CloudFlare (cPanel Plugin) v5.3.2 symlink attack vulnerability !


Cheap reseller Hosting


cloud

 

 

Type: Symlink Attack
Location: Local
Impact: High
Product: CloudFlare (cPanel Plugin)
Website: http://www.cloudflare.com
Vulnerable Version: 5.3.2
Fixed Version: 5.3.11
CVE: -
R911: 0187
Date: 2016-01-15

 

Product Description:

CloudFlare protects and accelerates any website online. Once your website is a part of the CloudFlare community, its web traffic is routed through our intelligent global network. We automatically optimize the delivery of your web pages so your visitors get the fastest page load times and best performance. We also block threats and limit abusive bots and crawlers from wasting your bandwidth and server resources. The result: CloudFlare-powered websites see a significant improvement in performance and a decrease in spam and other attacks.
Vulnerability Description:

Due to a carefully timed symlink attack directed at the cloudflare_data.yaml file, it is possible for a malicious user to change the permissions on any root owned file to 600 which could lead to the OS being disabled.

Impact:

We have deemed this vulnerability to be rated as HIGH due to the fact that should the malicious user target certain system files, such as /etc/passwd, it could render the OS inoperable.
Vulnerable Version:

This vulnerability was tested against CloudFlare (cPanel Plugin) v5.3.2 and is believed to exist in all prior versions.
Fixed Version:

This vulnerability was patched CloudFlare (cPanel Plugin) v5.3.11.
Vendor Contact Timeline:

2016-01-13: Vendor contacted via HackerOne.

2016-01-13: Vendor confirms vulnerability.

2016-01-14: Vendor issues update.

2016-01-15: RACK911 Labs issues security advisory.

 

 

How to Check the Latest Version of  Cloudflare cPanel Plugin on Server

cat /usr/local/cpanel/etc/cloudflare.json | grep version

 

To Update the Cloudflare version

/usr/local/cpanel/bin/cloudflare_update.sh force

 

Soure : RACK911 Labs

 

 

 

 

 


Cheap web Hosting


How to install MediaWiki from Softaculous


Cheap reseller Hosting


To Install MediaWiki from Softaculous

MediaWiki can easily be installed by using Softaculous in the cPanel Software / Services. This tutorial will explain how to install MediaWiki using Softaculous. Please follow the steps and install it.

How to install MediaWiki from Softaculous

 

Step 1 : Log into cPanel.

Step 2 : Find the Softaculous icon located in the Software Services section.

Step 3 : To locate MediaWiki you can either type mediawiki in the search box in the top right corner.

Step 4 : Click on Wikis in the left column.

Step 5 : When you click on the MediaWiki link, you will be taken to the home page for the MediaWiki package.

Step 6 : Click on the Install tab.

You will be asked to fill in the details of the installation.

Step 7 : If you have multiple domains associated with this account, you can select where to install it.

Step 8 :  The next two boxes require a Directory and Database Name, neither of which should exist on the server.

Step 9 : Under Site config, enter a Wiki Name and Email.

These can be changed later on from the application’s admin panel.

Step 10 : Type the desired Admin Username and Password that should be used.

Step 11 : Click Install.

After a moment, the software will be installed.

Step 12 : Once finished, you can view your new site by clicking this link.

You will be able to access your newly-installed MediaWiki by following the links on the page.

 

That’s it! 🙂 🙂


Cheap web Hosting


How to use the Exim Mail Queue Manager in WHM


Cheap reseller Hosting


To Using the Exim Mail Queue Manager in WHM

Exim is the mail software that runs on your server to control email delivery, there are mail queue management options you can use with Exim directly via the command line.

How to use the Exim Mail Queue Manager in WHM

In this article Hostripples will show you how you can manage your Exim mail queue on your VPS or dedicated server in WHM.

Step 1 : Log into WHM.

 

tep 2 : Find the Email menu.

 

Step 3 : Go to Mail Queue Manager.

 

Step 4 : In the Search box type in user@hostripples.com.

 

Step 5 : From the Select Query drop-down and select Search Recipients.

 

Step 6 : In Search Type Click on Begins With.

 

Step 7 : Click on the calendar icon and Specify the Start Date and End Date.

 

Step 8 : Next, specify the Start Time and End Time.

 

Step 9 : Then, click on Run Report.

