VePortal Installation

Jul 6, 2009

Anyone successfully install vePortal yet?

View 5 Replies


ADVERTISEMENT

VEPortal WHMCS Module

Sep 23, 2009

Check it out:
[url]

I have nothing to do with it. Just passing it along.

What is veportal?

vePortal is a VPS Commanding total system control Web-Based system that utilizes PHP Hyper-Threading resulting in major acceleration over competing products, As long as your server can meet the recommended system requirements our control panel and your users will never wait for a page to load for longer than the average website.

View 3 Replies View Related

How Can I Install Lxadmin/kloxo In Veportal

Oct 28, 2009

Is there a way to easily install lxadmin/kloxo in veportal?

View 14 Replies View Related

Veportal 2 Major Security Concerns

Oct 16, 2009

I'm starting to test out VPS panels and found vePortal 2. I purchased it and installed it. Now I'm checking some security, as we all know about the terrible result of HyperVM as everyone blindly used it because it was "pretty" but it was not secure.

Some serious concerns I'd like to share with vePortal 2.

1) It makes no backups of any of the files it modifies during install, or so I haven't seen any, like httpd.conf.... more of a pain than anything. There is no way to auto uninstall it either..

2) vePortal gives full root access to the Apache user, letting apache run any root commands!
They add this to your /etc/sudoers
apache ALL=(root) NOPASSWD:ALL

[root@nd11108 myadmin]# su -s /bin/sh apache -c "whoami"
apache
[root@nd11108 myadmin]# su -s /bin/sh apache -c "sudo whoami"
root

This is a root exploit waiting to happen. I asked them about this and got the response.

Quote:

It would be a security breach if a) apache was allowed SSHD Access, or b) the server was running scripts that havn't been marked secure, We have a very comprehensive team of beta testers including one of the largest providers around, They and their staff have not been able to break the security or integrity of the panel as of yet.

All panels in one way or another have root control over the system, for example they wouldnt be able to have a SSH Console without it, as only specified commands would work, we do have a list of the commands required by vePortal if you wish to limit it, but the console and the Shell Commander functions would stop working.

Regards,
Gavin H.
Chief Information Officer

That's funny I have been using the panel a few minutes and already found they've ignored the biggest security hole possible..

3) In 5 minutes I've found multiple XSS vulnerabilities in the admin area... Like search customers, I was able to generate JavaScript alerts in multiple fields....

4) It stores the MySQL root password in clear text in a .php file... yeah that's real secure. Why does it even operate under the MySQL root user, its using a single database....

5) I forgot to add, it doesn't recognize ANY OpenVZ Vps's you've created manually. It has no idea they exist and you cannot view them at all.

I'm sure I could dig deeper into the source code and find more but it's not worth it. Judging by what I found without actually trying to spend time on security I completely removed the product.

The panel does look nice but it sure gets a mark of insecure for me, I would advise others seriously look into the security of this new panel if you're considering using it.

View 14 Replies View Related

Kernel: TCP: Time Wait Bucket Table Overflow With VePortal

Oct 5, 2009

Any one facing any issue when Running CPanel on the VPS.

I always seem to be getting these errors only for Cpanel VPS only.

kernel: TCP: time wait bucket table overflow

kernel: TCP: too many of orphaned sockets (90 in CT****)

Even Cpanel Install by SSH or VePortal gives the same error.

View 12 Replies View Related

PHP 5.2.2 Installation

May 26, 2007

I have just started working through the book Build Your Own Database Driven Website Using PHP & MYSQL, and in the installation section I am required to find a file called php5isapi.dll for the IIS, but I have downloaded the latest version of PHP - PHP 5.2.2 and I cannot find this file...

View 1 Replies View Related

Installation

Dec 26, 2007

I got the following message after creating my test php script. Can someone explain what

I need to change? I am computer literate, but no techie!
<p>This PHP CGI binary was compiled with force-cgi-redirect enabled. This
means that a page will only be served up if the REDIRECT_STATUS CGI variable is
set, e.g. via an Apache Action directive.</p>
<p>For more information as to <i>why</i> this behaviour exists, see the <a href=[url]>manual page for CGI security</a>.</p>
<p>For more information about changing this behaviour or re-enabling this webserver,
consult the installation file that came with this distribution, or visit
<a href="[url]

View 4 Replies View Related

FFMPEG Installation?

Apr 19, 2009

I was wondering if there was anyone out there that could do an ffmpeg, flvtool2, mencoder installation on my CentOS 5.2 VPS for $10. I need it to be able to run phpmotion / youtube clone scripts...

View 8 Replies View Related

EV SSL Certificates Installation

Oct 26, 2009

I purchased an EV SSL Cert, and all is fine. Installed via cPanel, and I get the green address bar in Firefox, but not in IE.

Comodo (the vendor) have an Auto-Enhancer feature which automatically tells IE to give me a green bar. They state in their FAQ the following instructions to install the feature:

Replace the bundle file that is in use for the web site.

Use the 'SSLCertificateChainFile' directive instead of the 'SSLCACertificateFile'/'SSLCACertificatePath' directives.

I have download a .CA-BUNDLE file from them.

Please tell me, now what do I do? I am at a lost at their instuctions, and going by my dealings with them, I think I can get help from you guys more accurately and quickly.

The server runs WHM/cPanel 11 with Apache 2 with mod_ssl. Full root access, but I am a Linux newbie.

