Quantcast
Channel: Forums | InterWorx CP
Viewing all 900 articles
Browse latest View live

phpMyAdmin - Error

November 12, 2016, 1:44 am
$
0
0
I haven't made any changes to InterWorx and have just let the updates auto install. But yesterday when I tried to login to phpMyAdmin (for the first time since July) via NodeWorx and SiteWorx I keep getting the following "phpMyAdmin - Error" "Cannot start session without errors, please check errors given in your PHP and/or webserver log file and configure your PHP installation properly. Also ensure that cookies are enabled in your browser."


  • I've tried different browsers - still the same error.
  • The PHP pages that use sessions are working okay.
  • The database used by the PHP pages are still working okay.
  • I've checked the logs and they don't to have anything in them relating to this.


Details:
CentOS 7
interworx-phpmyadmin version 4.0.10.17
InterWorx CP v5.1.34

I haven't made any changes so I can only assume it was an update that has caused this to happen. Apologies if this has already been covered off somewhere else but I did try a search but couldn't find any topic with this issue. Any help is appreciated.
Search

domain redirect to another domain subfolder

November 17, 2016, 3:10 am
$
0
0
Hi
One of our clients asked a question which I thought had been asked on the forums, so I thought I would post here in case it helps someone
Our client wanted to redirect a domain to another domain subfolder, where both domains are on the same server
mytest.url needs to goto test.url/subfolder
Initially I thought domain pointer, but this cannot point to a subfolder
To do this, and I have not tested it, but cannot see why it would not work, would be to login to the siteworx account of the domain which needs redirecting, create a htaccess if one does not exits, on the redirect, you set / as the folder, and input the correct full url of where to point to, http://mytest.url/subfolder, then set the type, permanent, temporary etc...
save and this should work I believe
I hope it helps but sorry if I am wrong
Many thanks
John
Attached Images
  

Roundcube Timezone

November 22, 2016, 5:04 am
$
0
0
Is there a quick way of updating roundcube for all email accounts to the correct timezone? By default it's set to "AUTO" but the time is always out. Like it was showing as 7am rather than the current time in the UK.

The date/time on the actual server is correct.

The manual way of resolving the issue from what I can see is logging into the persons email address then doing Settings > User Interface > Time Zone > Changing that to GMT + 00:00 Europe/London.

Is there a quicker way of doing it?

SSL certificates for all domains

November 25, 2016, 5:42 am
$
0
0
Hey all,

I am trying to wrap my head around a few things regading SSL certificates and maybe some of you can share your ideas or expertise. And maybe I can kick of a discussion about the future plans for SSL.

First off, I have been using StartSSL in the past and was very happy with them and their business model, but since Eddy Nigg has sold Startcom and Mozilla and others have revoked the trust for new startcom certs I have to look of alternatives. Any ideas? What are you using?

The beauty of startcom was that you only paid for the validation, not for the certificate. So I could make as many certs as I liked (and I did). Since we secure our whole infastruture with ssl and since we need certs for many services on each server, we needed wildcard certs anyway.

Now, looking for alternatives I had a closer look at Let's Encrypt too. I don't mind paying for certs but on the other hand I like some of the approaches Let's Encrypt have taken. But they don't offer wildcard certs. They say you should simply create a cert for each and every domain - which is cool and as soon as everything is fully automated is fine with me.

So if I want, I can create separate certs for all major services, like the panel, imap, pop. smtp and so on. But in the future we will have to secure other services too, like DNS for example. And also, are there any plans for implementing the service certs on Nodeworx via Let's Encrypt too? And regarding the automation, is there an automated renewal in place right now (for siteworx, where Let's Encrypt is already implemented) or is it planned? I didn't find anything about that here...

But all that doesn't work the way we resp. our clients usually handle domains anyway. The average customer has a few domains in one account and those domains are either redirected or serveraliases. But for serveraliases I can't install a certificate, or can I? But serveraliases are important in some cases, e.g. in Wordpress multisite installations. The trend is to secure everything in the future and I am all for that. But with the current architecture this won't be possible, right? Also, switching over to one IP per domain is neither practicable nor affordable, the same goes for creating an account for each domain. So we will still have to have several domains in one account and we will still have to use SNI. How then could we ever secure all domains via SSL?

To give one real world example, a company has 3 different domains company.com, company.fr and company.de. Since the website shouldn't simply redirect to company.com but rather stay in the respective visitor's language and domain, we would need to have a certificate for each domain, but the website should be in one account, it actually would be one website in 3 languages and some domain mapping. How can we do that? This problem is not linked to Let's Encrypt though, it is a general problem I am seeing when thinking about how to handle SSL in the future. And let's not forget http2 and TLS being made mandatory by most browsers.