 

Step 10 : We can see that our messages to user@hostripples.com are Frozen.

This means that Exim has detected an error trying to deliver the message, and it is going to hold the message and try again later.

 

Step 11 : Click on the magnifying glass icon to view the message in a new window.

In this message we can see that it’s not delivering to user@hostripples.com because their mail server is giving us back the error of Mailbox quota exceeded.

 

Step 12 : At the top of the message you can choose to Delete Message which will completely remove it from the mail queue.

 

Or

 

you can choose to Deliver Message Now which will attempt to send the message again, in this case if the user has freed up some space on their email account it should go through successfully now.

 

 

That’s it !! 🙂 

 


Cheap web Hosting


How to : Exim Remove All messages From the Mail Queue


Cheap reseller Hosting


 

Exim is a mail transfer agent (MTA) used on Unix-like operating systems. It aims to be a general and flexible mailer with extensive facilities for checking incoming e-mail. For more information you can see Exim documentation.

Web

In this article i will show some commands to removing all messages from the Mail Queue. Please Follow the Steps. 

 

Step 1 :  To print a list of the messages in the queue, enter the following command :

# exim -bp

 

Step 2 :  To remove a message from the queue, enter the following command :

# exim -Mrm {message-id}

exim-vps

Step 3 :  To remove all messages from the queue, enter the following command :

# exim -bp | awk ‘/^ *[0-9]+[mhd]/{print “exim -Mrm ” $3}’ | bash

 

Step 4 :  Dallas Marlow, suggested following clean command:

# exim -bp | exiqgrep -i | xargs exim -Mrm

 

 

That’s it ! 🙂 🙂


Cheap web Hosting


Exim commands : To remove emails from mail queue for a specific Sender/Receiver


Cheap reseller Hosting


In this article i will show you how to remove emails from mail queue for a specific Sender/Receiver.

exim-vps

How to remove all emails from a particular user using exiqgrep?

Do follow this command:

# exiqgrep -i -f $user | xargs exim -Mrm

                                                 Or

 

How to remove all emails to a particular user using exiqgrep?

Do follow this command:

# exiqgrep -i -r $user | xargs exim -Mrm

 

That’s it 🙂 🙂

 

Exim related post

 


Cheap web Hosting


Exim Commands : Searching the queue with exiqgrep


Cheap reseller Hosting


Searching the queue with exiqgrep

Exim-Commands-Searching-the-queue-with-exiqgrep

 

In this article I am explaining the command usages for finding emails in Exim mail queue for particular sender or receiver.

Exim includes a utility that is quite nice for grepping through the queue, called exiqgrep. Learn it. Know it. Live it. If you’re not using this, and if you’re not familiar with the various flags it uses, you’re probably doing things the hard way, like piping `exim -bp` into awk, grep, cut, or `wc -l`. Don’t make life harder than it already is.

First, various flags that control what messages are matched. These can be combined to come up with a very particular search.

 

 

1) Use -f ( To search the queue for messages from a specific sender )

Command :

 

root@localhost# exiqgrep -f [luser]@domain

 

2) Use -r ( To search the queue for messages for a specific recipient/domain )

Command :

 

root@localhost# exiqgrep -r [luser]@domain

 

3) Use -o ( To print messages older than the specified number of seconds. For example, messages older than 1 day )

Command :

 

root@localhost# exiqgrep -o 86400 […]

 

4) Use -y ( To print messages that are younger than the specified number of seconds. For example, messages less than an hour old )

Command :

 

root@localhost# exiqgrep -y 3600 […]

 

5) Use -s ( To match the size of a message with a regex. For example, 700-799 bytes )

Command :

 

root@localhost# exiqgrep -s ‘^7..$’ […]

 

“^3$” –> 3bytes
“^3.$” –> 3-30bytes
“^3..$” –> 3-300bytes
“^3…$” –> 3-3000bytes
And so on..

 

6) Use -z ( To match only frozen messages )

 

7) Use -x ( To match only unfrozen messages )

 

There are also a few flags that control the display of the output.