View 0 Replies View Related

Icecast Installation

May 26, 2009

anyone has got the steps to install this on centos 5? I have got it for centos 4 but censtos 5 having issues

/usr/lib/gcc/x86_64-redhat-linux/4.1.2/../../../../lib64/libxslt.so: undefined reference to `xmlXPathContextSetCache'

collect2: ld returned 1 exit status
make[3]: *** [icecast] Error 1
make[3]: Leaving directory `/usr/src/redhat/BUILD/icecast-2.3.1/src'
make[2]: *** [all-recursive] Error 1
make[2]: Leaving directory `/usr/src/redhat/BUILD/icecast-2.3.1/src'
make[1]: *** [all-recursive] Error 1
make[1]: Leaving directory `/usr/src/redhat/BUILD/icecast-2.3.1'
make: *** [all] Error 2

error: Bad exit status from /var/tmp/rpm-tmp.1366 (%build)

View 1 Replies View Related

Profesional Installation

Feb 18, 2009

What do people mean by profesional installation, for example if I have a forum professionally installed could I expect this to be with phpmyadmin and apache and the mod_rewrite, or are these more custom aspects?

View 5 Replies View Related

Addons Installation

Jun 19, 2009

I need to install a video script on my server and for this I need following addons on my server, how I can install these...

# mbstring [url]
# FFmpeg [url]
# Mplayer + Mencoder [url]
# Flvtool2 [url]
# Libogg + Libvorbis [url]
# LAME MP3 Encoder ([url]
I am using linux server with CPanel.

View 10 Replies View Related

Nagios Installation

Jun 18, 2009

I have installed nagios 3.06 on my centos server. Anybody know the steps to configure this nagios to check my other servrers.

View 9 Replies View Related

WAMP 2.0G Installation

Mar 8, 2009

I have WAMP 2.0 installed on my Windows Vista. WAMP has released a new version: 2.0G. I've just downloaded it and i'm wondering if i could just run the installer or do i have to uninstall my current WAMP and then only install the latest version?

View 1 Replies View Related

Nagios Installation

Apr 19, 2009

We wanted to put up a nagios server for monitoring around 9 - 12 servers and couldn't find any real specs on what kind of machines are required for nagios.

Any leads on what kind of machines would do? My concern was the RAM requirement - if nagios works well on low end machines, it may make sense for us to host it on some VPS.

Wanted to check in with people who run nagios installations and their experiences.

View 14 Replies View Related

Mod_evasive Installation

Feb 25, 2008

We are having problem with installing mod_evasive on our server. We tried installing it on our Virtual Machine that runs Fedora 7 (on our server, we have Fedora core 5), and on Virtual Machine it is fine, we can compile it and put it in our Apache2 conf file.

However, when we try

[root@ mod_evasive]# /usr/local/psa/admin/bin/apxs -i -a -c mod_evasive20.c
on the server, we get a

[root@ mod_evasive]# /usr/local/psa/admin/bin/apxs -i -a -c mod_evasive20.c
gcc -DHARD_SERVER_LIMIT=512 -DDEFAULT_PATH="/usr/local/psa/admin/bin:/bin:/usr/bin" -DLINUX=22 -DTARGET="httpsd" -DHAVE_SET_DUMPABLE -DNO_DBM_REWRITEMAP -DMOD_SSL=208122 -DEAPI -O -pipe -I/usr/include -O3 -fexpensive-optimizations -fstrength-reduce -pipe -DPLESK_Linux -I/home/builder/buildbot/psa-8.2.1-bfc7/build/plesk/lib/dist/include/libxml2 -W -Wall -DPLESK_Linux -I/home/builder/buildbot/psa-8.2.1-bfc7/build/plesk/plesk-utils/include -DBSG_CR -DBSG_MSG -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -DHAS_RPM -DUSE_SLEEP_ON_IDLE -Wno-unused-parameter -fpic -DSHARED_MODULE -I/usr/local/psa/admin/include -c mod_evasive20.c ....

View 1 Replies View Related

Malware Installation

Apr 23, 2008

Can this be interpreted as a malware (procede the following steps with caution).

After visiting miniclip.com/games/super-gerball/en/ without me clickiing on anything and confirming that I want to Install a game, a new folder is created in my Windows Start Menu and in a Documents and Settings folder.

Although I believe no harm is actually done with this installation, can attacker use this method to install a malware? How can I prevent this, what options should I change in my Firefox browser?

View 3 Replies View Related

PHPShield Installation

Jun 7, 2008

I am unable to install PHPShield by using the known ways. how to install it?

- php version is; 5.2.6

- apache version is; 2.0

PHP 5.2.6 (cli) (built: Jun 5 2008 19:44:20)
Copyright (c) 1997-2008 The PHP Group
Zend Engine v2.2.0, Copyright (c) 1998-2008 Zend Technologies
with eAccelerator v0.9.5.3, Copyright (c) 2004-2006 eAccelerator, by eAccelerator
with the ionCube PHP Loader v3.1.32, Copyright (c) 2002-2007, by ionCube Ltd., and
with Zend Extension Manager v1.2.2, Copyright (c) 2003-2007, by Zend Technologies
with Zend Optimizer v3.3.3, Copyright (c) 1998-2007, by Zend Technologies

View 2 Replies View Related

GCC Installation Error

Apr 10, 2008

I was installing GCC and i followed the steps below and got the error, can anyone tell me on whats the error!.

