Plesk

Problems logging into Plesk because of IP restrictions

Hello, If you receive following error while logging to the Plesk panel, that means there is a IP based restriction to access Plesk admin panel and your current IP is not allowed to access. “Unable to log into Plesk: Access for administrator from address xx.xx.xx.xx is restricted in accordance with IP Access restriction policy currently applied” Cause Plesk IP access policy was configured in such a way so that Plesk could not be...

Read More

FTP connectivity problem:: No route to host

FTP connectivity problem If you are getting following error while FTP directory listing, follow the solution provided below ———- ftp> ls 227 Entering Passive Mode (108,61,169,245,167,161). ftp: connect: No route to host ———- Solution Edit /etc/sysconfig/iptables-config and add this line: IPTABLES_MODULES=”ip_conntrack_ftp” Save it and restart iptables. That’s because passive mode use non...

Read More

Plesk update error/autoinstaller error

If you are getting the below error while updating the Plesk versions or installing the microupdates —- ERROR: Unable to download the MD5 sum for the new Parallels Installer binary. Not all packages were installed. Please, contact product technical support. —- Solution —– Remove cache from /var/cache/parallels_installer/ and start autoinstaller again. /usr/local/psa/admin/sbin/autoinstaller –select-product-id plesk...

Read More

CSR generation for UCC certificates

Unified Communications (UC) Certificates (also called SAN Certificates) use Subject Alternative Names o secure multiple sites (e.g. fully qualified domain names) with one certificate. Four SANs are included in the base price of the UC Certificate, but you can purchase additional names at any time during the lifetime of the certificate. With a UC Certificate, you can secure: www.linuxwebservertips.in www.example2.com www.example3.net...

Read More

Strong TLS/SSL Security on your server

SSL Report : www.linuxwebservertips.in         This is a simple guide for setting up a strong TLS/SSL configuration on your server. If you configure a web server’s TLS configuration, you have primarily to take care of three things: 1. disable SSL 2.0 (FUBAR) and SSL 3.01 (POODLE), 2. disable TLS 1.0 compression (CRIME), 3. disable weak ciphers (DES, RC4), prefer modern ciphers (AES), modes (GCM), and protocols (TLS 1.2)....

Read More

How to Disable SSLv3 for Apache,Nginx, Litespeed, cPanel

The POODLE bug is a new bug discovered by Google in the SSLv3 protocol. The fix is easy, disable support for SSLv3. See the google security blog for more info on the bug: http://googleonlinesecurity.blogspot.nl/2014/10/this-poodle-bites-exploiting-ssl-30.html.   Fix POODLE To fix the bug, disable SSLv3 and use a secure cipherlist. SSL v2 is also insecure, so we need to disable it too. So edit the Apache config file and add following...

Read More