The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

AWStats Referrer Check Bug in cPanel 11.25.0-R42399 - WHM 11.25.0 - X 3.9

Discussion in 'General Discussion' started by PCZero, Dec 28, 2009.

  1. PCZero

    PCZero Well-Known Member

    Joined:
    Dec 13, 2003
    Messages:
    526
    Likes Received:
    34
    Trophy Points:
    28
    Location:
    Earth
    Since I upgraded to 11.25.0, all of my clients are getting a nasty warhing message when they go to AWStats.


    Access Denied: Referrer Check

    Functions in cPanel / WHM are available only directly through the cPanel and WHM interfaces or through our XML API. It appears that this request is coming from a referring site and might be malicious. Administrator Note: If new ips were recently bound to this server manually you must restart cpsrvd


    I have added nothing. This happens with accounts on the main shared IP and on other IPs as well. Please advise how to fix this situation. My clients are freaking out.
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,468
    Likes Received:
    196
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    You might check your new options available in the Security section of the Tweak Settings page in WHM. My guess is it's one of those, and/or, how these users are connecting to cPanel itself. (non SSL cPanel URL to SSL AWstats page maybe?)
     
  3. PCZero

    PCZero Well-Known Member

    Joined:
    Dec 13, 2003
    Messages:
    526
    Likes Received:
    34
    Trophy Points:
    28
    Location:
    Earth
    Its not the later, we force all connects to be via ssl. I'll look into the new settings. Thanks.
     
  4. cPanelDon

    cPanelDon cPanel Quality Assurance Analyst
    Staff Member

    Joined:
    Nov 5, 2008
    Messages:
    2,557
    Likes Received:
    7
    Trophy Points:
    38
    Location:
    Houston, Texas, U.S.A.
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    What is the URL being used to access cPanel (e.g., via a proxy sub-domain "cpanel.domain.tld", or via a specific port like 2082 and 2083)?
     
  5. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,460
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    There are two tweak settings in the Security section of Tweak Settings that enable referrer checks:

    Only permit cpanel/whm/webmail to execute functions when the browser provides a referrer. This will help prevent XSRF attacks, but may break integration with other systems, login applications, and billing software. Cookies are required with this option enabled.

    Only permit cpanel/whm/webmail to execute functions when the browser provided referrer (Domain/IP and Port) exactly matches the destination URL. This will help prevent XSRF attacks, but may break integration with other systems, login applications, and billing software. Cookies are required with this option enabled.

    The first one was also in cPanel 11.24.0. These checks are unreliable as they generate too many false positives ( and hence annoyances as you are reporting ). It is recommended that these only be used in situations where the Security Tokens ( also in the Security section of Tweak Settings ) can not be used.

    Some more details on these are found in http://twiki.cpanel.net/twiki/pub/AllDocumentation/ReleaseNotes/recommended_settings.pdf

    and

    http://twiki.cpanel.net/twiki/pub/AllDocumentation/ReleaseNotes/1125releasenotes.pdf
     
  6. Website Rob

    Website Rob Well-Known Member

    Joined:
    Mar 23, 2002
    Messages:
    1,506
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    Alberta, Canada
    cPanel Access Level:
    Root Administrator
    On a related note, Time Zone options in Awstats is needing fixing. Only shows to the letter P.

    cPanel 11.25.0-C42399 - WHM 11.25.0 - X 3.9
    CENTOS 4.8 i686 standard on private
     
  7. cPanelDon

    cPanelDon cPanel Quality Assurance Analyst
    Staff Member

    Joined:
    Nov 5, 2008
    Messages:
    2,557
    Likes Received:
    7
    Trophy Points:
    38
    Location:
    Houston, Texas, U.S.A.
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    What are the AWStats time zone options you are referring to?

    Is it a plug-in or are you seeing this in a stock-default installation?

    If possible, please provide a screen capture/snapshot of the displayed issue.
     
Loading...

Share This Page