I downloaded gcc-4.3.0

ftp://ftp.gnu.org/gnu/gcc/gcc-4.3.0/gcc-4.3.0.tar.bz2

from [url]

/usr/local/gcc/gcc-3.4.4/configure
--prefix=/opt/gcc34
--program-suffix=12
--enable-languages=c,c++

Error below!

checking build system type... i686-pc-linux-gnu
checking host system type... i686-pc-linux-gnu
checking target system type... i686-pc-linux-gnu
checking for a BSD-compatible install... /usr/bin/install -c
checking whether ln works... yes
checking whether ln -s works... yes
checking for gcc... no
checking for cc... no
checking for cc... no
checking for cl... no
configure: error: no acceptable C compiler found in $PATH
See `config.log' for more details.

View 7 Replies View Related

IonCube Installation ..

Apr 25, 2008

to install IonCube on my server so iPanel will work. When I go to install IonCube, I need to edit a extension called zend_extension. I go to attempt to edit this by following the directions very carefully by going to my php.ini folder and editing it, I press Ctrl + W which is a search option in pico. Type in zend_extension and their is nothing found. If somebody could please help me, please do. Maybe even install IonCube and iPanel for me, I will send $10.00 via PayPal.

Operating System: CentOs 4
Processer: 3.2 Ghz HT P4 (2 cpus)
Memory: 1 Gigabytes
Harddrive: 80 Gig
Control Panel: cPanel

trying to install iPanel which works with cPanel hand in hand so that is not the issue. iPanel is a billing system like WHMCS or Clientexec.

View 2 Replies View Related

CPGS Installation

Jun 10, 2008

i am trying to uninstall CPGA on my vps and each time i get a error,i have tried every think i know to fix it but still it consists on giving me the error.

Error 1

Connection with Remote Server (77.235.43.67) Failed

Error 2

Can not connect to remote socket.
IO:ocket::INET configuration failederror:00000000:lib(0):func(0):reason(0)
This can caused by a few things:
The cPGSD server is not running on 77.235.43.67:2092
There is a firewall blocking access to 77.235.43.67:2092
77.235.43.67 is not the right IP and/or 2092 is not the right port
Solar Flares (Please contact support to investigate)

View 4 Replies View Related

Spamd Installation

Nov 11, 2008

Anyone have a complete tutorial from start to finish on installing spamd as a smtp relay server/gateway? Im looking for some good doccumentation on this all i can find is just the spamd install guide but thats it. Im not even sure if i need postfix etc on the machine to run I have no idea.

1. what are the requirements

2. how to install and compile spamd

3. how to configure your mail servers to accept only mail from smtp relay and setup your mx records accordingly.

View 0 Replies View Related

SSL Installation 90 Percent

Jun 5, 2007

i have a question concerning SSL surfitup.us is my domain. Now when you go to it, it doesnt show the lock button on the bottom to show that it is secure.

I would like to be able to use https.

In the site i have my icon fro go daddy saying is real.

how to get those two things working?

View 11 Replies View Related

Red5 Installation

Nov 19, 2007

I'm trying to install red5 on my servers and i'm running into a problem.

Code:
[ivy:resolve] ::::::::::::::::::::::::::::::::::::::::::::::
[ivy:resolve] :: UNRESOLVED DEPENDENCIES ::
[ivy:resolve] ::::::::::::::::::::::::::::::::::::::::::::::
[ivy:resolve] :: [ red5 | commons-collections | 3.2 ]: not found
[ivy:resolve] :: [ red5 | commons-httpclient | 3.0.1 ]: not found
[ivy:resolve] :: [ red5 | commons-codec | 1.3 ]: not found
[ivy:resolve] :: [ red5 | commons-beanutils | 1.7.0 ]: not found
[ivy:resolve] :: [ red5 | commons-logging | 1.1 ]: not found
[ivy:resolve] :: [ red5 | commons-modeler | 2.0.1 ]: not found
[ivy:resolve] :: [ red5 | commons-pool | 1.3 ]: not found
[ivy:resolve] :: [ red5 | commons-lang | 2.3 ]: not found
[ivy:resolve] ::::::::::::::::::::::::::::::::::::::::::::::
[ivy:resolve] :::: ERRORS
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/naming-factory//naming-factory.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/naming-resources//naming-resources.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-modeler/2.0.1/commons-modeler-2.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-modeler/jars/commons-modeler-2.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-logging/1.1/commons-logging-1.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-logging/jars/commons-logging-1.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/log4j/1.2.15/log4j-1.2.15.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/log4j/jars/log4j-1.2.15.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/slf4j-api/1.3.1/slf4j-api-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/slf4j-api/jars/slf4j-api-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/slf4j-log4j12/1.3.1/slf4j-log4j12-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/slf4j-log4j12/jars/slf4j-log4j12-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/slf4j-simple/1.3.1/slf4j-simple-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/slf4j-simple/jars/slf4j-simple-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/jcl104-over-slf4j/1.3.1/jcl104-over-slf4j-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/jcl104-over-slf4j/jars/jcl104-over-slf4j-1.3.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/cglib/cglib-nodep/2.1_3/cglib-nodep-2.1_3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/cglib-nodep/jars/cglib-nodep-2.1_3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-beanutils/1.7.0/commons-beanutils-1.7.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-beanutils/jars/commons-beanutils-1.7.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-codec/1.3/commons-codec-1.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-codec/jars/commons-codec-1.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-collections/3.2/commons-collections-3.2.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-collections/jars/commons-collections-3.2.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-httpclient/3.0.1/commons-httpclient-3.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-httpclient/jars/commons-httpclient-3.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-lang/2.3/commons-lang-2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-lang/jars/commons-lang-2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/commons-pool/1.3/commons-pool-1.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/commons-pool/jars/commons-pool-1.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/javax/jpda//jpda.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/quartz/1.5.2/quartz-1.5.2.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/quartz/jars/quartz-1.5.2.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/javax/jta/1.0.1B/jta-1.0.1B.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/jta/jars/jta-1.0.1B.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/whirlycache/1.0.1_lite/whirlycache-1.0.1_lite.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/whirlycache/jars/whirlycache-1.0.1_lite.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/ehcache/1.2.3/ehcache-1.2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/ehcache/jars/ehcache-1.2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/xercesImpl/2.9.0/xercesImpl-2.9.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/xercesImpl/jars/xercesImpl-2.9.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/xml-apis/2.9.0/xml-apis-2.9.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/xml-apis/jars/xml-apis-2.9.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/apache/xmlrpc/2.0.1/xmlrpc-2.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/xmlrpc/jars/xmlrpc-2.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/javax/activation/1.1/activation-1.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/activation/jars/activation-1.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/asm/asm/2.2.3/asm-2.2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/asm/jars/asm-2.2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/asm/asm-commons/2.2.3/asm-commons-2.2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/asm-commons/jars/asm-commons-2.2.3.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/antlr/antlr/2.7.6/antlr-2.7.6.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/antlr/jars/antlr-2.7.6.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/bsh/2.0b4/bsh-2.0b4.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/bsh/jars/bsh-2.0b4.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/groovy/1.0/groovy-1.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/groovy/jars/groovy-1.0.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/jruby/1.0.1/jruby-1.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/jruby/jars/jruby-1.0.1.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven2/red5/jython/2.2/jython-2.2.jar
[ivy:resolve] Server access Error: Connection refused url=http://www.ibiblio.org/maven/jython/jars/jython-2.2.jar
[ivy:resolve]
[ivy:resolve] :: USE VERBOSE OR DEBUG MESSAGE LEVEL FOR MORE DETAILS

