Hello!

I would like to increase the safety of brute force on the control panel with either Google Authenticator or CHAPTCHA. I use fail2ban today but do not feel it's enough.

Anyone have any thoughts on this?

Restored from old drupal forum, for user uid:4575 username:VentureSWE
You may reset your password to access your new account here.

In current version.The quota need use phpmyadmin to edit value.Please add this edit quota on control panel.Thanks a lot.

Restored from old drupal forum, for user uid:30183 username:akong
You may reset your password to access your new account here.

I hope http://kfm.verens.com/ KFM (Kae's File Manager) is in the latest ehcp later.
because I think net2ftp is out of date.
net2ftp developers can replace with KFM ..?
for info and excess KFM in http://kfm.verens.com/

Restored from old drupal forum, for user uid:4427 username:dewakomputer
You may reset your password to access your new account here.

In our era, designers and pro spend their utmost efforts to provide their clientele something different that might be completely not the same as other people. <a href="http://www.abercrombieoutlets.me.uk/">abercrombie sale</a>, your store with laid-back clothing and accessories for men, ladies and kids, mostly goals the teachers individuals. What exactly commenced as being a little waterfront go shopping and a factory around New York City has been repositioned with '88 in addition to 92 like a design oriented informal outfits enterprise. </p> <p>Business is renowned for a lively perspective available within the design of this specific balanced in addition to running garments, and that is encouraged by means of classic design apparel. It sometimes brand name offers drifted out of the sportswear topic, there is certainly nonetheless a specific sport sense towards greater part of its outfits, that also mirrors this tough All-American life-style. Coming from coats to help under garment, frolic near the water pants to help t shirts, and with regards to any product associated with apparel, <a href="http://www.abercrombieoutlets.me.uk/">cheap abercrombie</a> presents every one of the goods.</p> <p>This company is really a lot renowned for the products materials in their products. Your tender, soft material used in tops and knit tops means they a joy to utilize. They are created from a solid jean material clothing that is definitely difficult, yet hot. Old-fashioned polo's are produced inside of a choice of colors by using diverse sleeve programs, for guys and females.</p> <p>For the recreational meet up amid friends, you will find limited in addition to weight reduction outfits manufactured from clothing, which is fitted, yet not clingy. At the conclusion of the morning, your pajamas made of suede 100 % cotton provide the much-needed comfort and ease.</p> <p>Even though Abercrombie and Fitch are known for this is substantial assortments involving garments, what's more, it gives some other merchandise. This is a excellent spot to shop for a wonderful gift idea coming from totes inside shearing or perhaps cotton canvas to help unique perfume. Belts, of several measurements, materials and styles, and chic connections, made from cotton along with combined mixes, are available on Abercrombie and Fitch stores.</p> <p>Your <a href="http://www.abercrombieoutlets.me.uk/">abercrombie & fitch uk</a> outfits aren't the same as the other relaxed solutions available in the market and present the accessories in which go with apparel include each point of view for the situation. By comfy silk cotton lingerie towards the luscious smell scents and also fragrances, the shopper is never discontented while using excellence of the products and solutions. For virtually every fashion smart person, the products are generally collectibles.

Restored from old drupal forum, for user uid:4727 usernametomassabo
You may reset your password to access your new account here.

On Ubuntu, Im currently wanting Apache behind an Nginx Proxy which really would work fine with one exception:

Apache waits on Port 8888 and only accepts connections from 127.0.0.1 Nginx listens on Port 80 to the real world - servers static content, does load balancing and handles proxy requests to Apache listening on 8888.

The Problem is:

PHP Scripts executed by Apache experience that the server Port is 8888. Scripts like phpmyadmin or nusoap provide redirecting and use this port as part of the redirect url. The Problem is Port 8888 is not visible from the outside thus no connection can be established.

Do you know where the configuration went wrong or how i can force php to think it is working on a port 80 Apache server?

As I cannot pin down the problem I have no clue whether posting my configuration files would help. Maybe its just an option I forgot or stuff.

But i have found some helpful info, and i think it's best i share it as i move along,

There are basically two main parts involved in the configuration, one relating to Apache and one relating to Nginx.

Note that while we have chosen to describe the process for Apache in particular, this method can be applied to any other HTTP server. The only point that differs is the exact configuration sections and directives that you will have to edit. Otherwise, the principle of reverse-proxy can be applied, regardless of the server software you are using.

Reconfiguring Apache

There are two main aspects of your Apache configuration that will need to be edited in order to allow both Apache and Nginx to work together at the same time. But let us first clarify where we are coming from, and what we are going towards.

Configuration overview

At this point, you probably have the following architecture set up on your server:
•A web server application running on port 80, such as Apache
•A dynamic server-side script processing application such as PHP, communicating with your web server via CGI, FastCGI, or as a server module

The new configuration that we are going towards will resemble the following:
•Nginx running on port 80
•Apache or another web server running on a different port, accepting requests coming from local sockets only
•The script processing application configuration will remain unchanged

As you can tell, only two main configuration changes will be applied to Apache as well as the other web server that you are running. Firstly, change the port number in order to avoid conflicts with Nginx, which will then be running as the frontend server. Secondly, (although this is optional) you may want to disallow requests coming from the outside and only allow requests forwarded by Nginx. Both configuration steps are detailed in the next sections.

Resetting the port number

Depending on how your web server was set up (manual build, automatic configuration from server panel managers such as cPanel, Plesk, and so on) you may find yourself with a lot of configuration files to edit. The main configuration file is often found in /etc/httpd/conf/ or /etc/apache2/, and there might be more depending on how your configuration is structured. Some server panel managers create extra configuration files for each virtual host.

