Secure Virtuozzo System
Aug 14, 2008Does someone know a good article for secure a virtuozzo node/host server?
View 0 RepliesDoes someone know a good article for secure a virtuozzo node/host server?
View 0 Replieson making my CentOs VPS system more secure?
View 5 Replies View RelatedI have noticed a weird thing lately with two VPS accounts. Virtuozzo's system usage meter on the Resources page creeps up to 100% over the course of 24 hours or so and stays there, but stays green and I don't get any QoS alerts. The servers both seem to be running fine, and I haven't had any crashes. One VPS is running a few Wordpress blogs.
The other is running some Joomla sites.
Both are running Virtuozzo on CentOS 4.7 i686 with WHM 11.24.2 and cPanel 11.24.4-R32486.
In the past, when the system usage meter in Virtuozzo got anywhere near 100%, it turned yellow or red, I had sites go down, and all kinds of QoS alerts for privmpages were thrown. It turned out back then that I had a bad PHP script eating tons of memory with too many MySQL queries. That doesn't appear to be the case here, since I'm not having any apparent problems with either server. It seems like a "non-problem" but it has me concerned because I'm used to using that system usage meter in Virtuozzo to keep an eye on the health of the VPS..
When I look at memory used in WHM (WHM->Server Status->Server Status) it shows only 31% used, which is what I used to see in Virtuozzo.
When I run free, I get:
root@server [~]# free
total used free shared buffers cached
Mem: 524288 133804 390484 0 0 0
-/+ buffers/cache: 133804 390484
Swap: 0 0 0
When I run Free, I get:
root@server [~]# Free
Memory limit...: 8388604 MB (burstable: 8388604 MB)
Current usage..: 120 MB (0%) (requested: 264 MB)
Free memory....: 8388484 MB (100%)
Initially, I suspected it was another problem with MySQL, and restarting MySQL does drop the system usage meter down to ~31% in Virtuozzo for a while--without changing the actual memory used on the System Processes page--but the memory usage for MySQL with Virtuozzo pegged is only 6.23% in WHM.
Here's the really weird thing: If I look at Virtuozzo->System Processes it shows only 0.4% (I think they mean 40%) of total memory used, half of which is mysqld and the rest is spamd.
With no sign of problems, it looks like Virtuozzo is incorrectly reporting memory usage in the system usage meter, but correctly in the system processes list.
The web host's response was:
We use SLM for managing VPSes. This enforces your per VPS limits and doesn't let your VPS use more then it should be. It sounds like you guys may have some memory hogs in your applications.
Have you guys considered cutting down some of the unneeded plugins and stuff?
That doesn't make any sense to me given the disparity between the memory usage meter and the amount of memory usage reported in System Processes and with free/Free as well as the lack of QoS alerts, but maybe SLM prevents any alerts? I don't want to let a memory hog run free on my system if one exists.
I've written a script to send property data to rightmove.co.uk as part of their new automated data feed. However they require a secure connection to their systems when posting the data. They have provided me with a .pem file which is a security certificate. I need to install this on my plesk server but where to start as most certificates require a private key and the actual certificate. The private key I have been provided is only an 8 charter string, like a password.
View 1 Replies View RelatedI was just curious as to how virtuozzo manages the cpu usage. Do all VPS's just use as much cpu as they can at one time or is there a min and max limit?
View 6 Replies View RelatedI use virtuzoo for virtulization and run vps on them with cpanel installed, what option should I select
Conserve Memory at the expense of using more cpu/diskio. select it? or deselect?
We're currently using virtuozzo and have been but we are thinking of starting a Xen server as our techs have the technical expertise to manage a Xen server. I'm just wondering whether we would be better off with this or not, compared to Virtuozzo.
View 14 Replies View RelatedI've noticed a lot of the recommended VPS' are using Virtuozzo (e.g. KickAssVPS and WiredTree). Can anyone recommend good Windows VPS that utilize other software (ESX, Xen, Hyper-V)?
View 14 Replies View RelatedI installed Apf on Virtuozzo VE, which went well until I enabled it. I could not access Plesk installed on the machine, then I realized it was listening to port 8880 from the Service VE as well as 8443. Enabling 8880 in the common ports solved the problem, but I only want it blocked for everything BUT the Service VE.
