Search results

  1. inetbizo

    Git Repositories That Have SSH2 Key With Password

    Error: “/usr/local/cpanel/3rdparty/bin/git” reported error code “128” when it ended: Warning: Permanently added 'github.com,192.30.253.112' (RSA) to the list of known hosts. Permission denied (publickey). fatal: Could not read from remote repository. Please make sure you have the correct access...
  2. inetbizo

    Git Repositories That Have SSH2 Key With Password

    I would like to clone a repository on Github. On Github, I have stored my RSA 256 public key. This key is encrypted with a password. I cannot clone in cp repositories because you do not prompt for pass key. I wrote this into .bashrc if [ ! -S ~/.ssh/ssh_auth_sock ]; then eval `ssh-agent`...
  3. inetbizo

    SOLVED [mpm_worker:error] AH00288: scoreboard is full, not at MaxRequestWorkers

    Sometimes it's just the obvious. It turns out that the sub-domain root was set incorrectly and the SSL SNI for that sub-domain wasn't set correctly. Thanks!
  4. inetbizo

    SOLVED [mpm_worker:error] AH00288: scoreboard is full, not at MaxRequestWorkers

    [Tue Jan 30 18:42:49.265800 2018] [mpm_worker:error] [pid 29496:tid 140522978162656] AH00288: scoreboard is full, not at MaxRequestWorkers [Tue Jan 30 18:42:50.271331 2018] [mpm_worker:alert] [pid 23403:tid 140522387121920] (11)Resource temporarily unavailable: AH03142: apr_thread_create: unable...
  5. inetbizo

    centOS 6 and CVE-2016-6210

    After changing to centOS 7, I am still hit with this CVE. openssh-6.6.1p1-35.el7_3.x86_64
  6. inetbizo

    JailShell Question

    Can you confirm whether or not the bin => logrotate will work for the user? I have custom conf for logrotate within their user space.
  7. inetbizo

    centOS 6 and CVE-2016-6210

    I nominate CVE-2016-6210 to go into your kb or q/a for pci
  8. inetbizo

    centOS 6 and CVE-2016-6210

    Once migrated to centos 7, how should I respond to a QSV for CVE-2016-6210
  9. inetbizo

    PHP-FPM Binary

    I'll see if I can figure out something else then without having to custom make for cpanel alone. You all can, of course, fork it and customize it to meet cpanel's needs. Many notices have no idea what to input for pool size.
  10. inetbizo

    PHP-FPM Binary

    Not what I would like. This repo is supposed to be for any system. Making API calls makes things over complicated. There are RPMs for PHP5 / PHP7.0-FPM that have a binary file to call php-fpm. Do you use the RPMs?
  11. inetbizo

    PHP-FPM Binary

    That was absolutely useless. I don't need the CLI path to php binary. I needed the FS path to detect php[5/7.0]-fpm Sorry for the confusion.
  12. inetbizo

    centOS 6 and CVE-2016-6210

    Ugh! Pain in the butt to reharden a new server and migrate everyone! Wasn't there a feature request about duplicating all settings to new box as a starting point? One of my very populated CP boxes IS centos6 =(
  13. inetbizo

    centOS 6 and CVE-2016-6210

    Michael what you think about compensating controls in /etc/ssh/sshd_conf.conf MaxAuthTries 3 from my github.com/denverprophitjr/Linux-Administration/blob/develop/etc/ssh/sshd_config#L19 repo If you tie this in with CSF/LFD configuration to read syslog and ban IP after the 4th attempt...
  14. inetbizo

    PHP-FPM Binary

    Hey Michael. I actually forked and probably will have to maintain the repo, too. The bash script currently determines installation at github.com/denverprophitjr/php-fpmpal/blob/master/php-fpmpal.sh#L64 In centOS 6 cpanel 64 build 33 this script failed to determine that php-fpm was installed...
  15. inetbizo

    centOS 6 and CVE-2016-6210

    According to CVE-2016-6210 - Red Hat Customer Portal "A covert timing channel flaw was found in the way OpenSSH handled authentication of nonexistent users. A remote unauthenticated attacker could possibly use this flaw to determine valid user names by measuring the timing information."...
  16. inetbizo

    PHP-FPM Binary

    Where is the actual binary? I came across github.com/denverprophitjr/php-fpmpal from some other source. And, I need to update php-fpm binary locations.
  17. inetbizo

    X-Frame-Options cPanel Ports

    X-Frame-Options Deny on those ports for whatever service they serve such as the opening webmail menu. The QSV did not find a security header to bust iframing. Add X-Frame-Options Cpanel Ports
  18. inetbizo

    X-Frame-Options cPanel Ports

    The QSV is dinging ports 2082, 2083, 2087, 2096 Can you all patch this up?
  19. inetbizo

    phpize command not found

    You guys really need to get these into the /etc/bashrc as aliases to the real command in CP 60.x
  20. inetbizo

    EasyApache 4 Usage

    Will all the cipher settings and such disappear? We JUST finished complying with SAQ-D and I'd hate to have to reconfigure everything from scratch, again. Have you done Penetration testing and certify DSS?