There are three main elements you need to replace in your Apache configuration:
•The Listen directive is set to listen on port 80 by default. You will have to replace that port by another such as 8080. This directive is usually found in the main configuration file.
•You must make sure that the following configuration directive is present in the main configuration file: NameVirtualHost A.B.C.D:8080, where A.B.C.D is the IP address of the main network interface on which server communications go through.
•The port you just selected needs to be reported in all your virtual host configuration sections, as described below.

The virtual host sections must be transformed from the following template

ServerName example.com ServerAlias www.example.com [...]
to the following:

ServerName example.com:8080 ServerAlias www.example.com [...]
In this example, A.B.C.D is the IP address of the virtual host and example.com is the virtual host's name. The port must be edited on the first two lines.

Accepting local requests only

There are many ways you can restrict Apache to accept only local requests, denying access to the outside world. But first, why would you want to do that? As an extra layer positioned between the client and Apache, Nginx provides a certain comfort in terms of security. Visitors no longer have direct access to Apache, which decreases the potential risk regarding all security issues the web server may have. Globally, it's not necessarily a bad idea to only allow access to your frontend server.

The first method consists of changing the listening network interface in the main configuration file. The Listen directive of Apache lets you specify a port, but also an IP

I have 100 active domains on my EHCP server. When I add new domain/subdomain you know what it happening then. It take ages when HD stops with W/R actions. Can be this process of adding new domain/subdomain somehow easyer (lighter) because I think all domains are processed when i just add one domain.

If I add 10 domains one after anoter this process take 10 times longer ...

i hope you know what i talking about

just my thinking (i'm not expert): maybe you should not run that process everytime when new domain is added but just once on 30 minutes when there are new domains in table "operations"...



Restored from old drupal forum, for user uid:2724 username:tristar
You may reset your password to access your new account here.

Ehcp yükleme sırasında çok fazla soru soruyor. Admin şifresi, databaselerin şifreleri, 815 kb hdd yer kaplayacak gibi gereksiz sorular vb. Silent kurulum yapılamaz mı?

Restored from old drupal forum, for user uid:4226 usernameiella
You may reset your password to access your new account here.

Hey All,

I've noticed that there's no easy way to show a user his files on the server temporarily until a domain is purchased or the DNS is updated. Sometimes, users are in the process of procuring a domain name, but would like to start using their hosting service right away. I've seen in other control panel software that you can typically use:

http://ip_of_server/~username or ( ns.domain.com/~username if not using wildcards ) which redirects to the user's first domain's main index folder. I guess the current structure of how domains are created in EHCP wouldn't work very well with this idea because there could be several domains. But as long as /~username maps to the domains, the user could type: http://ip_of_server/~username/mydomain.com

Currently, you can map it manually by using http://ip_of_server/vhosts/user/domain, but this would make it a lot easier.

I hope I've made myself clear. It's a bit difficult to explain. If this is too hard to implement or not worth the time, please just ignore this suggestion. I'd be happy to clarify if my idea isn't clear.

Restored from old drupal forum, for user uid:2735 username:own3mall
You may reset your password to access your new account here.

I mentioned this once before, but I just wanted to make sure it's on the forums

Instead of forcing users to upload their subdomain files in the subdomains directory, could the user be prompted for their own custom path during creation based on their permissions and home folder? For example, I want forums.mysite.com to link to my httpdocs/forums folder instead of httpdocs/subdomains/forums. Would be cool in a future version if you could add that feature.

Restored from old drupal forum, for user uid:2735 username:own3mall
You may reset your password to access your new account here.

First off, I lack the expertise to implement this feature or even begin to configure it. In fact, I hardly understand it myself, but it would seem that using the suPHP module alongside apache would yield the most secure and ideal setup for a webserver. Thus, this is an extremely low priority feature request, and I don't know if it's needed or not.

From my understanding, suPHP allows users to OWN only their virtual host directories allowing them access and full ownership over their files. With this setup, it allows users to be able to write files into their owned directories without chmodding them to 777. Currently, when files are uploaded via the EHCP setup, they are all owned by vsftpd and belong to the group of nobody. Thus, if one user is hacked, since the files are owned by vsftpd, everyone's files are hacked. Also, some scripts do not play nicely in terms of modifying / uploading files if they are owned by another user.

Quote from suPHP experts:

If suphp or suExec is installed and configured properly on your web server, then all the files in your directory should belong to you, and the webserver will be able to read and write any files you can read and write. When the webserver creates a file in your directory, it belongs to you. In this case, only the file's owner needs permission to write to files and execute directories. CHMOD permission of 644 for files (owner:read+write, group:read, world: read) and 755 for directories (add the ability to "execute" directories) will be sufficient.

When web hosts don't use suphp or suExec:

In this case, you still own files you create using ftp. Every time you use ftp to copy files to the server, they belong to you. But the webserver on these hosts does not run as you. It may run as "nobody", or else as a special username, perhaps "www-data" -- users who don't belong to the same group as your username does. This means that the webserver will not be able to write files in your directories unless you grant world write permission to your files and directories (chmod 777 for directories, 666 for files). Any new files created don't belong to you. That means that, if you are going to need to work with them later, you'll need to make these files world-writable, and directories world-executable, so that you can edit the webserver's files or delete them from webserver-created directories.

Some Interesting Guides / Reading:

http://www.howtoforge.com/how-to-set-up-apache2-with-mod_fcgid-and-php5-on-ubuntu-10.04
http://www.alain.knaff.lu/howto/PhpSuexec/
http://ubuntuforums.org/showthread.php?t=1770059&highlight=suexec

Not sure if this is even worth touching... just a thought.


Restored from old drupal forum, for user uid:2735 username:own3mall
You may reset your password to access your new account here.