Current time: 11-25-2024, 07:57 PM Hello There, Guest! (LoginRegister)


Post Reply 
[HowTo] Make ispCP more Secure !
Author Message
BeNe Offline
Moderator
*****
Moderators

Posts: 5,899
Joined: Jan 2007
Reputation: 68
Post: #21
RE: [HowTo] Make ispCP more Secure !
Thanks - i do my best.
There are some new Topics about it in my mind Wink
06-08-2007 04:29 AM
Visit this user's website Find all posts by this user Quote this message in a reply
smallFire Offline
Newbie
*

Posts: 6
Joined: Jun 2007
Reputation: 0
Post: #22
RE: [HowTo] Make ispCP more Secure !
I just updated the Wiki - mod_evasive module for preventing DOS-attacks is included.
06-25-2007 11:57 PM
Visit this user's website Find all posts by this user Quote this message in a reply
fulltilt Offline
Member
***

Posts: 1,225
Joined: Apr 2007
Reputation: 5
Post: #23
RE: [HowTo] Make ispCP more Secure !
Hi BeNe,

some questions:

the howto > ssl postfix ...
if i install it like your howto ... can postfix handle with both > ssl and without ssl?

I have server running with ispCP & one with vhcs.
The vhcs server will be upgraded if rc3 is released, but i want to install awstats now. By upgrading to ispCP ... did i have to remove first awstats before upgrading to ispCP and could you suggest a good awstats howto?
10-21-2007 07:08 PM
Find all posts by this user Quote this message in a reply
BeNe Offline
Moderator
*****
Moderators

Posts: 5,899
Joined: Jan 2007
Reputation: 68
Post: #24
RE: [HowTo] Make ispCP more Secure !
Quote:if i install it like your howto ... can postfix handle with both > ssl and without ssl?
Yes Postfix can both. You only need to change the port on the clients.
Quote:could you suggest a good awstats howto?
Not really. There is many to do if you want to install it manually.
You need the templates, cron entry´s and so on...

Greez BeNe
10-21-2007 07:34 PM
Visit this user's website Find all posts by this user Quote this message in a reply
fulltilt Offline
Member
***

Posts: 1,225
Joined: Apr 2007
Reputation: 5
Post: #25
RE: [HowTo] Make ispCP more Secure !
Hi BeNe,

i followed the howto but getting this error log:
Code:
/etc/courier/pop3d.pem: error:02001002:system library:fopen:No such file or directory


BeNe Wrote:Yes Postfix can both. You only need to change the port on the clients.
10-21-2007 11:32 PM
Find all posts by this user Quote this message in a reply
BeNe Offline
Moderator
*****
Moderators

Posts: 5,899
Joined: Jan 2007
Reputation: 68
Post: #26
RE: [HowTo] Make ispCP more Secure !
Which HowTo ?
There are two about SSL and Mailservices.

-> http://www.isp-control.net/ispcp/wiki/howto_secure
-> http://www.isp-control.net/ispcp/wiki/howto_SSL_CA

Did you do this ?
Code:
Put the Certificates under /etc/courier:

cd /etc/courier
cp /root/RootCA/server/courier.pem .
chmod 400 courier.pem
ln -s courier.pem imapd.pem
ln -s courier.pem pop3d.pem

Greez BeNe
10-21-2007 11:36 PM
Visit this user's website Find all posts by this user Quote this message in a reply
fulltilt Offline
Member
***

Posts: 1,225
Joined: Apr 2007
Reputation: 5
Post: #27
RE: [HowTo] Make ispCP more Secure !
thanks for quick answer,

i installed like this:
http://www.isp-control.net/ispcp/wiki/howto_secure

BeNe Wrote:Which HowTo ?
There are two about SSL and Mailservices.

-> http://www.isp-control.net/ispcp/wiki/howto_secure
-> http://www.isp-control.net/ispcp/wiki/howto_SSL_CA

Did you do this ?
Code:
Put the Certificates under /etc/courier:

cd /etc/courier
cp /root/RootCA/server/courier.pem .
chmod 400 courier.pem
ln -s courier.pem imapd.pem
ln -s courier.pem pop3d.pem

Greez BeNe
10-21-2007 11:42 PM
Find all posts by this user Quote this message in a reply
BeNe Offline
Moderator
*****
Moderators

Posts: 5,899
Joined: Jan 2007
Reputation: 68
Post: #28
RE: [HowTo] Make ispCP more Secure !
Then test the other one, please.
So i will delete one of them.

Hope this works!
Greez BeNe
10-21-2007 11:50 PM
Visit this user's website Find all posts by this user Quote this message in a reply
fulltilt Offline
Member
***

Posts: 1,225
Joined: Apr 2007
Reputation: 5
Post: #29
RE: [HowTo] Make ispCP more Secure !
Hi BeNe,

i think the problem is that you have to change in:
/etc/courier/imapd-ssl
/etc/courier/pop3d-ssl

the path >
TLS_CERTFILE=/etc/courier/pop3d.pem
to:
TLS_CERTFILE=/usr/lib/courier/pop3d.pem

or the location of the .pem files

am i right?

BeNe Wrote:Then test the other one, please.
So i will delete one of them.

Hope this works!
Greez BeNe
(This post was last modified: 10-21-2007 11:55 PM by fulltilt.)
10-21-2007 11:54 PM
Find all posts by this user Quote this message in a reply
BeNe Offline
Moderator
*****
Moderators

Posts: 5,899
Joined: Jan 2007
Reputation: 68
Post: #30
RE: [HowTo] Make ispCP more Secure !
Looks good to me!
You can also search for the .pem files if you are not sure in which directory they are and set the Path to the file in the config.

Greez BeNe
10-22-2007 12:16 AM
Visit this user's website Find all posts by this user Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 9 Guest(s)