Dutch_Mike

Ik had to re-install my server again. I rebuilt it this time with Alma Linux 8.10 minimal. After installing Alma, i updated, rebooted and then i upgraded the kernel to the last version that was available that moment, 6.10.3-1.el8.elrepo.x86_64. then i installed CWP which went very smooth and fast without a problem. After the CWP installation i updated it again, and after, since it was still empty and clean, i went for the MariaDB update to Server version: 10.11.9-MariaDB. This all went smooth no issues. Then i updated the Apache to 2.4.62. this also went smooth.

well i have no clue where to check or to look at what, i done everything exact as you described it in your articles, and it did not gave me errors during the install for the kernel upgrade for the maria upgrade and the apache upgrade, and this happens. so probably apache *.62 doesn't work the same as *57 or it must be a combination of the kernel and apache. its the same as this.. remember Sandeep you been in my server for the firewall thing to block, you also repaired my filebrowser, because it had a corrupted file. That file browser has worked for me only 1 time. like 3 or 4 years ago. since then i installed probably around 30 vm and a baremetal server again and again, if not more, and every install does the same, filebrowser is never working propperly. it doesnt move files to folders that are full already. it doesn delete the files after the move, it doesnt copy the first time, when i click on breadcrums it doesnt want to move there, need to click 2 3 times as it should. i made a post on the cwp forum, and i only got a few replies like mine is working, and we can not replicate it, but the result is.. i still have a file browser that is not working as it should... and its still not fixed. even not in this new fresh installation of 5 days old. filebrowser still not work propperly I make mistakes.. but not like that 30 40 times

now i deleted the user that i created in the root admin panel mysql manager, and i used the root admin panel phpmyadmin. I created the same username with the same password... and now i am able to have joomla installed without a problem. so there goes something wrong for sure. Sandeep, if you want to dig in my server and create users and try things.. you are most welcome and find the the culprit.

even i could create the user for the database, when i try to install joomla it says Could not connect to the database. Connector returned error message: Access denied for user 'username_jml'@'localhost' (using password: YES) when i try to change the password in the user environment panel it is NOT accepted and gives an error. when i change the password again in the root admin panel with mysql manager it does accept the password , but the installation keeps giving the same error

i can not create a database and a new user the same time in the User environment panel, but when i go to the root admin panel and then to "mysql manager" and i create a new user there, then it is working.

i id rebuilt it all after these installs. then still have that effect. i am still on apache 2.4.62 only... no other web servers active

Well, i have compared some conf files with an install on a VM and with my current set up. I opened the /usr /local /apache /conf /httpd.conf on both machines... and it turns out in the machine i have this problem with... the index.php was on another location in the order then on the VM where i still have the old apache had installed. This is de code / order on the 2.4.57 conf file and as u can see index.php is the first one in the list. <IfModule dir_module> DirectoryIndex index.php index.html.var index.htm index.html index.shtml index.xhtml index.wml index.perl index.pl index.plx index.ppl index.cgi index.jsp index.js index.jp index.php4 index.php3 index.phtml default.htm default.html home.htm index.php5 Default.html Default.htm home.html </IfModule> this here is the order of appearing on the apache 2.4.62 conf file <IfModule dir_module> DirectoryIndex index.html.var index.htm index.html index.shtml index.xhtml index.wml index.perl index.pl index.plx index.ppl index.cgi index.jsp index.js index.jp index.php index.php4 index.php3 index.phtml default.htm default.html home.htm index.php5 Default.html Default.htm home.html </IfModule> As you can see the index.php is on place nr 15 . I did put the index.php as first in the list, and now it works again without me have to delete the index.html first. i also have noticed, that with apache 2.4.62 active, in the user environment. when i create a new database including a new user. it does create the new database, but not the new user.. even i want to create the new user separately. it still does not create a new user.

Before i had apache 2.4.57 installed and no issues. Now i have apache 2.4.62 installed and i noticed my web server works slightly different. When i create a new domain on apache 2.4.57 it creates the public_html and the default Centos test html page there. Then when for example i install joomla php based, and i navigate to the domain, it automatic picks up the Joomla install. With apache 2.4.62 installed , it creates the public_html and the default Centos test html page there,but when i install Joomla php based and i navigate to the domain it keeps showing me the default Centos html test page, no matter how many time i clear my cache or even try to approach it from a machine that never been on that domain before. As soon as i delete the default cwp html test page, it picks up the Joomla install page. How and where do i need to change the behaviour of apache so that it acts same as 2.4.57 ? Regards, Mike

UPDATE: I reverted my web servers back from " Nginx & Varnish & Apache" to Apache only, and now the buttons are working again, so for some reason the mail server page doesn't want to work when you have "Nginx & Varnish & Apache" installed. The Nginx version is just the default version being installed by CWP When i try to upgrade the Nginx i already get all kind of errors.. in the preparation phase, so i did not moved on with that and left it untouched. So the not working buttons is solved, atleast knowing a reason... not know why.

