Today when I visited my plesk-stat folder, I saw that it is publicly available. Everyone can see the stats.
https://example.com/plesk-stat/
Is not this folder supposed to be protected by password as default?
I have installed an SSL certificate on my website since last saturday the 1st of May, and forced redirection to https URLs via .htaccess.
Since then, I cannot see any statistics in AWStats. All values stops after the implementation of the certificate. How can I continue to have statistics for my secured web site ?
when trying to add several useraccounts to our mail domain using the cli, we have a problem enabling the antivirus. We add user with the following CLI command, the antivirus flag is set. /usr/local/psa/bin/mail --create mail@mail.box -mailbox true -antivirus inout -passwd yourpassword -cp-access true
But when we got to the web interface and select the newly created user, the antivirus is still disabled for him and has to be enabled manually. Is this a known problem? Or is there any other way to automatically enable antivirus than using the "-antivirus" flag? Because we 're talking about more than 100 users it would take a lot of time enabling the AV manually for each of them.We 're running 12.0.18 Update Nr. 29
After upgrading to Plesk 12 the FTP connection has become very slow. Mode Security, Fail2Ban and Plesk Firewall have been enabled, the security is set to force sFTP and maximum security and in /etc/proftpd.d/ a conf file has been added to set the passive ports that have been opened in the Plesk Firewall (60000 to 62000)
Turning off the Mod Security does not solve the slow connection.
What can we do to detect the cause of the problem?
I enabled rkhunter in Plesk 12 to check the system weekly. I get a warning now, which I never got in older versions of Plesk:
The current hash function (/usr/bin/sha1sum) or package manager (DPKG) is incompatible with the hash function (Unset) or package manager (Unset) used to store the values. Debian 7.6 x64
When I turn on nginx for the server I am able to browse non SSL protected sites correctly. I receive a 502 Bad Gateway error on any sites that have an SSL certificate. Is there a fix for this? I have been unable to find one.
I am running Plesk 12 on an Ubuntu server.
I enabled plesk firewall to my ip now I cant seem retrieve directory listing. I've done the same with ssh that works fine.
Response:230 User logged in
Command:OPTS UTF8 ON
Response:200 UTF8 set to on
Status:Connected
Status:Retrieving directory listing...
Command:PWD
Response:257 "/" is the current directory
Command:TYPE I
Response:200 Type set to I
Command:PASV
Response:227 Entering Passive Mode
Command:MLSD
Error:Connection timed out
Error:Failed to retrieve directory listing
I am running Plesk 12 . Centos 6.5
I have Plesk Firewall Installed.
After the Plesk Firewall was enabled the FTP Stopped working in passive Mode.
I searched the net and found the following :
Code:
/etc/sysconfig/iptables-config and change the line with IPTABLES_MODULES to: IPTABLES_MODULES="ip_conntrack_ftp"
It started working.
I changed the default FTP port from proftpd.conf
Code:
port 2392
and /etc/services
Code:
ftp 2392/tcp
ftp 2392/udp fsp fspd
I allowed the new port in Plesk Firewall in Incoming connection and disabled port 21
Now I am not able to connect to the ftp, I get the following error. Have I missed anything ?
Code:
Response:257 "/" is the current directory
Command:TYPE I
Response:200 Type set to I
Command:PASV
Response:227 Entering Passive Mode (85,25,51,34,216,46).
Command:MLSD
Error:Connection timed out
Error:Failed to retrieve directory listing
I know the command in ssh
/usr/local/psa/bin/domain -u domain.com -status enabled
/usr/local/psa/bin/domain -u domain.com -status disabled
but i want to know how can i do to obtain a complete list with all domains on servers wich indicate me which domains are disabled or not ?
to install LightHTTPD but I want to know how can I protect folders like using on apache i can put a .htaccess and it prompts me to enter pass etc...
How do I do that in lightHTTPd?
How do I disallow certian file extensions from public eyes like on my current server I disabled viewing of .datab files and when someone types in the location of mydb.datab they get a forbidden message.
how do i do that in lighthttpd?
For some time now the Autoinstaller fails and the Plesk control panel becomes inoperable until I run the stop and then start command for the plesk control panel. Looking at the error log: autoinstaller3.log I see the following output:
WARNING: Third-party Yum repository 'atomic' is enabled, installation may fail.
Since you use one or more 3rd-party repos (say, atomic), be careful when installing different package versions from different repos as this may lead to installation failures. For example, you may encounter a problem if you first install PHP from a 3rd-party repo and then upgrade it using the Parallels repo. To avoid such situations, install and upgdare packages from the same repo.
Traceback (most recent call last):
File "/usr/local/psa/bin/yum_install", line 194, in <module>
main()
File "/usr/local/psa/bin/yum_install", line 189, in main
[code]....
The Yum utility failed to install the required packages.Attention! Your software might be inoperable.contact product technical support.Click to expand...
