Why does the WHM panel send me my private key and passphrase for my SSL certificate to my inbox when I generate a CSR? Um... isn't that a bit insecure?
I purchased a Rapid SSL cert from NameCheap who then needed a Certificate Signature Request(CSR) which is generated from WHM.
After generating the CSR, WHM sent me an email that is literally titled 'SSL RSA PRIVATE KEY for *.<domain_removed>.com'
The email not only contains the ----- RSA PRIVATE KEY----- but also my 'challenge password' .
is this supposed to happen? and why on earth would my private key and passphrase be sent via unencrypted email? The only think I can think of is that the WHM panel feature is being used to generate the CSR and is sending me a self-signed cert private key , which I'm not going to use (i'm only going to use the CSR) Even if thats the case, I think it still shouldn't happen, its too confusing for newbies like me and I could just end up using the same passphrase for my actual certificate.
Here are the steps I followed:
1. purchased a RapidSSL from namecheap
2. Clicked 'Activate' in namecheap's SSL dashboard which then asks me for a CSR.
To get the CSR, per Site5's wiki:
1.logged into WHM
2. clicked 'Generate a SSL Certificate and Signing Request'
3. completed the 'create a new cert' form which among other things, asks me for the 'Email address the cert will be sent to'. For all the fields, see the site5 wiki
4. click Create
I just recently logged into my user email account "the one which was created by the name of the user of the account" and found it had 8000 emails but none are showing up in either horde or squirrelmail. How can i delete all these emails without deleting the other bla@domain.com emails? Is there a way just to clear a specific email account in cpanel or a command line way. I think if i just delete the mail folder it would kill all the emails of that account and I just want to 'reset' that one.
I am currently setting up my server, and are experiencing some problems.
Some of the mails sendt with the php mail() func, ends up in the mail queue in DA, and I get the following error log in DA:
2009-06-04 20:36:02 Received from <> R=1MCHnG-0005uQ-9v U=mail P=local S=1344 T="Mail delivery failed: returning message to sender" 2009-06-04 20:36:02 routing failed for admin@vmnd001.local <admin@munnbind.net> F=<>: Unrouteable address 2009-06-04 20:36:02 routing failed for admin@vmnd001.local <admin@munnbind.net> F=<>: Unrouteable address *** Frozen (delivery error message)
This only happens with some email domains though. If I set the recipient to my yahoo mail, it works as a sharm, but when I set my other email (<<removed>>) as recipient, i get the error log above.
when somebody send email to hisname@hisdomain.com I'm getting that email in my mailbox (administrator email in Plesk settings).There is no CC or BCC in email recipient.I've tried to turn off the auto-reply and I'm not getting any emails.
I need to be able to access email passwords in plain text (not encrypted). I'm running with updates so as to not force encryption, which I'm told is a one-way deal. I'm going to have to go to new hardware soon, as I'm finding the hardware starting to fail.
I understand the "mail_auth_view" utility shows the passwords, and was wondering if it will decrypt them for you?
If not, how can I keep the behavior of non-encrypted email passwords so that the customer administrators still have access to them for their users? I know a new install forces encryption, which is why I can't do that. How can I preserve the non-encrypted passwords and move to new hardware? This seems to be a deal breaker for my customers.
My host gave refuge to a ROKSO spammer and got the C-block listed in SpamHaus and cant get it removed.
So they mapped a new, clean IP to my server and I need to change the IP that my MTA is sending out under. Since I didnt set this up and the guy who did is not avaliable to me ATM, I cant seem to figure this out.
I am currently with the planet and am happy with them, however as part of a new venture I need to gather a list of hosts as well as the planet that will be able to cater to the ventures needs and go to tender with the requirements.
ThePlanet offer something called a virtual rack. This is cheaper than renting a dedicated rack, allows for Gb networking but doesnt not allow for a SAN. Do other providers offer something similar? The cost of putting a machine on the virtual rack is not that much more expensive than just renting the machine. I guess there isn't too much to these set-ups to be fair.
If not, then we are looking for dedicated racks, with the ability to host a SAN at some point, but starting off with say 3 servers (2 web servers, 1 storage server with raid5 6Tb of hdd). These servers will be dealing with network cameras although I don't think that many will be streaming at once but the network capacity does need to be there.
Who's door should I be knocking on to find out some prices?
One final thing, should I bother looking for co-lo providers as well? We are in the Uk but not precious about our host being in the same country at all (it would be nice but uk prices are ££). Really, all we would be able to do with co-lo is buy the hardware outright to save price as we are not interested in looking after the hardware.
I have loads of spam messages being sent from my VPS and I think one (or more) of the legit email accounts are used to send spam (either someone worked out the passwords or users of those accounts have malicious software installed on their machines.
How can I check which email accounts send which emails? Currently nothing is being logged by qmail (/var/log/mail* are empty).
I have the users daemon, freesexd and root in the trusted_users file. I have restarted sendmail (using service sendmail restart). I have the domains: server.freesexdoor.com, freesexdoor.com and mail.freesexdoor.com in the sendmail's local_hosts file.
In Apache 2's httpd.conf, I have this: php_admin_value sendmail_path '/usr/sbin/sendmail -t -i -f freesexd [at} freesexdoor.com'
Yet when I sent an e-mail with php to advertising [at} freesexdoor.com, I got these headers in the e-mail, which don't look good to a spam filter:
Received: from localhost.localdomain (IS-3293 [127.0.0.1]) by localhost.localdomain (8.13.8/8.13.8) with ESMTP id
Received: (from daemon@localhost) by localhost.localdomain (8.13.8/8.13.8/Submit) id
Additionally hotmail rejects my e-mails and it is obvious why. (My OpenSPF record is fine btw and on my former server I was able to send e-mails with it fine.)
Naturally I want something like "freesexdoor.com" to replace "localhost.localdomain" in those header lines. So how can I get this working?
We're looking for a VPS in the UK that comes with cPanel. Ideally we'd want around 100GB storage and 1GB Ram. Budget is around £40. Can anything be bought for that price?