Forgive my ramblings, but it helps me to think, if I write it all down and there are indeed a few questions in here too ;-)

TL;DR


  1. What CA are you using? Any recommendations for a Startcom replacement?
  2. Are you using wildcard certs for the server services, do you have separate certs for each or are you running all services over the same domain?
  3. Are Let's Encrypt certs automatically renewed in Siteworx? Or do we have to renew them manually?
  4. @iworx Is there a plan to implement server/service certs via let's Encrypt too?
  5. Is there a way to install certs for serveralias domains?
  6. What are your plans regarding making https standard?
  7. @iworx Are there any plans to change the current handling of SSL certs and make them per domain and not per account (if possible at all)?
  8. @iworx And what are Interworx plans regarding http2?

Hi everybody

November 25, 2016, 8:43 am
$
0
0
I want to say Hellooo to all, i hope to be around from now.

Better Load Balancing

November 26, 2016, 1:06 pm
$
0
0
I haven't even had a need to setup a cluster yet but I soon will so I'm going to probably wind up going beyond what Interworx can do on its own. Before I started using this panel, I posted a thread about this sort of thing: http://forums.interworx.com/threads/...ales-Questions which happens to be the only thread in this forum that mentions Galera clusters.

I'm starting this thread as a placeholder for using Interworx for what will essentially be a cloud. If anyone has any suggestions or prior experience for such things, this would be a good place for it. Right now I'm just brainstorming a bit. The first 2 things to come to mind...


  • MariaDB Galera Clusters
  • GlusterFS


Here's the clustering docs for initial reference: http://docs.interworx.com/interworx/clustering/

Unwanted Authorization Request

November 28, 2016, 8:58 pm
$
0
0
Hello guys,

I currently working on a webshop project ,which I inherited from previous devs.
This site was working fine, just need magento upgrade and some additional features. It was decided to also upgrade kernel version. I also updated some of the packages that were available.

Now when I go the site, I get authorization request.
Name: auth.png Views: 37 Size: 6.3 KB

I'm not really sure what happened here, and whether it was caused by upgrades.

Any help would be appreciated.
Attached Images
 

Where is the Web-Server Default SSL cert used?

November 29, 2016, 6:05 am
$
0
0
Hi all,

experimenting a bit more with SSL, I came to realize that I dan't know where the Web-Server Default SSL is used. I assumed it would be offered if an https request comes in for a domain, that has no certificate or if one would call https://server_IP. But it's not, another siteworx account's SSL cert is served.

John has written in the past, that one should simply set up the server hostname as a siteworx account (and I assume install the respective SSL cert there), but then I don't get what the Web-Server Default SSL in Nodeworx is used for. Can anybody explain?

I had also hoped to be able to circumvent this workaround by mapping the default site (in Nodeworx - Server - IP Management - Default Sites) to http://server_hostname - but no luck.

Cheers,

Michael
Search

Enable HSTS by default

November 29, 2016, 7:54 am
$
0
0
Hi all,

some things have changed since Michael wrote his great Knowledgebase article here http://licensecart.com/plugin/suppor...sl-security/2/
E.g. the cipher can now be set via the SSL dialogue in Nodeworx. But this does not apply to SSL certs saved in siteworx, does it? Looking at any sites's vhost_domain.conf file, I don't see any mention of the cipher anymore.
Where is the cipher stored. And how can I change it and better yet change the default cipher for all new certificates?

And how can I enable HSTS by default for new cerrtificates? Or is Michael#s way still the only way to achieve perfect results? Could I set both in ssl.conf?

Thanks

Force TLS SMTP connection *to* specifc domain?

December 2, 2016, 9:35 am
$
0
0
Hi Folks,

I have recently been requested to force TLS connections for one of my clients to a specific domain. (please see below. I host billybob.com)

Anyone know how to do that?

tia
dave

+++++++++++++++++++++++++++++++++++++++++++++++++
We’re requesting that your email system be configured to require TLS encryption for any outbound email sent to @sammyjammy.com.

We can easily configure the same setting on our side of things with regards to emails we send to @billybob.com, but when we configure this, we work with the respective business partner so we can configure it from both sides.

This is being requested so that *all* emails sent between us will be encrypted, and we won’t have to rely on end users manually using some sort of manual secure email system to encrypt their outbound emails whenever they send PHI, etc.
+++++++++++++++++++++++++++++++++++++++++++++++++

SMTP Authenication Defaults

December 2, 2016, 11:50 am
$
0
0
Hi,
Recently we are getting several errors on the sendmail system with this error:

Technical details of temporary failure:
TLS Negotiation failed: generic::failed_precondition: starttls error (0): protocol error

I have tried different settings on Nodeworx to tweak the SMTP Auth settings. What are the best working defaults to use with Nodeworx for the best compatibility?