How can I restore/update permission for all domains -> only web-stats permission?
P.S. When users rename username for FTP access, web-stat remove old username and don't add new username to nfts permission.
After I've upgraded Plesk 1.0.18 to latest version, I'm unable to set protection on directories. Plesk say it is set, but it is not. I can access protected directory without pop-up of login-details. Old protected directories work, but for new one added not working anymore. I also tried by conventional way adding .htaccess and .htpasswd files to the directory, but it does not apply either.
View 2 Replies View RelatedI have 5 Linux Plesk 12 servers, and I use Spamassassin, usually at a sensitivity of 2 or 3, I also use the following DNS
Blackhole lists: zen. spamhaus. org;b. barracudacentral.org;abuse.rfc-ignorant.org;cbl.abuseat.org;bl.spamcop.net;nomail.rhsbl.sorbs.net
But all of this seems to have minimal effect. I examine spam that comes through which looks very obviously like spam, but Spamassassin gives it a very low score, usually in the negative numbers.
Is SA just not as effective as I thought? Seems like if Gmail, etc can filter spam so effectively, then why can't SA? If there's something I'm not doing right, or what you all do to combat spam with Plesk 12.
I have some error when the new outgoing spam protection (limitation for outgoing mail) is enabled. Mail clients are unable to use SMTP for sending mails. "My mail client says: The message could not be sent. You are not allowed to use sendmail utility."
I don't undestand the blocking behaviour since the checkbox "Allow scripts and users to use Sendmail" is checked and no limit is exeeded.This is the relevant log part of maillog:
Code:
Jul 3 00:44:36 srv01 postfix/smtpd[3326]: C0E5182A20: client=46.128.x.x.dynamic.cablesurf.de[46.128.x.x], sasl_method=CRAM-MD5, sasl_username=info@domain.de
Jul 3 00:44:36 srv01 postfix/cleanup[3331]: C0E5182A20: message-id=<0A380CA8-AAE3-4FA8-BA7A-A3FDF7CD16E2@domain.de>
Jul 3 00:44:37 srv01 /usr/lib/plesk-9.0/psa-pc-remote[3280]: handlers_stderr: DATA REPLY:554:[B]5.7.0 The message could not be sent. You are not allowed to use sendmail utility.[/B] REJECT
Jul 3 00:44:37 srv01 /usr/lib/plesk-9.0/psa-pc-remote[3280]: REJECT during call 'limit-out' handler
Jul 3 00:44:37 srv01 postfix/cleanup[3331]: C0E5182A20: milter-reject: END-OF-MESSAGE from 46.128.213.43.dynamic.cablesurf.de[46.128.x.x]: 5.7.0 The message could not be sent. You are not allowed to use sendmail utility.; from=<info@domain.de> to=<mail@domain2.de> proto=ESMTP helo=<[192.168.1.20]>
Jul 3 00:44:37 srv01 postfix/smtpd[3326]: disconnect from 46.128.x.x.dynamic.cablesurf.de[46.128.x.x]
Moreover I disabled the line "non_smtpd_milters" in postfix main.conf since my server has same issues discribed in the following thread:
Postfix: mails sent through sendmail binary are blocked because of wrong HELO
Is there a command to turn on antivirus for all mailboxes without having to enter each mailbox and update manually. I have over 800 mailboxes which need updating,
View 6 Replies View RelatedI have configured the DNS zones for DNSBL service as follows;
"zen.spamhaus.org;b.barracudacentral.org;bl.spamcop.net"
but I continue to to get spam from ip adressess that are confirmed as blacklisted at the above zones by testing them at [URL] ...
Is there something that I have missed in the config.
When this option is enabled on the Mail Server Settings page, the page loads with the bottom of the page in focus and not the top.
View 1 Replies View RelatedIt is possible to have anti-virus and anti-spam enabled by default when we go to "CREATE E-MAIL ADRESS" -> "SPAM FILTER" / "ANTI-VIRUS" is always disabled.
View 13 Replies View RelatedAre some days that in the root of my server there is a folder without a name. I think it is fail2ban to create this folder? Only I have access to the server.
View 11 Replies View RelatedI am new to plesk. How can I create a user which has only rights to start a scp-connection to one folder.
[URL]
The user should be able to uplad files into this directory. (He shouldn't be able to browse the the tree)
The server authenticates the FTP login, Plesk Panel shows the session, but none of the FTP's display the folder. Whats the command to reset FTP connections.
CentOS 7 + Parallels 12.0.18 I've found articles for older versions or CentOS 6, but those commands no longer work...
So yesterday I tried to follow along with http://www.eth0.us/tmp to secure m /tmp folder. It broke. I have since fixed the issues (chmod 1777 and not 0777) but I still have a second tmp mount point that I can't get rid of.