I looked in the manual and the section that discusses adding custom rules for aliases only has a header and does not have any description.
Anyone know how to block port 8880 to the world but allow 8880 to a particular IP?
We are having an issue when trying to cache Fedora Core 10.
Code:
vzpkg create cache fedora-core-10-x86_64
Creation OS template cache for fedora-core-10-x86_64 template
Error: Python directory not found in /vz/pkgenv/rpm46x64
Error: Can't find environment directory /vz/pkgenv/rpm46x64: No such file or directory
The only recent changes that have been made is the Hostname. Before making this change, I was caching OS templates like it was christmas.
Is it okay to use the Virtuozzo firewall instead of CSF and or APF?
View 5 Replies View RelatedWhich one do you prefer more and why?
Virtuozzo is very expensive while OpenVZ is free and it is somehow another Virtuozzo, but made simpler?
How can I tell which version of virtuozzo my host is running?
I have the VZPP, is there any way to check?
Has anyone migrated a windows vps from Virtuozzo to Xen before? How?
View 5 Replies View RelatedCan someone point me to the a good thread where these two options are compared? Or can we start on here?
I am thinking about it from a VPS host perspective.
I'm looking for a Windows host using anything but Virtuozzo. Any recommendations?
View 6 Replies View RelatedI've read that Virtuozzo 4.0 supported ipv6. I'm having problems finding anything to help setup the node for ipv6. I can't anything on the web except for some people talking about how to disable ipv6. So I was just wondering if anyone else has seen anything.
Edit: I don't think I posted in the correct section. Opps. Could a moderator move this to the right section?
I have an main server which has ssh configured that it connects to main vz server without password.
How to connect to all vz servers and lets say do command cat /etc/resolv.conf and send result to my email address?
I believe it should be something like this:
ssh server1;vzlist ..;vzenter 1$,2$;cat /etc/resolv.conf | mail bla@blah.com....;ssh server2;vzlist ..;vzeneter... and so on so forth.
I am trying many softwares for Windows Virtualization at the moment just for curious After using VMWare for 2-3 weeks I decided to try winVZ too.
But SwSoft Virtuozzo gives me this error on w2k3 Ent. 64Bit. What to do?
ERROR: {VZSRV} Virtuozzo API function call 'VZVolumeMount' failed openssh.efd
ERROR: {VZSRVAPI} Cannot install template openssh
Template(s) openssh,msde is(are) not installed.
Virtuozzo Prices?
Hello, I'm interested in Virtuozzo VPS containers, but I can't find the price of the software at Parallels site! Can anyone tell me whats the price?
I got a Virtuozzo VPS couple a days ago and I am having some problems with it. I can't get a hold of the host because he/she is "migrating" company website at the moment.
VPS OS - Ubuntu 8.04 32-bit
(Initially was 64-bit but I can't even get SSH to work. The host reloaded with 32-bit.)
Initially I was getting some permission problem on /dev/null for regular users. I fixed that with following and stick it in /etc/rc.local
chmod go+rw /dev/null
Now I can't get screen to work. It said something about "No More PTYs.".
$ ls -l /dev/tty*
crw-rw-rw- 1 root tty 5, 0 2009-04-14 14:55 /dev/tty
crw-rw-rw- 1 root tty 4, 0 2009-04-14 14:55 /dev/tty0
crw-rw-rw- 1 root tty 4, 1 2009-04-14 14:55 /dev/tty1
crw-rw-rw- 1 root tty 4, 2 2009-04-14 14:55 /dev/tty2
crw-rw-rw- 1 root tty 4, 3 2009-04-14 14:55 /dev/tty3
crw-rw-rw- 1 root tty 4, 4 2009-04-14 14:55 /dev/tty4
crw-rw-rw- 1 root tty 4, 5 2009-04-14 14:55 /dev/tty5
crw-rw-rw- 1 root tty 4, 6 2009-04-14 14:55 /dev/tty6
crw-rw-rw- 1 root tty 4, 7 2009-04-14 14:55 /dev/tty7
crw-rw-rw- 1 root tty 4, 8 2009-04-14 14:55 /dev/tty8
crw-rw-rw- 1 root tty 4, 9 2009-04-14 14:55 /dev/tty9
(I have "chmod go+rw /dev/tty*" in /etc/rc.local too.)
