• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Search results

  1. L

    E-mail hack

    Thanks again! Regarding the Horde config file, yes, those are the exact settings I have so I'm not sure why it's not working. With regards to the global access/error logs, thanks! I kept looking under /var/www so I didn't see those. I did notice that /var/log/maillog will have entries like...
  2. L

    E-mail hack

    Hi Igor, Unfortunately, all of the files in this folder date back to 2013. I just purposely tried the wrong password in Horde and it didn't update any of the files in this folder. Is there somewhere else I should look? Also, where are the HTTP access logs for this app? Thanks!
  3. L

    E-mail hack

    Today, someone managed to gain my e-mail account credentials and sent a bunch of outgoing malicious e-mails. I can see the hackers connecting to the Postfix SMTP server and sending the messages. What I can't figure out is how they got the list of recipients I commonly send e-mail to. I'm...
  4. L

    Update/upgrade strategy

    I'm taking an informal poll and would like your help. 1) How often do you update the OS on your Plesk server (ie, using "yum" or similar)? (Weekly, monthly, quarterly, only when updating Plesk packages, never, ...) 2) How often do you update the Plesk packages on your server...
  5. L

    Apache security Vulnerability/ Parallels Plesk Panel

    If you look at http://www.eng.lsu.edu/mirrors/apache//httpd/CHANGES_2.2 you'll see that the versions have run like this: 2.2.1 2.2.2 2.2.3 2.2.4 2.2.5 2.2.6 2.2.7 2.2.8 2.2.9 2.2.10 2.2.11 2.2.12 2.2.13 2.2.14 2.2.15 2.2.16 2.2.17 2.2.18 2.2.19 2.2.20
  6. L

    Apache security Vulnerability/ Parallels Plesk Panel

    I believe the vulnerability report said all versions through 2.2.19 were affected (including 2.2.3). 2.2.20 is the only 2.2.x release that has the fix.
  7. L

    Apache security Vulnerability/ Parallels Plesk Panel

    I'm afraid I really don't know. I believe winscp is a transfer program so maybe your server can't talk to the Parallels server where the Plesk files are downloaded from? I'd check if your server is connected to the Internet and has a route to the Parallels server (unfortunately I don't know...
  8. L

    Apache security Vulnerability/ Parallels Plesk Panel

    Hi mrweb, I do it a slightly more complicated way so I know exactly what the system is doing. Read carefully and use at your own risk! :) Step 1: I change into the directory with the autoinstaller script # cd /usr/local/psa/admin/bin Step 2: I check all of the product releases that...
  9. L

    Apache security Vulnerability/ Parallels Plesk Panel

    Two notes regarding the instructions on the page IgorG is referencing: 1) Regarding the curl command that you can use to check if your Apache install is affected by the vulnerability, be sure to change "example.com" to one of the domains that your Apache install is serving. Otherwise, you're...
  10. L

    URGENT: security fix for psa-proftpd?

    I'm confused. The official Parallels page (http://www.parallels.com/products/plesk/ProFTPD) says you have to have version 1.3.3c installed. But yet I've got 10.0.1 and apparently the microupdate and I'm seeing version 1.3.3. Do I have the fixed version? # /usr/sbin/proftpd -v ProFTPD...
  11. L

    URGENT: security fix for psa-proftpd?

    I was just about to reply with the observation that my file's timestamp is the time I ran the autoinstaller.
  12. L

    URGENT: security fix for psa-proftpd?

    I renamed the file and tried running the autoinstaller again but it responded with: You already have the latest version of product(s) and all selected components installed. Installation will not continue.
  13. L

    URGENT: security fix for psa-proftpd?

    Thanks. My microupdates.xml file looks exactly like this. My version does too....I have to admit the version number thing is really confusing....I wouldn't be surprised if this number really should be updated and that I'm still using the old version. It would be *really* nice if Parallels...
  14. L

    Mailing list for security and other critical announcements?

    That's assuming your customers visit your site daily. Not a good assumption. Note: I tried to reply to your original response but the moderation system appears to have eaten my response. I'm not sure why since there was nothing questionable in my post. Am I the only one that things its...
  15. L

    URGENT: security fix for psa-proftpd?

    Does anyone have any advice on this?
  16. L

    URGENT: security fix for psa-proftpd?

    I see the instructions at http://www.parallels.com/products/plesk/ProFTPD have been updated. Per the instructions, I ran the following command: autoinstaller --select-product-id plesk --select-release-current --reinstall-patch --install-component base I see the following at the end of the...
  17. L

    Mailing list for security and other critical announcements?

    Does Parallels have a mailing list one can subscribe to in order to get security and other critical announcements regarding Plesk? For example, I only learned about the ProFTPD vulnerability through a web hoster that was nice enough to alert all its customers but that's not always going to be...
  18. L

    Relationshop between Plesk Updates utility and yum

    Can someone please help me out with the following questions: 1) From what I understand the Plesk Updates UI (or its corresponding autoinstaller command) only handles updating Plesk Panel components. Meanwhile, yum is used to update core OS components. Is this correct? 2) If I want to...
  19. L

    Accurate disk usage

    On the Domains page, I have a newly created domain that lists disk usage as 2.93MB. I set up an IMAP mail account under this domain and sent that user an e-mail with a 10MB attachment. However, disk usage is still at 2.93MB. If I do a "Full Report" on the domain, I can see the 10MB in the...
Back
Top