Over the past few weeks I've been hardening rspamd on an ISPConfig 3.3.x server managing 38 mail domains and discovered three separate security...
Hi everyone, I've been running ISPConfig for long time (currently 3.3.0p3 with rspamd and 38 mail domains) and recently got hit by a phishing...
Hi there, I am reaching out to you because, for the past few months, I have been experiencing issues with my self-hosted web server and my...
Hi All, With outlook you can enable the 2FA option. When you want login underwater a request is send to you and you need to enter the correct...
Hi all, I have a problem with my custom ispconfig.vhost. I copied the vhost.conf.master from /usr/local/ispconfig/server/conf to...
Hi ISPConfig community! I run a server with ISPConfig, Debian, Dovecot, Postfix and Roundcube. Roundcube supports 2FA by plugins...
Hi, in multi server setups the client server connects as root@fqdn to the master server. Is this procedure mandatory or is it possible to use an...
hi, is there any way to increase the security of the admin account/interface? Something like restricting the IPs that can be used to login with...
what are some huddles Linux has with security?
Hi, I just ran `rkhunter --check` manually today. Take note of the timestamps in the warning. I was under the impression that rkhunter ran every...
I have a troublesome client which habitually opens unknown attachments, resulting their accounts being regularly compromised, resulting in those...
Hi, I have a little question about security in ISPconfig. There is a jailkit configuration for shell user, right it's a good system and it's...
I'd like to open a discussion about wordpress sites and their security on the recent wave of mulitiple site attacks and compromises I have to deal...
Hello, I recently changed employers and my new employer is very fond of ISPConfig, which I haven't used so far. At my last employer I taught...
Hi I have just checked my emails, and although it's not related I noticed I am getting quite a few spam emails coming through. So to combat this...
Is there any additional security advice or guideline for using ispconfig3_roundcube plugin? Should it be used as it is documented? I’m asking...
Is there any solution that can block ips that are doing scans or calling suspicious urls to the webserver? Something like fail2ban but for scans...
Hi everyone, First of all, thanks very much for the excellent product. I've been using it for many years as a home user, and it really is a great...
For security reasons I would like to change the owner of the files to www-data and not in the web: client format. The site works. But when I...
My understanding is that Rootkit Hunter is optional but strongly recommended. Is that correct? Is there any reason not to run RKH and chrootkit...
Separate names with a comma.