What can I do or what can I have the host do? I rely heavily on screen for all admin works and I need it to be working. Thanks for your thoughts!
Has the VZ bug where "doing a Windows Update on a node applies it to the whole server and then reboots the node" been fixed yet. We offer Linux VPS using VZ and was going to use it for Windows too but when I heard that I put the plan on hold.
View 1 Replies View Relatedwhich one would you recommend?
because Virtuozzo is charged, i think it may more easy to manage for admin and user,
xen has it's own feature than Virtuozzo,but i feel hypervm is not very friendly to use ( my personal feeling)
We have a client on a VPS (Virtuozzo) that is failing PCI Compliance through McAfee as the port for the "power panel" in Viruozzo uses week SSL encryption.
Since we can't block the port (as users need to be able to access it) does anyone know how we can possibly upgrade that or change things so that it will pass compliance?
All other ports on the server are fine, but the port 4643 keeps failing under the ScanAlert scans:
Low Strength Ciphers (< 56-bit key)
SSLv2
EXP-RC2-CBC-MD5 Kx=RSA(512) Au=RSA Enc=RC2(40) Mac=MD5 export
EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
SSLv3
EXP-EDH-RSA-DES-CBC-SHA Kx=DH(512) Au=RSA Enc=DES(40) Mac=SHA1 export
EXP-DES-CBC-SHA Kx=RSA(512) Au=RSA Enc=DES(40) Mac=SHA1 export
EXP-RC2-CBC-MD5 Kx=RSA(512) Au=RSA Enc=RC2(40) Mac=MD5 export
EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
TLSv1
EXP-EDH-RSA-DES-CBC-SHA Kx=DH(512) Au=RSA Enc=DES(40) Mac=SHA1 export
EXP-DES-CBC-SHA Kx=RSA(512) Au=RSA Enc=DES(40) Mac=SHA1 export
EXP-RC2-CBC-MD5 Kx=RSA(512) Au=RSA Enc=RC2(40) Mac=MD5 export
EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
Medium Strength Ciphers (>= 56-bit and < 112-bit key)
SSLv2
DES-CBC-MD5 Kx=RSA Au=RSA Enc=DES(56) Mac=MD5
RC4-64-MD5 Kx=RSA Au=RSA Enc=RC4(64) Mac=MD5
SSLv3
EDH-RSA-DES-CBC-SHA Kx=DH Au=RSA Enc=DES(56) Mac=SHA1
DES-CBC-SHA Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1
TLSv1
EDH-RSA-DES-CBC-SHA Kx=DH Au=RSA Enc=DES(56) Mac=SHA1
DES-CBC-SHA Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1
Anyone have any suggestions on how we can resolve this issue for the client?
Does anyone know the basic information for the Virtuozzo API? We are working with Matt from WHMCS to create a custom module for Virtuozzo to auto provision VPS's however the API docs we submitted were not sufficient as there were no clear "functions".
View 3 Replies View RelatedI would like to know which clients would prefer Virtuozzo over HyperVM. Lets say there is a company offering Virtuozzo on there servers. However, there is another company offering HyperVM for a cheaper price. Neither companies are overselling. Would you be willing to pay the extra money for Virtuozzo? Or would you be happy with OpenVZ and HyperVM.
View 13 Replies View RelatedDoes any dedicated server provider give a Virtuozzo license with unlimited VEs? I've noticed that most of them give 3, 10, or max. 100. Do you have any idea why wouldn't they give a license for unlimited VEs and why are they restricting the number of VEs that we can create on a server since, as far as I've understood, Viruozzo provides license considering the CPU no.s, but not the number of VEs.
View 5 Replies View RelatedI would like to know which one is better for running java application in term of performance or stability.
16Gb RAM server
15 clients on Virtuozzo or Xen.
1Gb RAM each client.