Jump to content
Froxlor Forum

rolo2912

Members
  • Content Count

    26
  • Joined

  • Last visited

Community Reputation

6 Neutral

About rolo2912

  • Rank
    Froxie
  1. rolo2912

    Peer’s Certificate has expired.

    Ok, very sorry for this. Running all the cron-jobs in the world did not restart the apache webserver because there was an error in one of the SSL config files. So no reload of the webserver was done and hence the cert request not updated. Fixed this temporarily and restarted apache manually and it worked again.
  2. Bit clueless about this on. Have letsencrypt running for a good number of month. Works perfect so far. Now on domain is giving me trouble. At present the error message is: Connection not secure ... Advanced: https://www.pharmabrutscher.de/ Peer’s Certificate has expired. HTTP Strict Transport Security: false HTTP Public Key Pinning: false Checking the setting I found that the SSL Cert had expired. I have deleted the Cert, deleted the files in /etc/ssl/froxlor-custom and removed 2 alias domains (just in case that is giving troubles). Removing the SSL support and LetsEncrypt features in the domain and adding them again trigged the creation of a new cert and under SSL it apears to be valid. Still both firefox and chrome complain about an expired certificated. What am I missing here? Not too sure what is meant by Peers Certificate? All other Certs are running perfectly and get updated. Maybe someone can kindly give me a hint in the right direction. Very much appreciated. Thank you.
  3. rolo2912

    Global htpasswd for securing the froxlor root

    In an earlier post it was mentioned: not from within the panel...but just add something like this to a manually created config file that you are able to include in apache.conf I tried the following: In the apache2.conf I added this: IncludeOptional sites-enabled_froxlor/*.conf In the newly created folder I added a file froxlor.conf with the following content: <Directory "/var/www/froxlor/"> Options -Indexes AuthType Basic AuthName "Restricted Area" AuthUserFile /etc/apache2/froxlor_htpasswd/froxlor.htpasswd require valid-user </Directory> The password file is stored in the /etc/apache2/froxlor_htpasswd/froxlor.htpasswd file. However the Apache is not picking up the directions. It is reading the file froxlor.conf for sure. If for example the </Directory> is missing it gives an error message on restart. My guess is, that it is ignored, because the file 10_froxlor_ipandport_xx.xxx.xxx.xx.xx.conf contains the <Virtual Host> including the <Director> options for the var/www/froxlor directory and everything outside the Virtual Host is ignored. Is there any possibility to get the Baisc Authentification working for the froxlor directory? Thank you for any hint.
  4. rolo2912

    DMARC & SFP

    Is the setting causing problems when using the Email forwarding to an external email address? IE: email address abcdef@adomainonfroxlorserver.com forward to abcdef@gmail.com
  5. rolo2912

    DMARC & SFP

    Thanks for your quick response. I am using external nameservers, so can you tell me, please, what the standard TXT Record is that is used in froxlor?
  6. rolo2912

    DMARC & SFP

    Just wondering, is anyone using DMARC or SFP settings on the Nameservers to protect against spoofing. Never noticed it before but on gmail they seem to check against sfp settings. Before: Received-SPF: none (google.com: info@xxxxxxxxxxxxx.ie does not designate permitted sender hosts) client-ip=xx.xxx.xxx.xxx; Authentication-Results: mx.google.com; spf=neutral (google.com: info@xxxxxxxxxxxxx.ie does not designate permitted sender hosts) smtp.mail=info@xxxxxxxxxxxx.ie Received: from www.xxxxxxxxxxxx.ie (xxxxxxx.xxxxxxserver.net [xx.xxx.xxx.xxx]) After adding a TXT record to the Nameserver: TXT "v=spf1 mx -all" Authentication-Results: mx.google.com; spf=pass (google.com: domain of info@xxxxxxxxxxxxx.ie designates xx.xxx.xxx.xxx as permitted sender) smtp.mail=info@xxxxxxxxxxxx.ieReceived: from www.xxxxxxxxxxxx.ie (xxxxxxxxxx.xxxxxxxxserver.net [xx.xxx.xxx.xxx]) by xxxxxxxxxx.xxxxxxxxserver.net (Postfix) with ESMTPA id fsdasdsdafsfdxxsdfadsf My Questions: 1. Did anyone implement this on all the domains running on a froxlor server? 2. If Yes, what record did they use? 3. Is there anything to watch out for? IE. The sender domain is not the one specified in the Postfix-Configuration. Does this cause problems? Thank you for any feedback. Regards, rolo2912
  7. rolo2912

    [solved] CBL Blacklist

    Thanks so much for this link. Installed it.
  8. rolo2912

    [solved] CBL Blacklist

    That is the problem. No unusual activity. I have logwatch running and the outgoing emails reported are not a lot and all send to the typical receipient. My question is if there are modifications out there that bypass the standard MTA and use the server to send out spam? If yes, how can they be detected?
  9. rolo2912

    [solved] CBL Blacklist

    Got an email from my blacklist-monitoring service with the following content: Various sorts of open proxies. An open proxy is generally a web server that allows email sending to piggyback on a script that sends email. Dedicated Spam BOTs used to send spam. Worms/viruses that do their own direct mail transmission. Trojan-horse or "stealth" spamware. Did anyone else ever experience this? Checked the log-files but cant find any unusual activities. Could it be that the spam is sent out "under the radar" not loged in the logfiles? How can I check if the webserver is an open proxy? Thank you for any advice.
  10. In case someone else is having the same problem, it eventually worked for me after I deleted the 2 columns backup_allowed backup_enabled in the panel_customers table.
  11. Updating from 0.9.20-svn1 to 0.9.20-svn2We are sorry, but a MySQL - error occurred. Error in syslog reads: MySQL - Error: Invalid SQL: ALTER TABLE `panel_customers` ADD `backup_allowed` TINYINT( 1 ) NOT NULL DEFAULT '1'; ErrNo: 1060; Desc: Duplicate column name 'backup_allowed'; Script: /froxlor/admin_updates.php?; Ref: http://xx.xxx.xxx.xxx/froxlor/admin_updates.php?page=overview&; b26e2202b7d1633bf47b3651bf4d4234 Tried the following: delete table backup_allowed. Didn't work. checked bug tracker, no explanation given. Reference to a bug #738, #742 didnt work. Any help appreciated.
  12. rolo2912

    IPs anonymisieren

    Hallo NG, hat jemand schon seinen Apache Server so angepasst, dass die logfiles nur noch anonymisiert gespeichert werden? Wenn ja, wie? Die Diskussion ?ber Notwendigkeit aufgrund von datenschutzrechtlichen Bedenken kocht ja immer wieder hoch. Vielen Dank f?r feedback. rolo2912
  13. rolo2912

    Funktionsweise Backup

    Sorry, kann es nicht finden. Wo im Wiki wird die Funktion und Konfiguration beschrieben ? As ever, vielen Dank f?r feedback.
  14. rolo2912

    maildrop.log

    Just wondering. For each email account a maildrop.log file is created. This file is not covered by any log-file rotation system. Did anyone manage to get these log-files to rotate like the apache logs and other logfiles ? If yes how ?
  15. My 1 cent thoughts : google ads if needs to be. It is extremly pleasent to have a forum without any adds. Maybe 2 versions of the forum (with/without ads); pay for without. It would be interesting to see how many users (servers) are out there using froxlor. This would give an idea how much could be raised. pay for features, good idea. sponsers, yes. Is this option currently available ?
×