Update 3Ware Firmware

April 22nd, 2010 by tech No comments »

1. Grab the tw_cli software, as well as the firmware for your RAID card from http://3ware.com/support/download.asp
2. Extract the firmare .zip file with “unzip”, then extract the tw_cli software and make it executable.

[root@vz ~]# tar -xvf tw_cli-linux-x86_64-x.x.x.tgz #chmod +x tw_cli

3. Then you can update the firmware (this assumes that you’re doing so on the first array)

# ./tw_cli /c0 update fw=/root/prom0006.img

Warning: Updating the firmware can render the device driver and/or management tools incompatible. Before you update the firmware, it is recommended that you:


1) Back up your data.
2) Make sure you have a copy of the current firmware image so that

you can roll back, if necessary.
3) Close all applications.
Examining compatibility data from firmware image and /c0 ... Done.
New-Firmware        Current-Firmware    Current-Driver      Current-API

------------------------------------------------------------------------

FE9X 3.08.00.029    FE9X 3.04.00.005    2.26.08.003-2.6.18RH2.06.01.006
Both API and Driver are compatible with the new firmware.

Recommendation: proceed to update.

Given the above recommendation... Do you want to continue ? Y|N [N]: Y Downloading the firmware from file /root/prom0006.img ...

4. Finally, reboot to enable the new firmware.

No comments »

Posted in Linux

Tags: 3ware

How to Install cPanel DNSonly

April 22nd, 2010 by tech No comments »

Installing cPanel DNSonly should only be done on a fresh installation of a supported OS.

cd /home wget http://layer1.cpanel.net/cpanel-universal-dnsonly-install.sea sh cpanel-universal-dnsonly-install.sea cd cpanel-universal-dnsonly-install sh install

No comments »

Posted in cPanel, DNS

Tags: dnsonly

cPanel and WHM Plugins / Addons

April 10th, 2010 by tech No comments »

I thought I’d put together a quick post with links to various cPanel & WHM plugins. I haven’t used all of these, so don’t consider this an endorsement of any kind. For now, check out the cPanel forums apps and plugins area which in you might find better reviews.

Eventually I’ll post a review of these (at least the free ones) as time allows.

Free WHM Plugins

ConfigServer.com Firewall – manages iptables, handles brute force attacks, and much more. This is one that I’ve used, and definitely recommend.
ConfigServer.com ModSec Control – modify ModSecurity rules on a global or per-user basis, and view logs.
NDCHost’s Clean Backups – clean backups for accounts which don’t exist after a certain period, automated, or on a manual basis.
NDCHost’s Account DNS Check – Checks and reports domains which don’t resolve to the assigned IPs in http.conf.
ConfigServer.com Explorer – provides a “File Manager-like” interface allowing you access to your filesystem via GUI.
ConfigServer.com Mail Queues – Stats and management of your server’s mail queue.
ConfigServer.com Mail Manage – Management of your email accounts, important statistics, and displays of accounts over quota, over a certain size, etc.

Pay WHM Plugins

ConfigServer.com’s eXploit Scanner – active scanning of your server to prevent exploits.
NDCHost’s Secondary MX – Turns a cPanel DNSonly install into a backup MX server.

Free cPanel Plugins

cPanel’s cPAddons – Allows installation of several popular PHP scripts. Installed via WHM >> Install cPAddons.

Pay cPanel Plugins

Netenberg’s Fantastico – Installs over 50 popular PHP scripts [List]. The vast majority are free, open-source software, though a few require a license.
Softaculous – over 130 PHP scripts.

No comments »

Posted in cPanel, WHM

Locked out via iptables? Autofix it!

April 10th, 2010 by tech No comments »

If you’ve locked yourself out of your server via iptables, or made some incorrect updates to your sshd_config, but you can login via WHM, autofixer is about to be your best friend. If you can’t get into WHM, this is not going to be something you can utilize.

https://yourdomain.com:2087/scripts2/doautofixer?autofix=iptablesflush

This script will do a flush of your iptables chains, allowing you to login and correct your configuration.

https://yourdomain.com:2087/scripts2/doautofixer?autofix=safesshrestart

This will terminate your existing sshd daemon, and start SSH on port 22, or, if that’s your normal default port, it will start sshd on port 23, so you can login and make your corrections.

Other autofixer scripts are listed at http://httpupdate.cpanel.net/autofixer/ and can be run by inserting them after the following URL, after logging into WHM:

https://yourdomain.com:2087/scripts2/doautofixer?autofix=

No comments »

Posted in WHM

Tags: autofixer iptables sshd

How to Install EAccelerator, IonCube, Zend Optimizer, SourceGuardian, and SuHosin outside of EasyApache

April 10th, 2010 by tech No comments »

Many don’t know that you don’t need to run EasyApache to install EAccelerator, IonCube Loader, Zend Optimizer, SourceGuardian, or SuHosin. Why waste your time?

You can use /scripts/phpextensionmgr to install or uninstall these modules!

# /scripts/phpextensionmgr list Available Extensions: EAccelerator IonCubeLoader Zendopt SourceGuardian PHPSuHosin

So, if you wanted to install Zend Optimizer, you’d run:

# /scripts/phpextensionmgr install Zendopt Installing Zendopt Determining PHP version Installing Zend Optimizer binary Activating Zend Optimizer in /usr/local/lib/php.ini Zend Optimizer activated Skipping install to /usr/local/php4, missing php.ini

Easy peasy.

