Recent content by La Linea

When your server is under some kind of attack from within these address ranges, you will of course see a lot of (incoming) traffic, but that's not traffic from the systems targeted within the Fail2Ban badbots filter.... Instead of explaining at length WHY you block these addresses, which is...

To disable URIBL in spamassassin the URIBL info page explains what to do under SpamAssassin Usage: URIBL.COM - Realtime URI Blacklist

URIBL is a DNS-based Blackhole List that allows only a certain amount of requests for non-paying customers from the same IP every day. When you are using public DNS resolvers (like Google, Quad9, etc.) the requests are forwarded via the DNS server IP and will therefore be refused. Maybe this...

How many firewall rules do you have and how do you block those cloud servies and suspicious IP addresses on the server? Do you use plesk firewall or have you configured it manually? How many cores and RAM does the server have and what are the load and ram usage averages? And no, "bad bots"...

Yes, it is neccessary to have enough local space, because the backup is always performed locally and only transferred to the remote storage afterwards.

When you want to connect as root from the target server to the source server, you create the keypair as root on the target server. Then you "copy" the (public) key via ... ssh-copy-id -i ~/.ssh/mykey root@source-server This doesn't copy the key.pub as a file, but adds it to...

Well, I'm afraid that doesn't really make sense IMO. IF the SSH user on the source didn't have shell access, the migrator wouldn't be able to connect and execute commands on the source server, would it? As the migrator logs I have posted clearly show, it DID connect and it DID execute commands...

Ah, it looks like you have serious issues with your server way beyond a non working mailserver. Unless someone else can help you here, you should contact whoever manages your server, or, depending on where the Plesk licence is obtained from, their support.

As I said, you can find it's logfile by running: dovecot log find You need an ssh terminal for that. Or in Plesk go to "Tools & Settings" -> "Assistance and Troubleshooting" -> "Log Browser" and click on "dovecot.service". According to your screenshot dovecot isn't running, so I'd say...

What does make you think that this mail appears to be sent from your server? The "From: [email protected]" part? This is free text that can contain anything, but has absolutey no meaning. It is especially not an indication of the real sender. The following is the interesting part and as...

What does the dovecot logfile say? You can find its location by running: dovecot log find ... or ... doveadm log find You might also want to check the dovecot status for furter infos by running: systemctl status dovecot.service or by running dovecot -F to start dovecot in the foreground...

"action = iptables-multiport[chain="INPUT", name="default", port="ssh", protocol="tcp", action="DROP", returntype="RETURN", lockingopt="-w"]" Since you haven't posted the complete config for that jail, it's difficult to say what else might be wrong, but it's at least not action="DROP" but...

Yes, I know that it isn't available by default. There's not even the folder /usr/sbin/ existing. I just wanted to see what it looks like when you add it with update-chroot.sh script and if both the link and the target are accessible from within the chrooted shell. However, since PHP is executed...

"The error is /usr/sbin/sendmail not found." What exactly do you get when you do a "ls -la /usr/sbin/sendmail" from within the chrooted environment? "I'm using postfix as mailserver and the sendmail sbin is just a symlink to the plesk wrapper." What is being returned when you "ls -la" on the...

This is most likely a standard response and an equivalent for "do not bother us" ... :( It's certainly not the recidive filter that is blocking you! This one is only adding IP's that have been blocked by other filters for a certain number of times. Thus you should at first find out what...