BUILD FAILED
/red5-0.6.3/build.xml:146: The following error occurred while executing this line:
/red5-0.6.3/build.xml:160: The following error occurred while executing this line:
/red5-0.6.3/build.xml:115: impossible to resolve dependencies: resolve failed - see output for details

View 4 Replies View Related

CcMail Installation

Jun 26, 2007

install some different scripts using free webserver bythost.com... I have just uploaded the CCmail script but it seems the installation instruction is not complete... I cannot find a file where I will enter my MySQL server details...

here's the Installation Instruction...
Quote:

Installation guide for ccMail


1. First of all, You have to know that CcMail (like any other php script) can't work without a server! So, if you want to send Emails from your own PC, you have to install a web server (like Apache), and PHP.

Otherwise, if you have web hosting through another company you have to make sure the server has PHP. If you don't know, create a file called phpinfo.php. The only code in there should be:

<?php

// Show all information, defaults to INFO_ALL
phpinfo();
?>

2. Make sure that pages in which you want to include the Subscription form have .php extension! You don't have to worry about page contents: nothing will change. If you don't want to do so, you can use the default Subscription page (ccmail/index.php): it is easier, and everything will work fine. To view a page with .php extension, you can 1)drag it in you preferred browser, or 2)install a web server, put that page in the right directory (normally var/www, or www/ for Linux and wwwroot/ for Windows, there are tons of possibilities), and view it at [url], that is a lot better.

If you have a site in hosting, you have only to change pages extension (and update hyperlinks). Everything will work like before.

3. If the previous steps are correct, extract the file you have downloaded to a folder. As you can see, there is a folder named ccmail.

First of all, you have to edit config.php with your username/password. You can add more than one user.

Then, you have to upload the ccmail folder to your web server.

If you experience some problems, like permissions denying directories, try to chmod EVERYTHING inside data/ directory, including the folder itself, to 775, or 777 (chmod 777 ./data).

If you have a site in hosting, open your preferred ftp manager and drag the folder into the main directory of your site, that is the same directory of your index.php file.


4. Add the following line to any page in which you want to display the Subscription form:

<?php include "ccmail/include.php";?>

You can see an example in ccmail/index.php. If the Subscription form is too big for your pages, or you would like a more compact form, you can put in your pages a simple HTML form that redirects your users to the complete one:

<form method="get" action="ccmail/index.php">
<b>Insert Email Address/b><br>
<input name="address" size="15">
<input type="submit" value="Go">
</form>

This form redirects your Users to CcMail's index.php. If you don't want so, create a page with the complete form and change "action" field to point to that page.

Here's how the complete form and the reduced one, respectively, look like:

Complete Form Compact Form

I assumed that ccmail folder is in the same directory of that pages. If not, edit the previous lines with the right path.

5. If you open www.yoursite.com/ccmail/admin.php with your browser, you will be able to manage users, create groups, send mails and so on.

Any comment?... I cannot complete the installation with such guide..there is no file where I could enter MySQL server details...

View 0 Replies View Related

Mrtg Installation

May 14, 2007

I tried to install mrtg using this

Quote:

wget [url]chmod +x install.mrtg.sh
./install.mrtg.sh

Everything looks to be installed correctly but when i try to access
[url]it show 404 Not found error.

