Getting emails from the future is a classic sign of SPAM. Unfortunately, SpamAssassin only bumps the score of these emails by less than 2 points, which isn’t usually enough to get it marked as SPAM. To fix this, you can add a rule to SpamAssassin to block emails from the future. First, open /etc/mail/spamassassin/local.cf in…
Read moreHaving SSL problems? One of the most common issues our team handles is related to websites not properly displaying over HTTPS, whether it be the website either not loading entirely, or just not showing the green padlock: If you’re sure that the SSL certificate is installed properly, but your site isn’t showing as secure, there…
Read moreIf you’re on a cPanel server, you’ve probably noticed a sizable folder called ‘virtfs’ sitting in /home, which would appear at first to be using a ton of space. Your first inclination might be to delete it, but don’t! Most likely, the files in that folder are actually just hard links or bind mounts and…
Read morecPanel allows you to easily create custom Exim filters by simply dropping the rules in /usr/local/cpanel/etc/exim/sysfilter/options/ and running: /scripts/buildeximconf service exim restart Here are a couple useful examples of filters we’ve created for our customers: Prevent email delivery to certain domains: if (“$h_to:, $h_cc:” contains “@domain.com”) or (“$h_to:, $h_cc:” contains “@domain.com”) then fail text “Emails to…
Read moreIf you have more than a few cPanel servers in your network, it may be a good idea to set up your own mirror to serve the files necessary to run cPanel updates. Doing this could save time and bandwidth, as well as prevent problems caused by mirrors being overloaded every time a new version…
Read moreIf your server is using a NAT setup and for some reason isn’t properly showing the correct public IP that should be mapped to the private IP on your server, you can easily fix this by creating a script to tell cPanel what the public IP should be. For example, you can simple put the…
Read moreNote: This is an update from our 2011 post. If you’ve taken a peek at your PCI scan results lately, you may have noticed that your scan provider is now requiring OpenSSH 6.6 or higher due to CVE-2014-2532 – a version that is not currently available in the CentOS 5 or 6 repositories. A Yum update isn’t going…
Read moreWith the Ruby developer community continuing to grow, we often get requests for Ruby support from providers wanting to be able to offer their customers the ability to run Rails applications. We do not recommend using the current Ruby on Rails feature provided by cPanel, as it relies on the CentOS-provided version of Ruby as well as…
Read moreThe latest security buzz this month is about the SSLv3 POODLE vulnerability, and how SSL version 3.0 is now officially designated as insecure, joining its predecessors versions 1.0 (unreleased) and 2.0. This effectively concludes the life cycle of the SSL protocol in favor of TLS. This post will give you a brief overview of what POODLE…
Read moreYears ago, MySQL started allowing InnoDB to possess separate tablespace per table instead of a massive unified ibdata1 file. Tablespace is basically a logical storage area that contains table information – references, if you will. Every table, regardless of the storage engine, has one, and without it the table will be unrecognizable to MySQL. MyISAM stores…
Read more