WordPress wp-admin/async-upload.php 403 Forbidden

I was trying to upload image from WordPess media and was getting 403 message. I searched and tried every method. Some of them include: disabled modsecurity created alternate uploads folder given 777 permission to uploads folder At last I turned on WP_DEBUG log and got following error: WordPress database error: [Duplicate entry ‘794356’ for key […]

Failed to access DBM file “/var/cpanel/secdatadir/ip”: Permission denied

If you have applied modsecurity rules either from OWASP or COMODO, you may see below error in /usr/local/apache/logs/error_log: Failed to access DBM file “/var/cpanel/secdatadir/ip”: Permission denied This is because you are using apache chroot jailed vhosts and mod_ruid2. To make it accessible you may have to change secdatadir to /var/log and give appropriate permission to […]

Optimize malware detect (maldet)

Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and generates signatures for detection. more at: https://www.rfxn.com/projects/linux-malware-detect […]

How to downgrade icinga2 from 2.6 to 2.5?

Last time I upgraded icinga2 to v2.6 accidentally. This lead icinga2 not to start. In /var/log/icinga2/icinga2.log I see following error: 17-05-18 01:05:10 -0400] critical/IdoMysqlConnection: Schema version ‘1.14.1’ does not match the required version ‘1.14.2’ (or newer)! Please check the upgrade documentation. Context: (0) Reconnecting to MySQL IDO database ‘ido-mysql’ Of course this can be fixed […]

How to stop WordPress ddos bot attack in shared cpanel server?

If you have hosted lots of WordPress website in your shared hosting then you may have came across this situation where attacker tries to brute force attack on wp-login.php increasing server load hence doing Ddos attack. You can’t even apply modsec rules or csf rules as attacker uses one ip no more than two times. […]

How can I change/repair my Plesk Admin account if the password got lost?

Symptoms If some of the following messages appear: Unable to connect to database login.php3: Unable to connect to database: Permission denied ERROR 1045: Access denied for user: ‘[email protected]’ (Using password: YES) Then you can use the following solutions in order to solve the issue. The example shown below is for RedHat-like operating systems (RedHat, CentOS, […]

directory index of “/usr/local/psa/admin/htdocs/” is forbidden

After upgrading from php5.4 to php5.6 in plesk panel with centos 6.8. I noticed I have uninstalled plesk core files. I checked in following location and there were either no files at all or some files/folders only: /usr/local/psa/admin/bin/ /etc/sw-cp-server/conf.d/ Error log: # tailf /var/log/sw-cp-server/error_log 2015/12/31 02:53:37 [error] 8788#0: *3 directory index of “/usr/local/psa/admin/htdocs/” is forbidden, […]