View 2 Replies View Related

Zimbra Installation

May 9, 2007

I have been struggling for the last 24 hours with setup of Zimbra on a VPS environment with 1gb dedicated RAM. In all cases, after the standard installation pains, I was able to get the actual interface up and running just fine. It allows the admin to log in to both admin and the client interface, however no messages can successfully be sent.

I am unaware what the root cause of my problem is at this point, so kindly require further assistance. I am pretty sure there are no conflicts at this point as most all other services have been disabled, as this is a box dedicated for Zimbra, and the standard HTTP has been set to 88. I can access the site just fine at port 88 but sending mail, even to the local admin account that was set up during installation (the only email accont set up on this box) results in an error message after 8 seconds that reads:

-----
A network error has occurred.
msg - csfe service error
code - NETWORK_ERROR
method - ZmCsfeCommand.prototype.invoke
detail - Empty HTTP response
-----

From shell, I see that messages are being sent to the administrator, as it notifies me. They read:

From zimbra@cleo.ewebzone.net Wed May 9 06:40:05 2007
Date: Wed, 9 May 2007 06:40:02 -0500
From: root@cleo.ewebzone.net (Cron Daemon)
To: zimbra@cleo.ewebzone.net
Subject: Cron <zimbra@cleo> /opt/zimbra/libexec/zmqueuelog
X-Cron-Env: <SHELL=/bin/sh>
X-Cron-Env: <HOME=/opt/zimbra>
X-Cron-Env: <PATH=/usr/bin:/bin>
X-Cron-Env: <LOGNAME=zimbra>

postqueue: fatal: Queue report unavailable - mail system is down

---------

From zimbra@cleo.ewebzone.net Wed May 9 06:24:03 2007
Date: Wed, 9 May 2007 06:24:02 -0500
From: root@cleo.ewebzone.net (Cron Daemon)
To: zimbra@cleo.ewebzone.net
Subject: Cron <zimbra@cleo> /opt/zimbra/libexec/zmstatuslog
X-Cron-Env: <SHELL=/bin/sh>
X-Cron-Env: <HOME=/opt/zimbra>
X-Cron-Env: <PATH=/usr/bin:/bin>
X-Cron-Env: <LOGNAME=zimbra>

Could not create the Java virtual machine.

----------

I do believe tomcat is running and is just fine, however. I am able to access the Zimbra interface just fine, can restart tomcat without error, and see intensive java usage in top (which looks normal).

I am most familiar with CentOS and intended on using this distribution, however had no success. I then switched to Ubuntu install. It appears things installed much smoother, but I'm having the same problem.

A records for cleo.ewebzone.net have bee propertly set, as have a mx record on the authorative DNS server for the root domain, ewebzone.net. The name of my zimbra box is obviously cleo.ewebzone.net.

View 2 Replies View Related

SSL Certif Installation

Apr 23, 2007

I've just purchased a SSL certificate from InstantSSL.com and I now have 3 .crt files but I don't know how to use them in IIS. IIS supports .cer/.pfx files...

View 0 Replies View Related

Chrookit Installation

Jul 17, 2007

#cd /usr/src
#wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz
#tar zxvf chkrootkit.tar.gz
#cd chkrootkit-0.47
#make sense
gcc -DHAVE_LASTLOG_H -o chklastlog chklastlog.c
make: gcc: Command not found
make: *** [chklastlog] Error 127

View 9 Replies View Related

Awardspace.com CMS Installation

Jun 30, 2007

Is there anybody here with a free awardspace account that has had problems installing software like CMS?

I thought it was just a problem with the one CMS, but I've tried multiple programs and none of them seem to work, even after seeking out and trying the 'solutions' to each specific problem.

I've tried Expression Engine, Drupal , mambo and Xoops

Is it just me or perhaps it's something to do with the Free awardspace accounts?

View 2 Replies View Related

Suhosin Installation

Aug 5, 2007

i install suhosin like this :

Code:
cd /usr/src
wget [url]
wget [url]
wget [url]
wget [url]
then :

Code:
gpg --import < hardened-php-signature-key.asc
extract php tarball

Code:
tar -zxf php-4.4.7.tar.gz
then :

Code:
md5sum suhosin-patch-4.4.7-0.9.6.patch.gz
gpg suhosin-patch-4.4.7-0.9.6.patch.gz.sig
gunzip suhosin-patch-4.4.7-0.9.6.patch.gz
paching php :

Code:

cd php-4.4.7
patch -p 1 -i ../suhosin-patch-4.4.7-0.9.6.patch
installing php : ( u must restore php.ini to the default before the installation )

Code:

./configure --with any thing .....
make
make test
make install
after that i cat suhosin.ini to php.ini

Code:
cat suhosi.ini > php.ini
i am using this setting :

