The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Suggestion for cpanelnick and cpanel development team

Discussion in 'General Discussion' started by bsasninja, Aug 13, 2007.

  1. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    Nice to see that you added the scanning limit to spamd daemon in the new tree! :D
    Here is a little list of nice features that are missed in cpanel. Some of them dont require too much programming indeed and could be available in the next updates:

    1 - Max Mail Lists. When you disable mailman at tweak settings, you get mailman totally deactivated. Ok, but when you as root or a reseller creates a new account de Max Mail List feature is still visible.
    Would be nice that this option be hidden when mailmain is deactivated.

    2 - Limit Max backup size. Is not the same to backup a 5mb site than a 1gb site. Sometimes users backup heavy sites in high traffic hours creating high load peaks, causing the gzip task to take too much time in compress the heavy site.
    Would be excelent to have an option from root side for cpanel users to limit the backup size. Example: limit backup size 100mb. If your site is larger than 100mb then a warning message appears telling you that size "Your site seems to large, backup of this site could be done upon request. Please contact sysadmin" or something like that.

    3 - Limit Phpmyadmin import/export size. Same as above. Big databases import/export could cause system overloads.

    4 - /Scripts. Two scripts to remove all boxtrapper files and all ./INBOX_ mbox format files to free up disk space.

    5 - Rate Limit Feature for Exim Configurator Editor. To delay mass mailing over server smtp.

    6 - Non local user relay prevention for Exim Configurator Editor. When you setup an account in your mail client which any kind of address and relay using an authenticated server user, then de mail goes out.
    Would be nice that exim checks the From: field to verify that is a local user of the system and is allowed to relay. If the From: contains an address that doesnt belong to the server then refuse it. I´ve seen lot of users relaying with authenticated users using emails that belongs to hotmail, aol, etc. This will be a good layer of smtp security.

    7 - Prevent creation of account with shell access bug Shell access is disabled at reseller center, when a reseller creates a package. There is no ssh option, but when the reseller edit the package, the shell access option is visible. This must be removed.

    That´s it for now. If other idea comes I will post it. ;)

    Bye!
     
    #1 bsasninja, Aug 13, 2007
    Last edited: Aug 13, 2007
  2. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    I would highly recommend you submit these feature requests to our feature request system at http://bugzilla.cpanel.net so our development and QA team can review these recommendations.
     
  3. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    All of them in a single bugzilla ticket or separate?
    I will try to dig myself into the 2 exim rules I requested to see if I can make it work manually. Then I will post the code so you can add it to the cpanel tree.

    Right now Im testing feature number 6, I´ll post it when I complete the tests.

    Thanks

    ps: I never used the smtp tweak at tweak security. What it really does exactly?
     
    #3 bsasninja, Aug 13, 2007
    Last edited: Aug 13, 2007
  4. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    I would recommend separate entries only so that people can vocalize their support for an individual feature and we don't wind up having a bugzilla entry with much cross-conversation about different functionalities.

    As for SMTP Tweak: if I was a spammer and wanted to execute a PHP script to send spam, I probably wouldn't use your SMTP servers since I know it's cPanel/WHM and as such likely has some form of mail throttling. So, instead as a hypothetical spammer, I may use a remote SMTP server I have set up. SMTP Tweak prevents this from happening, thus deterring spammers from using your server as a safe haven to run their scripts.
     
  5. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,458
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    I cannot duplicate this on 11.8.0-R16295

    Created reseller
    Ensured the Prevent Accounts from being created with shell access limitation was enabled and the privilege Allow Creation of Packages with Shell Access was not enabled (the first one is checked, the other is not checked).
    The only privileges the reseller has is: create account, list account, add/delete packages and edit packages
    Logged in as reseller
    Create a basic package (all 1's in the value fields). The shell checkbox was not displayed.
    Edited the same package. The shell checkbox is not displayed.

    Which build/version of cPanel are you still seeing this on?
     
  6. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    Yeah, seems that is solved by latest release. Anyways you should check out the max mail list feature cause that one still shows up. :)

    Bye!
     
  7. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    According to point 6 there was a rule relay_match_host_or_sender but was removed at exim 4.2 version.
    Now relay control must be achieved by using acl. I´ve read exim docs but the examples are not very helpful...

    bye!
     
  8. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    A big thing that should take care off is the bandwidth usage of smtp services.
    Cause seems that smtp server is not being reflected in the domain bandwidth usage.

    Thanks
     
  9. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,458
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    Is this strictly straight SMTP usage, no PHP scripts in the middle to muddle the stats?
     
  10. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    no, just relay from the smtp server. No php or webmail in the middle.
     
  11. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    The smtp tweak feature modify exim.conf or is a internal code of cpanel core?

    Thanks
     
  12. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,458
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    I can't recall the full details off hand, but it supplements exim.conf (look at some of the other exim.* files in /etc) to prevent the unauthorized use of SMTP. It also relies upon configuring PHP to use /usr/bin/sendmail to send email when using the mail() function.
     
  13. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    Ok, I will check out before doing some mess.

    Last month I did some tests with assp x but I cant get it work so I restored the exim.conf back again.
    Last days when I updated cpanel exim was failing, when I checked the exim.conf was replaced by the one by asspx.
    I replaced it manually from a backup I have and everything goes back to normal.

    Im seeing that this files are modified:

    etc/exim.conf.buildtest
    etc/exim.conf.dist
    etc/exim.conf.local

    Is there a way to restore them to the original provided by cpanel ? Cause they still have info of assp inside of them.

    Thanks
     
Loading...

Share This Page