Apache symlink security issue fix/patch

by brian on January 14, 2013

There is a serious security hole in the way that Apache handles symlinks on shared servers.

This allows an exploited account on a server to view .php files owned by other accounts, thus escalating a single-account exploit to potentially many accounts on the one server.  This post describes how to plug these holes very portably. [click to continue…]

{ 31 comments }

Implementing nolisting in cPanel using exim

by brian on October 31, 2011

Nolisting is a spam-avoidance scheme which tricks the spammers into giving up when trying to send us spam.  It can result in 50-60% spam reduction on heavily spammed domains and does not use any server load as the spammers don’t even get to connect. [ The 60% figure was measured in 2008 but the technique is expected to be less effective these days (2011).]

More specifically, nolisting tricks the spammers into talking to IPs that ignore traffic, whereas normal mailers go on to talk to the real mail system. [click to continue…]

{ 0 comments }

Disabling invoice creation emails in WHMCS on a per-client basis

August 18, 2011

If you’re using WHMCS to manage your cPanel shared servers, this is probably a request that you’ve received a few times. You have clients that are set up to pay invoices automatically from their credit cards, and they’d rather not receive the “Invoice Created” or “Invoice Payment Reminder” emails every month. Normally WHMCS only allows […]

Read the full article →

Cloning File Permissions and Ownership Between Machines

September 17, 2010

Alternate Title: Help, I chown-ed my server! Ever recursively screwed file system permissions? Related posts: cprevert – easy cpbackup file level restores Ever struggled to restore a file from a cpbackup backup tarball? Did it take 10 commands and 20 lines of…

Read the full article →

rebootnotify – email alert and log for reboot and shutdown

September 17, 2010

Ever wondered how long your system was down for while the techs were working on it? Whether your system crashed or was actually shut down? Or just want to make sure you’re aware of reboots? No related posts.

Read the full article →

cpmr – full server cpanel rsync backup script

August 21, 2010

cpmr produces a full file-based backup of a cPanel server and is lightning fast and puts little load on the system.  It is based on a number of forum posts from WHT and cPanel forums and about 2 years of live use. Related posts: prekillacct – backup cpanel accounts on termination Ever terminate a cPanel […]

Read the full article →

cprevert – easy cpbackup file level restores

August 14, 2010

Ever struggled to restore a file from a cpbackup backup tarball? Did it take 10 commands and 20 lines of typing and fiddling? How would it be if you could restore any client file in only one short command? Related posts: postcpbackup – auto cpbackup rotation This script that rotates cpanel backups after they are […]

Read the full article →

Welcome to whmscripts.net!

July 31, 2010

Welcome to whmscripts.net! This is our little site for distributing our favourite cpanel tips and scripts, replacing a horrible little scripts page written in handcrafted HTML! No related posts.

Read the full article →

rblcheck.sh – check local IPs for RBL listing

July 30, 2010

First release of rblcheck.sh, a multi-IP, multi-DNSBL checker. This is used to alert you when your server is listed on a blacklist; otherwise you can be unaware until users start to complain that their emails are bouncing. Related posts: cpmr – full server cpanel rsync backup script cpmr produces a full file-based backup of a […]

Read the full article →

prekillacct – backup cpanel accounts on termination

February 2, 2010

Ever terminate a cPanel account by mistake? This script backs up a cPanel account as it is terminated. Related posts: cpmr – full server cpanel rsync backup script cpmr produces a full file-based backup of a cPanel server and is lightning fast and puts little load on the… postcpbackup – auto cpbackup rotation This script […]

Read the full article →