Thanks

Catchall

December 5, 2016, 1:42 am
$
0
0
We have some clients who still like to use a catchall address even though we strongly discourage it these days. But sometimes you just have to keep the clients happy but it seems we are no longer able to enter what email address should be the "catchall" address.

As mentioned here: http://www.interworx.com/support/faq...email-address/

We only have the following:

http://uploadpicz.com/images/2016/12...dfe274004b.png

Has it been fully removed in one of the recent IW updates or maybe a setting has been changed somewhere? We did use to be able to do this and it's only removed in recent times.

Off-Topic:

Google believe this site seems to have been "hacked" - Not sure if that is 100% but thought it would be worth mentioning so someone can check that out.

Cheers,





Turing off catchall results in mailbox failure

December 5, 2016, 2:08 am
$
0
0
Hi all,

a custopmer wanted a catchall adress set up but now realized he gets way too much spam that way ;-)

So I switched the bounce message setting back to "On - Reject". But mails to any recipient are still received, only not delivered into the mailbox. From smtp-current log:

Code:
2016-12-05 10:46:49.601763500 CHKUSER accepted any rcpt: from <me@mydomain.com::> remote <mydomain.com:unknown:123.456.789.123> rcpt <info@domain.de> : accepted any recipient for this domain
Digging a little further I see this in the send-current log:

Code:
2016-12-05 10:53:30.729221500 delivery 206: deferral: Unable_to_switch_to_/home/vpopmail/domains/domain.de:_file_does_not_exist._(#4.3.0)
2016-12-05 10:53:30.728170500 status: local 1/10 remote 0/2552016-12-05 10:53:30.728164500 starting delivery 206: msg 8260552 to local domain.de-info@domain.de

When I try to delete the mailbox in order to set it up from scratch, I get

Code:
» Error: Unable to chdir to vpopmail/domains directory
And in the iworx log I see all kinds of errrors like
Code:
disk usage cmd failed on /home/vpopmail/domains/domain.de/info : vpopmail.php

or

2016-12-05 10:52:09.69516 [isji5l-jjyx-med1-CLI] [INFO]  : Can not set vacation for non-existent e-mail box : vpopmail.php
2016-12-05 10:52:09.65052 [isji5l-jjyx-med1-CLI] [NOTICE]: vpopmail.php --set-vacation-message=/tmp/VACAn9jgXF --user=info --domain=domain.de : vpopmail.php
There is no autoresponder set up, so I have no idea what is happening at the last error. In any case, something is severely amiss with that mailaccount and since I can't delete it, I am not sure on how to proceed.

Any pointers?

SSL Certificate Option

December 5, 2016, 12:10 pm
$
0
0
Hi,

Question, I have 12 domain being hosted within my Interworx CP. Why would only some of them, when accessing Siteworx, offer the SSL option under the Domains option. Some of the domains being hosted have DNS Records and SSL not present when I expand the Domains option under hosting features. Why is this?

Thanks
Lance

Checking for Spam

December 9, 2016, 3:56 am
$
0
0
Is there a way to check the server to see if there is any spam being sent from it? I know in the past the mail queue within the control panel has helped with that as you can see whats stacking up and who it's being sent form.

But I'm just wondering if it's not listed there - Is everything ok as in, no one is sending out junk? Or can we check via command line with the various qmail logs.

Cheers,
Search

Roundcube Update for critical vulnerability

December 12, 2016, 3:56 am

Spamassassin bayes and sa-learn

December 16, 2016, 9:30 am
$
0
0
We are wanting to make use of some features of the sa-learn command, such as --backup and --restore, but there seems to be an issue with the user it's running as. Does anyone know what user has access to the global bayes database?

Also, does anyone know of a way to use a global and per-user bayes db's simultaneously?

Thanks.

Merry Christmas and a Happy New Year

December 17, 2016, 2:07 am
$
0
0
Hi
Wishing IW and everyone a lovely christmas and a happy New Year
Many thanks
John

/usr/bin/imapd maildir

December 20, 2016, 1:45 am
$
0
0
Hi all,

Looking at htop on one of our interworx servers we can see that /usr/bin/imapd maildir is sit at 90% to 100% CPU.

Is this normal usage?

Cheers,

Supported way to have PHP 5.6 and PHP 7.1 on CentOS 7

December 27, 2016, 8:30 am
$
0
0
I just got a new server and upgraded the CentOS 7 base PHP 5.4 to 5.6 with REMI.
I see I can also install PHP 7.1 with "yum install php71" as a second PHP version.

Once I do this, I could add a handler for it in the Apache config, but only one PHP version could run through SUPHP correct?

Would I just make a new php71.conf in the conf.d directory (basically like the php.conf one IW comments out)?
Viewing all 900 articles
Browse latest View live
Search