Code:
;;;;;;;;;;;;;
; Suhosin ;
;;;;;;;;;;:;;
; -----------------------------------------------------------------------------
; This file was taken from Mandriva Linux with their permission
; -----------------------------------------------------------------------------
[suhosin]
; -----------------------------------------------------------------------------
; Logging Options
; Defines what classes of security alerts are logged to the syslog daemon.
; Logging of errors of the class S_MEMORY are always logged to syslog, no
; matter what this configuration says, because a corrupted heap could mean that
; the other logging options will malfunction during the logging process.
suhosin.log.syslog = 511
; Defines the syslog facility that is used when ALERTs are logged to syslog.
suhosin.log.syslog.facility = 9
; Defines the syslog priority that is used when ALERTs are logged to syslog.
suhosin.log.syslog.priority = 1
; Defines what classes of security alerts are logged through the SAPI error log.
suhosin.log.sapi = 511
; Defines what classes of security alerts are logged through the external
; logging.
suhosin.log.script = 511
; Defines what classes of security alerts are logged through the defined PHP
; script.
suhosin.log.phpscript = 511
; Defines the full path to a external logging script. The script is called with
; 2 parameters. The first one is the alert class in string notation and the
; second parameter is the log message. This can be used for example to mail
; failing MySQL queries to your email address, because on a production system
; these things should never happen.
suhosin.log.script.name =
; Defines the full path to a PHP logging script. The script is called with 2
; variables registered in the current scope: SUHOSIN_ERRORCLASS and
; SUHOSIN_ERROR. The first one is the alert class and the second variable is
; the log message. This can be used for example to mail attempted remote URL
; include attacks to your email address.
suhosin.log.phpscript.name =
; Undocumented
suhosin.log.phpscript.is_safe = Off
; When the Hardening-Patch logs an error the log message also contains the IP
; of the attacker. Usually this IP is retrieved from the REMOTE_ADDR SAPI
; environment variable. With this switch it is possible to change this behavior
; to read the IP from the X-Forwarded-For HTTP header. This is f.e. necessary
; when your PHP server runs behind a reverse proxy.
suhosin.log.use-x-forwarded-for = On
; -----------------------------------------------------------------------------
; Executor Options
; Defines the maximum stack depth allowed by the executor before it stops the
; script. Without this function an endless recursion in a PHP script could
; crash the PHP executor or trigger the configured memory_limit. A value of
; "0" disables this feature.
suhosin.executor.max_depth = 5
; Defines how many "../" an include filename needs to contain to be considered
; an attack and stopped. A value of "2" will block "../../etc/passwd", while a
; value of "3" will allow it. Most PHP applications should work flawlessly with
; values "4" or "5". A value of "0" disables this feature.
suhosin.executor.include.max_traversal = 2
; Comma separated whitelist of URL schemes that are allowed to be included from
; include or require statements. Additionally to URL schemes it is possible to
; specify the beginning of allowed URLs. (f.e.: php://stdin) If no whitelist is
; specified, then the blacklist is evaluated.
suhosin.executor.include.whitelist =
; Comma separated blacklist of URL schemes that are not allowed to be included
; from include or require statements. Additionally to URL schemes it is
; possible to specify the beginning of allowed URLs. (f.e.: php://stdin) If no
; blacklist and no whitelist is specified all URL schemes are forbidden.
suhosin.executor.include.blacklist =
; Comma separated whitelist of functions that are allowed to be called. If the
; whitelist is empty the blacklist is evaluated, otherwise calling a function
; not in the whitelist will terminate the script and get logged.
suhosin.executor.func.whitelist =
; Comma separated blacklist of functions that are not allowed to be called. If
; no whitelist is given, calling a function within the blacklist will terminate
; the script and get logged.
suhosin.executor.func.blacklist =
; Comma separated whitelist of functions that are allowed to be called from
; within eval(). If the whitelist is empty the blacklist is evaluated,
; otherwise calling a function not in the whitelist will terminate the script
; and get logged.
suhosin.executor.eval.whitelist =
; Comma separated blacklist of functions that are not allowed to be called from
; within eval(). If no whitelist is given, calling a function within the
; blacklist will terminate the script and get logged.
suhosin.executor.eval.blacklist =
; eval() is a very dangerous statement and therefore you might want to disable
; it completely. Deactivating it will however break lots of scripts. Because
; every violation is logged, this allows finding all places where eval() is
; used.
suhosin.executor.disable_eval = Off
; The /e modifier inside preg_replace() allows code execution. Often it is the
; cause for remote code execution exploits. It is wise to deactivate this
; feature and test where in the application it is used. The developer using the
; /e modifier should be made aware that he should use preg_replace_callback()
; instead.
suhosin.executor.disable_emodifier = Off
; This flag reactivates symlink() when open_basedir is used, which is disabled
; by default in Suhosin >= 0.9.6. Allowing symlink() while open_basedir is used
; is actually a security risk.
suhosin.executor.allow_symlink = Off
; -----------------------------------------------------------------------------
; Misc Options
; If you fear that Suhosin breaks your application, you can activate Suhosin's
; simulation mode with this flag. When Suhosin runs in simulation mode,
; violations are logged as usual, but nothing is blocked or removed from the
; request. (Transparent Encryptions are NOT deactivated in simulation mode.)
suhosin.simulation = Off
; APC 3.0.12(p1/p2) uses reserved resources without requesting a resource slot
; first. It always uses resource slot 0. If Suhosin got this slot assigned APC
; will overwrite the information Suhosin stores in this slot. When this flag is
; set Suhosin will request 2 Slots and use the second one. This allows working
; correctly with these buggy APC versions.
suhosin.apc_bug_workaround = Off
