have tried to block with .htacess but it seems to be being ignore (possibly by parallels or nginx configuration).how I can block access to the default site to all but 127.0.0.1, server external ip and my ip?
View 19 Replies View Related