 

8) Use -i ( To print just the message-id as a result of one of the above two searches )

Command :

 

root@localhost# exiqgrep -i [ -r | -f ] …

 

9) Use -c ( To print a count of messages matching one of the above searches )

Command :

 

root@localhost# exiqgrep -c …

 

10) Print just the message-id of the entire queue

Command :

 

root@localhost# exiqgrep -i

 

That’s it 🙂 🙂

 

Exim related post

 

 


Cheap web Hosting


Useful Exim Commands


Cheap reseller Hosting


Useful Exim Commands

 

Exim is a message transfer agent (MTA) for hosts that are highly comfortable and running in Unix or Linux Operating system. Exim server is developed at the University of Cambridge. We can easily manage and configure in server. In this article i will explain few executable commands as below.

 

1) Print a count of the messages in the queue, use the following command line : 

root@localhost# exim -bpc

 

2) Print a listing of the messages in the queue (time queued, size, message-id, sender, recipient), use the following command line : 

root@localhost# exim -bp

 

3) Print a summary of messages in the queue (count, volume, oldest, newest, domain, and totals), use the following command line : 

root@localhost# exim -bp | exiqsumm

 

4) Print what Exim is doing right now, use the following command line : 

root@localhost# exiwhat

 

5) Test how exim will route a given address, use the following command line : 

root@localhost# exim -bt test@ownmyserver.com
user@thishost.com
<– test@ownmyserver.com
router = localuser, transport = local_delivery
root@localhost# exim -bt user@thishost.com
user@thishost.com
router = localuser, transport = local_delivery
root@localhost# exim -bt user@remotehost.com
router = lookuphost, transport = remote_smtp
host mail.remotehost.com [1.2.3.4] MX=0

 

6) Run a pretend SMTP transaction from the command line, as if it were coming from the given IP address. This will display Exim’s checks, ACLs, and filters as they are applied. The message will NOT actually be delivered, use the following command line : 

root@localhost# exim -bh 192.168.11.22

 

7) Display all of Exim’s configuration settings, use the following command line : 

root@localhost# exim -bP

 

 

 

 

exim-vps


Cheap web Hosting


How to Create a StartSSL Certificate on StartSSL Control Panel


Cheap reseller Hosting


To Create a StartSSL Certificate

In this article I will give you how you can easily Create a StartSSL Certificate on StartSSL Control Panel. Follow the steps and create a StartSSL Certificate.

Create a StartSSL Certificate

 

Step 1 : Login to the StartSSL Control Panel.

Step 2 : Select the Validations Wizard tab.

Step 3 : Select Domain Name.

Step 4 : Click on Continue button.

Step 5 : Then enter the top domain name, and select the domain name extension.

Step 6 : Click on Continue button.

Step 7 : Select the email address for verification of domain name.

Step 8 : Click on Continue button.

Step 9 : Then enter the verification code you received by mail into the the field. 

Step 10 : Click on Finish button. 

Step 11 : Select the Certificates Wizard tab.

Step 12 : Select SSL/TLS Server Certificate.

Step 13 : Click on Continue button.

Step 14 : Then enter a password ( at least 10 characters ).

Step 15 : Click on Continue button. 

Step 16 : Save the private key.

Step 17 : Click on Continue button.

Step 18 : Select the domain name from the drop-down box.

Step 19 : Click on Continue button.

Step 20 : Then add a sub domain name.

 Step 21 : Click on Continue button. 

Step 22 : Save the certificate

Step 23 : Click on Finish button.

Step 24 : Select the Tool Box tab.

Step 25 : Click on Decrypt Private Key.

Step 26 : Then enter the content of the private key and supply the password.

Step 27 : And finally Save the decrypted private key.

 

That’s it!

 

 

 


Cheap web Hosting


How to import StartCom CA into Vista


Cheap reseller Hosting


To Import StartCom CA into Vista

import StartCom copy

In this Article I will explain how to import StartCom CA into Vista. Please follow the instruction and import StartCom CA.

Step 1 : Using IE click on the appropriate certificate.

Step 2 : You can download the cert and double click on it.

Step 3 : In the security warning box, click on Open button.

Step 4 : Click on Install Certificate button.

Step 5 : You will see Certificate Import Wizad windo, Click on Next button.

Step 6 : Then, Choose the radio button for Place all certificates in the following store.

Step 7 : Then click on Browse.

Step 8 : Select the certificate store you wont to use, Choose Trusted Root Certification Authorities.

Step 9 : Then click on OK button.

Step 10 : Click on Next button.

Step 11 : Then, click on Finish button.

Step 12 : There might be a warning, which you should approve.

That’s it!


Cheap web Hosting


1 2 3 4 22