I would love to improve my system, but many times old instructions not seem to work anymore because of wrong commands and modules that working slightly different or are being deprecated. Would it be useful to have brotli installed on a system that uses the 3 webservers, Nginx & Varnish & Apache and PHP-FPM activated, where apache is version 2.4.62 ? Since i am running alma linux 8.10 having kernel 6.10.3-1.el8.elrepo.x86_64 installed and mariadb 10.11.9, will these instructions work, or will it have me left again with a system that doesn't work anymore or just half.... If possible, can you rewrite the instructions so it will work with this setup ? Regards, Mike

Hi Ik had to re-install my server again. I rebuilt it this time with Alma Linux 8.10 minimal. After installing Alma, i updated, rebooted and then i upgraded the kernel to the last version that was available that moment, 6.10.3-1.el8.elrepo.x86_64. then i installed CWP which went very smooth and fast without a problem. After the CWP installation i updated it again, and after, since it was still empty and clean, i went for the MariaDB update to Server version: 10.11.9-MariaDB. This all went smooth no issues. Then i updated the Apache to 2.4.62. this also went smooth. After this all i rebooted several times, i set up the server the normal way, with hostname and such and ssl cert all working fine too no issues. Then i got to the mail server. I checked the 3 top boxes to be installed like : AntiSpam/AntiVirus , AntiSpam/AntiVirus and Install DKIM & SPF, this went all smooth and no issues reported. I started to setup my users. I only need 1 email on the master domain so i created that and going to test if its working. I send an e-mail through gmail to the the first hosted domain and mailbox, and it came right back with an error saying it was rejected because of spam assassins and bla bla, and when i clicked on the link for the solution, it had the message of open resolver. I had this happened before, so i was like, ok i uninstall the AntiSpam/AntiVirus option from the mail server and it is fixed. Well there the problem arises. NONE of the buttons on the mail server page is working, they show, i can click on them, but they do nothing. i can check boxes to install or uninstall, but hitting the mail server button to reinstall the mail server does do nothing. i already have rebooted the machine, not work. I reverted apache back to 2.4.57, but no effect. Any other ideas what can be wrong and why this isn't working anymore. ? Im happy with this setup as it is super fast and smooth, but this strange problem.. Looking forward to see some solutions, Regards, Mike

I installed my server, new, again, this time with Alma linux 8.10 and updated the kernel to Version: 6.10.3-1.el8.elrepo.x86_64 . updated to the last version of MariaDB, using the upgrade instructions for Alma 8, not 9 as in this post. When i use the command to upgrade my Nginx, this === >>> dnf module disable nginx <<<===== it gives me this error. [root@ ~]# dnf module disable nginx Last metadata expiration check: 2:08:41 ago on Sun 04 Aug 2024 06:14:09 PM CEST. Problems in request: Modular dependency problems with Defaults: Problem: module php:7.2:8030020210119114311:2c7ca891.x86_64 from appstream requires module(nginx), but none of the providers can be installed - conflicting requests - module nginx:1.14:8030020210419100506:f8e95b4e.x86_64 from appstream is disabled - module nginx:1.16:8040020210608131432:522a0ee4.x86_64 from appstream is disabled - module nginx:1.18:8040020210608132736:522a0ee4.x86_64 from appstream is disabled - module nginx:1.20:8080020231017064931:9edba152.x86_64 from appstream is disabled - module nginx:1.22:8080020231017064907:9edba152.x86_64 from appstream is disabled - module nginx:1.24:8100020240411100500:9edba152.x86_64 from appstream is disabled Dependencies resolved. I did not agreed with it so left alone. BUT i had this in the past too... and these times i continued, which resulted, that every time i had a yum command to install or update, even it had nothing to do with Nginx, i got this same error list. SO before doing this and continue, i want to know how to do this or what should be done before, so i can upgrade Nginx to the last version without these errors. Regards, Mike

OK thank you. can you briefly explain what it is doing ? as i am less then a noob with regex. it totally makes no sense to me.

where do i post / add that ?

The reply with all possible ways ways including SSH [LF_BIND] << over 1000 queries per second from 1 ip [LF_FTPD] << all kind of usernames [LF_APACHE_404]<< like 200 times in 20 sec [LF_MODSEC] << [:error] [pid 2335005:tid 140366300833536] [client 141.98.11.96:52620] [client 141.98.11.96] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/usr/local/apache/modsecurity-cwaf/rules/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)||213.127.141.27|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [LF_SMTPAUTH] << postfix/smtpd[2690968]: warning: unknown[109.206.237.18]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 [LF_CUSTOMTRIGGER] << 10 (XMLRPC)

Hi Sandeep. For some reason i have a shitload of cyber terrorist that try to get into my CWP server. At this moment, all blocked ips from the past are permanent in the csf .deny file and in the main config i blocked most countries like China Russia Romania and a few other countries that support cyber criminals. Since i am experimenting a lot with the cfs firewall options, i have to restart it many times. Most time i use "quick restart firewall" but even i use that, after a few minutes that the firewall has restarted. i get about a 100+ attempts in the mail, of those ip's i have blocked already by country in the main config or in the csf .deny file, trying to get in, and i know the restarting of the firewall or lfd is just a matter of seconds ? so imagine how desperate they are to get in. So i was thinking... i have read somewhere that there is a firewall program on a Linux variant... ( but i cant recall anymore nor find where i read it), that as soon as the firewall or lfd is restarting, it automatically blocks all the inbound connections on the network devices ( you have selected in a cfg file.) so that it is never unprotected during the restart of the firewall. I know that clients will have interruption of the service, but i don't have clients. i use the server as a private server in the public domain. It is only for hosting websites without streams of any kind. The option to chose on what network devices to block inbound traffic, is important so you don't shut / lock yourself out. I have 3 nic's 2 for the public ip's and 1 that's connected to LAN. that one should be excluded so that i don't lose connection/ So my question is, do you know how to achieve this ? can u make easy script that be can used to restart lfd / firewall that stops inbound traffic or blocks it as long as csf / lfd is not active ? Best Regards, Mike

Hi Sandeep, Followed your instructions and it worked almost flawless. the version numbers do not mach in some command lines.. After i changed it it worked as expected. I marked the errors. thanks