I need help with this:

Domain: my-domain.com
DNS:

cpanel A IP
www A IP
FTP IP

This is normal, I want to create this:

lnx CNAME www

The system accepts me, but shows no content to display if public_hmtl entered www.

www.my-domain.com to lnx.my-domain.com (I and want to show the same)

That is, is like creating a subdomain and point to the folder but using the DNS.

How can I do?

I am writing this post to explain how accounts on server get hacked. Many times it happens that cpanel accounts on server are hacked. Most common hacks are like index page is replaced with some other code thus defacing your website. Some times this types of hacks happen on all accounts including backup on server. Many times it is also an Iframe Hack where hacker puts an extra code to your website and whoever accesses that website, a virus enters their computer thus infecting it. We are not going deep in to the types of hacking but what I am going to explain here is how can we stop this from happening or at least prevent or avoid from happening. If you are facing issue of Iframe hack then one of our cpanel forum member have posted a good article which you can find it here:

http://forums.cpanel.net/f5/solution...tml#post363227

Now one would ask “How does this hacking takes place?” Such defacing hacking takes place and we get victim of it because we are careless or we don’t have basic knowledge of keeping our site secure. It is us who give a way for any hacking to take place. Any hacking which is taking place by browser happens due to weak permissions. Many common php applications we use like a picture gallery, forum etc are start point of hacking if and only if they are insecure or are of older versions or some files or directories of that applications are having weak permissions like 777 or 755. For example I have a application which has option of uploading a file. Now if that uploaded file is going in directory for example “images” and “images” is having 777 permissions. Now if I upload any defacing script using that options to images directory say “deface.php” then I can easily access that script using link:

http://domain.com/images/deface.php

as the images directory is having 777 permissions I can easily execute that script and can deface that account or website. If the permissions on other directories of server are really weak then I can deface the files in other locations of server also. After uploading the script I find more accounts on server who are having weak permissions then I can run my script from its current location and can hack other accounts too. So in this way your account, some other accounts or even whole server is hacked due to weak permissions. To clear this point I have attached a small php script with this post. Just upload it to your account and access it from browser you will see that you can browse other files on server whose permissions are weak.

THIS IS NOT A HACKING SCRIPT AT ALL, NOR I AM PROMOTING HACKING IN ANY WAY. THIS SCRIPT WILL HELP YOU TO FIND OUT WEAKNESS IN YOUR ACCOUNT SECURITY. THIS IS JUST FOR EDUCATIONAL PURPOSE. IF MODERATORS OF THIS FORUM THINK THIS POST IS AGAINST ANY OF THEIR RULES THEY ARE WELCOME TO DELETE THIS POST.

This script is type of browser to browse files on the server or account, where file permissions are weak like 777 or 755 you can browse them though they don’t belong to your account. This script cannot be used to modify or execute any command so don’t worry :)

So in order to stop all such hackings on the server or to your account always be alert on permissions. Many people use 755 or 777 permissions casually thus becoming victim of some hacking today or tomorrow. Secondly always keep your php applications upgraded to their latest versions so that if there is any code or bug in previous versions they will be cleared. This was very short information but if other forum members want to add more to this they are welcome.

I will be adding more security tips in coming days so stay tuned :cool:

Attached Files

webadmin.zip (17.3 KB)

Having a problem here. As we introduce more & more NUMA servers (basically any machine with more than one CPU that is AMD or the new Intel Nehalem) we find that XEN (guests) not being NUMA aware limits us.

So now that KVM in mainline in RH 5.4 we want to look to a move to KVM as the guests have NUMA awareness.

So, if we switch from Xen to KVM, will it break VPS licensing? Is cPanel KVM aware?

I hope so as not being able to use NUMA for a VPS is a long term problem.

Greetings -

I have an odd issue and would appreciate any suggestions. Any time we create a new account through WHM or simply park a domain on top another one, all the websites on thes server (except for WHM - assuming because i'm going through https) freeze. Apache simply stops responding and I am forced to scroll down to http server in WHM and reset it.

Any ideas?

when i do /scripts/upcp --force

i se theis when finesh

Interchange will not work with a thread-enabled perl.
BEGIN failed--compilation aborted at /usr/local/cpanel/3rdparty/interchange/bin/interchange line 49.

Hello,

I uploading zip archive from file manager and then extract for deployment purpose. Is there any way to findout the source path on server logs (/usr/local/cpanel/access_log) from where file was uploaded. or from anyother away on server ?

normally i upload files from /mydocuments/upload/ folder.

Regards,
Irfan

How can I delete back up files using putty (SSH). I want to know the commands.

I have a dedicated server with 5 ips. I want to change the ip for one of my sites to a different ip. I am told pretty much the site has to be down for a few hours while it propagates.My host tell me there is nothing I can do, but let it be down. Is there a Seamless way to change this?

I am trying to install a new SSL certificate for a domain. The certificate was successfully uploaded. When I go to "Activate SSL on Your Web Site" and select the domain, it does fetch the correct certificate (it matches the emailed one). However, I then get the error "Error from ssl wrapper: Invalid IP specified." I have also tried this from the root WHM SSL/TLS page, but the same "Invalid IP specified" error. And I changed the site's IP to one that is not in use by anything else, but this had no change.

What could be causing "Invalid IP specified"?

when i try to edit exim.conf i have this error

[ Error writing /etc/exim.conf: Operation not permitted ]