Current time: 11-25-2024, 07:35 PM Hello There, Guest! (LoginRegister)


Post Reply 
[HowTo] Make ispCP more Secure !
Author Message
Boter Offline
Junior Member
*

Posts: 42
Joined: Jan 2010
Reputation: 0
Post: #41
RE: [HowTo] Make ispCP more Secure !
Hey!

For disabling Apache ServerInfo in debian, you probably even don't have included httpd.conf, so include it in apache2.conf OR add
ServerSignature Off
ServerTokens Prod

in apache2.conf

Wink
01-15-2010 03:26 AM
Find all posts by this user Quote this message in a reply
Diego Offline
Junior Member
*

Posts: 30
Joined: Sep 2009
Reputation: 0
Post: #42
RE: [HowTo] Make ispCP more Secure !
Thanks, but the link from the first post is broken.
04-07-2010 01:28 PM
Find all posts by this user Quote this message in a reply
gOOvER Offline
Banned

Posts: 3,561
Joined: Jul 2007
Post: #43
RE: [HowTo] Make ispCP more Secure !
I updated the link in the first post. Now it works again Wink
04-07-2010 02:17 PM
Visit this user's website Find all posts by this user Quote this message in a reply
kfa Offline


Posts: 1
Joined: Dec 2009
Reputation: 0
Post: #44
RE: [HowTo] Make ispCP more Secure !
First post, so Hey All! =)

Now to subject. On ubuntu 8.04 (hardy), enabling secure connection on proftpd wont work, as ubuntu repo's have old 2.06 proftpd as it seems...anytime user tries to connect with up to date filezilla on secure connection they fail with error:
__
Status: Server did not properly shut down TLS connection
Error: Could not read from transfer socket: ECONNABORTED - Connection aborted
..
__

I was googling around a little and find a solution (http://forum.filezilla-project.org/viewt...2&t=13034) that worked for me;

Quote:vim /etc/apt/sources.list

Add 2 sources to list:
Quote:deb http://ppa.launchpad.net/cschieli/ppa/ubuntu hardy main
deb-src http://ppa.launchpad.net/cschieli/ppa/ubuntu hardy main

And simply run:
Quote:sudo aptitude

Update and upgrade of proftpd solved my problems..got few warnings for repo's as they are unofficial, but well..it worked Smile

Please note, that i'm a linux newb...so use it on your own risk.

In any case, hope it will help to anyone.


GreetZ
07-03-2010 10:31 AM
Find all posts by this user Quote this message in a reply
Mr.Sisko Offline
Junior Member
*

Posts: 17
Joined: Sep 2010
Reputation: 0
Post: #45
[Solved] RE: [HowTo] Make ispCP more Secure !
Since ispPC 1.0.7 the Options for allow-recursion must be placed in
/etc/bind/named.conf.options like

Quote:options {
directory "/var/cache/bind";

// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113

// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.

// forwarders {
// 0.0.0.0;
// };

auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
allow-recursion { 127.0.0.1; xx.xx.xx.0/24; };
};

This only work for me.

Greetz

Update:

shit,... now i've got some errors like

network unreachable resolving 'ns2.lacnic.net/AAAA/IN'

Update2:
okay, looks like troubles with ipv6 Support, how can i fix this? My Server dosn't have ipv6

Update3:
i'm so stupid Big Grin Just enable IPV6-Support for the Server and that's it.

Problem Solved
(This post was last modified: 02-26-2011 05:33 AM by Mr.Sisko.)
02-25-2011 03:49 AM
Find all posts by this user Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 5 Guest(s)