; When a SQL Query fails scripts often spit out a bunch of useful information
; for possible attackers. When this configuration directive is turned on, the
; script will silently terminate, after the problem has been logged. (This is
; not yet supported)
suhosin.sql.bailout_on_error = Off
; This is an experimental feature for shared environments. With this
; configuration option it is possible to specify a prefix that is automatically
; prepended to the database username, whenever a database connection is made.
; (Unless the username starts with the prefix)
suhosin.sql.user_prefix =
; This is an experimental feature for shared environments. With this
; configuration option it is possible to specify a postfix that is
; automatically appended to the database username, whenever a database
; connection is made. (Unless the username end with the postfix)
;
; With this feature it is possible for shared hosters to disallow customers to
; connect with the usernames of other customers. This feature is experimental,
; because support for PDO and PostgreSQL are not yet implemented.
suhosin.sql.user_postfix =
; This directive controls if multiple headers are allowed or not in a header()
; call. By default the Hardening-Patch forbids this. (HTTP headers spanning
; multiple lines are still allowed).
suhosin.multiheader = Off
; This directive controls if the mail() header protection is activated or not
; and to what degree it is activated. The appended table lists the possible
; activation levels.
suhosin.mail.protect = 1
; As long scripts are not running within safe_mode they are free to change the
; memory_limit to whatever value they want. Suhosin changes this fact and
; disallows setting the memory_limit to a value greater than the one the script
; started with, when this option is left at 0. A value greater than 0 means
; that Suhosin will disallows scripts setting the memory_limit to a value above
; this configured hard limit. This is for example usefull if you want to run
; the script normaly with a limit of 16M but image processing scripts may raise
; it to 20M.
suhosin.memory_limit = 0
; -----------------------------------------------------------------------------
; Transparent Encryption Options
; Flag that decides if the transparent session encryption is activated or not.
suhosin.session.encrypt = On
; Session data can be encrypted transparently. The encryption key used consists
; of this user defined string (which can be altered by a script via ini_set())
; and optionally the User-Agent, the Document-Root and 0-4 Octects of the
; REMOTE_ADDR.
suhosin.session.cryptkey =
; Flag that decides if the transparent session encryption key depends on the
; User-Agent field. (When activated this feature transparently adds a little
; bit protection against session fixation/hijacking attacks)
suhosin.session.cryptua = On
; Flag that decides if the transparent session encryption key depends on the
; Documentroot field.
suhosin.session.cryptdocroot = On
; Number of octets (0-4) from the REMOTE_ADDR that the transparent session
; encryption key depends on. Keep in mind that this should not be used on sites
; that have visitors from big ISPs, because their IP address often changes
; during a session. But this feature might be interesting for admin interfaces
; or intranets. When used wisely this is a transparent protection against
; session hijacking/fixation.
suhosin.session.cryptraddr = 0
; Number of octets (0-4) from the REMOTE_ADDR that have to match to decrypt the
; session. The difference to suhosin.session.cryptaddr is, that the IP is not
; part of the encryption key, so that the same session can be used for
; different areas with different protection levels on the site.
suhosin.session.checkraddr = 0
; Flag that decides if the transparent cookie encryption is activated or not.
suhosin.cookie.encrypt = 0
; Cookies can be encrypted transparently. The encryption key used consists of
; this user defined string and optionally the User-Agent, the Document-Root and
; 0-4 Octects of the REMOTE_ADDR.
suhosin.cookie.cryptkey =
; Flag that decides if the transparent session encryption key depends on the
; User-Agent field. (When activated this feature transparently adds a little
; bit protection against session fixation/hijacking attacks (if only session
; cookies are allowed))
suhosin.cookie.cryptua = On
; Flag that decides if the transparent cookie encryption key depends on the
; Documentroot field.
suhosin.cookie.cryptdocroot = On
; Number of octets (0-4) from the REMOTE_ADDR that the transparent cookie
; encryption key depends on. Keep in mind that this should not be used on sites
; that have visitors from big ISPs, because their IP address often changes
; during a session. But this feature might be interesting for admin interfaces
; or intranets. When used wisely this is a transparent protection against
; session hijacking/fixation.
suhosin.cookie.cryptraddr = 0
; Number of octets (0-4) from the REMOTE_ADDR that have to match to decrypt the
; cookie. The difference to suhosin.cookie.cryptaddr is, that the IP is not
; part of the encryption key, so that the same cookie can be used for different
; areas with different protection levels on the site.
suhosin.cookie.checkraddr = 0
; In case not all cookies are supposed to get encrypted this is a comma
; separated list of cookie names that should get encrypted. All other cookies
; will not get touched.
suhosin.cookie.cryptlist =
; In case some cookies should not be crypted this is a comma separated list of
; cookies that do not get encrypted. All other cookies will be encrypted.
suhosin.cookie.plainlist =
; -----------------------------------------------------------------------------
; Filtering Options
; Defines the reaction of Suhosin on a filter violation.
suhosin.filter.action = http://www.disney.com
; Defines the maximum depth an array variable may have, when registered through
; the COOKIE.
suhosin.cookie.max_array_depth = 100
; Defines the maximum length of array indices for variables registered through
; the COOKIE.
suhosin.cookie.max_array_index_length = 64
; Defines the maximum length of variable names for variables registered through
; the COOKIE. For array variables this is the name in front of the indices.
suhosin.cookie.max_name_length = 64
; Defines the maximum length of the total variable name when registered through
; the COOKIE. For array variables this includes all indices.
suhosin.cookie.max_totalname_length = 256
; Defines the maximum length of a variable that is registered through the
; COOKIE.