No comments »

Posted in Apache, EasyApache, PHP

Modifying your PHP Handler Configuration via SSH

April 10th, 2010 by tech No comments »

Your PHP handler and SuExec configuration can be modified in WHM >> Apache Configuration >> PHP and SuExec Configuration, but if you’d like to make your change via SSH, you can use rebuild_phpconf.

Note: with this utility, you can not add new handlers, or enable an alternate PHP version if it’s not installed. You’d need to use EasyApache to enable that change.

What’s my current configuration?
# /usr/local/cpanel/bin/rebuild_phpconf --current Available handlers: suphp dso cgi none DEFAULT PHP: 5 PHP4 SAPI: none PHP5 SAPI: suphp SUEXEC: enabled

Let’s say I wanted to switch to DSO, keeping PHP4 disabled, and SuExec enabled:
# /usr/local/cpanel/bin/rebuild_phpconf 5 none fcgi 1

For reference, the usage details:
Usage: /usr/local/cpanel/bin/rebuild_phpconf [--dryrun] [--no-restart] [--no-htaccess] [--current|--available] --dryrun : Only display the changes that would be made --no-restart : Don't restart Apache after updating the php.conf link --no-htaccess : Don't update user configurable PHP mime mapping. --current : Show current settings --available : Show available handlers and PHP SAPIs : Version of PHP to set as default handler for .php files : Type of Apache module to use in serving PHP requests : enabled, disabled, 1 or 0

No comments »

Posted in Apache, Command Line, PHP

Why isn’t this RPM found in yum?

April 10th, 2010 by tech No comments »

cPanel disables the installation of a number of RPMs, and with good reason. cPanel installs some of these packages via source, and others are modified by cPanel prior to installing them via “upcp”.

This post is here for reference of the default excludes. Excluded packages should not be removed from /etc/yum.conf, as doing so is very likely to break integration with cPanel!

# grep exclude /etc/yum.conf exclude=apache* bind-chroot courier* dovecot* exim* httpd* mod_ssl* mysql* nsd* perl* php* proftpd* pure-ftpd* ruby* spamassassin* squirrelmail*

No comments »

Posted in Command Line

Bug in Mailman version 2.1.12.cp3

April 10th, 2010 by tech No comments »

Error:Bug in Mailman version 2.1.12.cp3

We're sorry, we hit a bug!

Let’s make sure that all other permissions are set properly:

# ./usr/local/cpanel/3rdparty/mailman/bin/check_perms No problems found

As mailman is working properly on this server, no errors were discovered, but as you’re received the error above, you’ll likely see some errors displayed.

No comments »

Posted in Exim

Tags: mailman

DomainKeys and SPF Record Checking

April 10th, 2010 by tech 1 comment »

You probably know that you can configure DomainKeys and SPF records in cPanel >> Email Authentication (if you didn’t, there you go ). If you’d like to confirm that your TXT records are working properly, here are some resources for you:

SPF Record Check – via HTTP
PoliteMail’s SPF Check – outputs a brief breakdown of your records details – the IP addresses permitted in the record, the hostname, and the mailserver name. Then outputs the TXT record it queried.

MXToolBox’s SuperTool – Provides SPF checks, among other useful queries.

kitterman.com

SPF Record Check – via email
This is pretty neat – you can send an email to spf-test@openspf.org from the domain you want to test, and it will reject the message, but in that rejection message, you’ll see the results of your test:

spf-test@openspf.org SMTP error from remote mail server after RCPT TO:: host mailout02.controlledmail.com [72.81.252.18]: 550 5.7.1 : Recipient address rejected: SPF Tests: Mail-From Result="pass": Mail From="test@cpaneladmins.com" HELO name="server.cpaneladmins.com" HELO Result="none" Remote IP="12.34.56.78"

DomainKeys Record Check

http://www.mailradar.com/domainkeys/

Other Resources:
OpenSPF.org’s Wizard – If you want to configure SPF records manually, go here. Note that you won’t be able to edit the records via cPanel >> Email Authentication later on, though.

1 comment »

Posted in Exim, Mail

Tags: domainkeys spf SPF Records

No Such User / Sender Verify error when sending via main account

March 28th, 2010 by tech No comments »

When using your cpanelusername@domain.tld account, the account needs to be able to receive mail, as well as send. If you login to your main account via webmail, and see the following errors posted, you’ll want to confirm that the address is permitted to receive mail.

Horde shows:
There was an error sending your message: Failed to add recipient: recipient@targetrecipient.com [SMTP: Invalid response code received from server (code: 550, response: Verification failed for No Such User Here" Sender verify failed)]

/var/log/exim_mainlog shows:
2010-03-28 18:47:46 H=localhost (userdomain.com) [127.0.0.1] sender verify fail for : No Such User Here" 2010-03-28 18:47:46 H=localhost (userdomain.com) [127.0.0.1] F= rejected RCPT : Sender verify failed

99.99999% of the time, you’ll see this issue when the Default Address is set to “fail”, making it unrouteable. In cPanel > Default Account, set the catch-all account to forward to another email address, and you’ll be all set.