/dev/tmpMnt on /tmp type ext2 (rw,noexec,nosuid,loop=/dev/loop0)
tmpfs on /dev/shm type tmpfs (rw,noexec,nosuid,nodev)
/tmp on /tmp type none (rw,noexec,nosuid,nodev,bind)
[Code].....
My Plesk Panel 11.0.9 Update #26 is running on a dedicated Debian 6.0.6 server and works all fine, but I'm having some issues with the backups. I'm doing backups using the standard build in GUI backup manager. Everything works fine, even the cron job which copies the backup files every night to a second location. The problem I'm having is, that I can't specify folders to exclude from the backup. The reason why I need this is, that I have a 24TB RAID mounted in the /var/www/vhosts/mydomain.com folder and this will be a problem once the RAID is filling up.
View 10 Replies View RelatedI need to create a SSH account for an subscription. This account is not allowed to access other domains. How do i do that?
I know how to create an SSH account with remote access.
I'm trying to copy a backup from the FTP server to the production server but I don't have enough space in the tmp folder.
There is a way to change where the backups are temporary until the hole backup is on the server? In case the only thing to do is to change where the tmp folder is mounted. This is a production server, I won't like to do it without knowing all the steps.
Here my plesk installation details:
Debian 6.0.9 x64
12.0.18 at #17
the problem is very big since backup procedure not backup all files and folder. I have a lot of Wordpress installations (some of that made with App Installer and others made by hand).
Into all the above installations, files and folder created by Wordpress, like plugin installed or image, uploaded are not backup!
I have seen that all this files come with www-data:www-data user and group but with read permissions for owner, group and others, so i not able to understand why they are not inside my backups. If i change user and group all works fine.
Check your Wordpress backup and verify the presence of plugin and images (miniature of images are still present since they are created with different user and group)...
I'm having a problem when copying folders into another folder using the same name.e.g. there's a folder called css in httpdocs/backup/css and also httpdocs/css. However, I'm trying to restore the backup and actually copy the /css dir from httpdocs/backup to httpdocs. Plesk should overwrite the existing target css dir (and its content/files) in httpdocs/css. However, Plesk creates a new css dir inside httpdocs/css so I have the "original" httpdocs/css dir content intact and also the css dir (from httpdocs/backup/css) copied into httpdocs/css so the full path is httpdocs/css/css
I'm highlighting the httpdocs (not /css dir) in the File manager - Copy Files window. I've tried that on a few installs and experiencing issue on each of them. Please see the attached screenshots.
Step 1. Select (check) the css dir and click copy (or move, result is the same)
Step 2. Mark the httpdocs dir (it doesn't matter if you click the Replace existing files checkbox)
Step 3. Final result, css dir from httpdocs/backup copied into httpdocs/css/
I've compared the dir content several times and definitely the css dir from httpdocs/backup is copied to httpdocs/css so the full path would be: http docs/css/css and the original "old" files from css will remain there.
* Go to "Web Server Settings" add text to "Additional directives for HTTP" and press button "Ok".
* Go to "Document root" folder of your domain and now you have a new folder "/cgi-bin/test" with file "test.cgi":
Code:
#!/usr/bin/perl
print <<HTML;
Content-type: text/html
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
[Code] ....
I have a problem where every folder I ftp onto the server gets given a 700 permission and every file gets a Zero permission. Most of the sites I am adding to this server will be WordPress sites and most of the folders I want to have a permission of 755 and for the files a permission of 644 so my question is how do I change the settings so that any new files ftp'd onto the server get the permission 755 and files get the permission of 644 ?
View 2 Replies View RelatedI would like my Plesk users to each have access to the mail folder for their domain. cPanel appears to do this by default by creating a folder named /home/user/mail which contains a subfolder for each domain name. Plesk, however, places all email folders together in the /var/qmail/mailnames folder. I would like to end up with a structure similar to how cPanel does it, but it looks like there are at least a couple of ways to accomplish that and I'm not sure what would be the most safe, reliable way to do it.
One way I can think to do it would be to override the Plesk dovecot config by adding a new config file to /etc/dovecot/conf.d. I think changing the values for mail_home and mail_location as follows would possibly work.
Old values:
mail_home = /var/qmail/mailnames/%Ld/%Ln
mail_location = maildir:/var/qmail/mailnames/%Ld/%Ln/Maildir​
New values:
mail_home = /var/www/vhosts/%Ld/mail/%Ld/%Ln
mail_location = maildir:/var/www/vhosts/%Ld/mail/%Ld/%LnMaildir​
I see a potential issue with this solution; the %Ld for an add-on domain will probably be the add-on domain, and there will not be a folder within /vhosts/ with that name. Perhaps there is another variable for the primary domain that I could use there.
A second way I can think to do it would be to add a symlink in /var/www/vhosts/domain/ named "mail" that points to the actual mail folder for a domain. Again, issues would probably occur here with add-on domains, and I also can't see a way to automate this. I also predict permissions issues with this solution.
I am using Dovecot if that makes a difference.