suhosin.cookie.max_value_length = 10000
; Defines the maximum number of variables that may be registered through the
; COOKIE.
suhosin.cookie.max_vars = 100
; When set to On ASCIIZ chars are not allowed in variables.
suhosin.cookie.disallow_nul = 1
; Defines the maximum depth an array variable may have, when registered through
; the URL
suhosin.get.max_array_depth = 50
; Defines the maximum length of array indices for variables registered through
; the URL
suhosin.get.max_array_index_length = 64
; Defines the maximum length of variable names for variables registered through
; the URL. For array variables this is the name in front of the indices.
suhosin.get.max_name_length = 64
; Defines the maximum length of the total variable name when registered through
; the URL. For array variables this includes all indices.
suhosin.get.max_totalname_length = 256
; Defines the maximum length of a variable that is registered through the URL.
suhosin.get.max_value_length = 512
; Defines the maximum number of variables that may be registered through the
; URL.
suhosin.get.max_vars = 100
; When set to On ASCIIZ chars are not allowed in variables.
suhosin.get.disallow_nul = 1
; Defines the maximum depth an array variable may have, when registered through
; a POST request.
suhosin.post.max_array_depth = 50
; Defines the maximum length of array indices for variables registered through
; a POST request.
suhosin.post.max_array_index_length = 64
; Defines the maximum length of variable names for variables registered through
; a POST request. For array variables this is the name in front of the indices.
suhosin.post.max_name_length = 64
; Defines the maximum length of the total variable name when registered through
; a POST request. For array variables this includes all indices.
suhosin.post.max_totalname_length = 256
; Defines the maximum length of a variable that is registered through a POST
; request.
suhosin.post.max_value_length = 65000
; Defines the maximum number of variables that may be registered through a POST
; request.
suhosin.post.max_vars = 200
; When set to On ASCIIZ chars are not allowed in variables.
suhosin.post.disallow_nul = 1
; Defines the maximum depth an array variable may have, when registered through
; GET , POST or COOKIE. This setting is also an upper limit for the separate
; GET, POST, COOKIE configuration directives.
suhosin.request.max_array_depth = 50
; Defines the maximum length of array indices for variables registered through
; GET, POST or COOKIE. This setting is also an upper limit for the separate
; GET, POST, COOKIE configuration directives.
suhosin.request.max_array_index_length = 64
; Defines the maximum length of variable names for variables registered through
; the COOKIE, the URL or through a POST request. This is the complete name
; string, including all indicies. This setting is also an upper limit for the
; separate GET, POST, COOKIE configuration directives.
suhosin.request.max_totalname_length = 256
; Defines the maximum length of a variable that is registered through the
; COOKIE, the URL or through a POST request. This setting is also an upper
; limit for the variable origin specific configuration directives.
suhosin.request.max_value_length = 65000
; Defines the maximum number of variables that may be registered through the
; COOKIE, the URL or through a POST request. This setting is also an upper
; limit for the variable origin specific configuration directives.
suhosin.request.max_vars = 200
; Defines the maximum name length (excluding possible array indicies) of
; variables that may be registered through the COOKIE, the URL or through a
; POST request. This setting is also an upper limit for the variable origin
; specific configuration directives.
suhosin.request.max_varname_length = 64
; When set to On ASCIIZ chars are not allowed in variables.
suhosin.request.disallow_nul = 1
; Defines the maximum number of files that may be uploaded with one request.
suhosin.upload.max_uploads = 25
; When set to On it is not possible to upload ELF executables.
suhosin.upload.disallow_elf = 1
; When set to On it is not possible to upload binary files.
suhosin.upload.disallow_binary = 0
; When set to On binary content is removed from the uploaded files.
suhosin.upload.remove_binary = 0
; This defines the full path to a verification script for uploaded files. The
; script gets the temporary filename supplied and has to decide if the upload
; is allowed. A possible application for this is to scan uploaded files for
; viruses. The called script has to write a 1 as first line to standard output
; to allow the upload. Any other value or no output at all will result in the
; file being deleted.
suhosin.upload.verification_script =
; Specifies the maximum length of the session identifier that is allowed. When
; a longer session identifier is passed a new session identifier will be
; created. This feature is important to fight bufferoverflows in 3rd party
; session handlers.
suhosin.session.max_id_length = 128
; Undocumented: Controls if suhosin coredumps when the optional suhosin patch
; detects a bufferoverflow, memory corruption or double free. This is only
; for debugging purposes and should not be activated.
suhosin.coredump = Off
; Undocumented: Controls if the encryption keys specified by the configuration
; are shown in the phpinfo() output or if they are hidden from it
suhosin.protectkey = 1
; Controls if suhosin loads in stealth mode when it is not the only
; zend_extension (Required for full compatibility with certain encoders
; that consider open source untrusted. e.g. ionCube, Zend)
suhosin.stealth = 1
; Controls if suhosin's ini directives are changeable per directory
; because the admin might want to allow some features to be controlable
; by .htaccess and some not. For example the logging capabilities can
; break safemode and open_basedir restrictions when .htaccess support is
; allowed and the admin forgot to fix their values in httpd.conf
; An empty value or a 0 will result in all directives not allowed in
; .htaccess. The string "legcprsum" will allow logging, execution, get,
; post, cookie, request, sql, upload, misc features in .htaccess
suhosin.perdir = "0"

• what u thing in these setting it is correct?

• should i use values like : ( 511 , 9 , 2 , 1 , 5 , 0 ... ) or Constants like ( S_ALL , S_MAIL , S_MEMORY , S_SQL ... ) ?

• sould i install Suhosin Extension 0.9.20 ?

• How i can know that suhosin work and protect my php?

View 2 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved