Jump to content

wolstech

Chief Risk Officer
  • Posts

    18,752
  • Joined

  • Last visited

  • Days Won

    735

Posts posted by wolstech

  1. This is a quirk with how Plesk calculates space.

    The main domain's space meter includes the entire home folder, which includes all of the domains on the account. The space meters for added domains usually only show non-file stuff specific to that domain (like mail and logs). All of your files for the telenove and salt subdomains are being counted under the lia.helioho.st's space.

    • Like 1
  2. Indeed it is mod security. You can see the error in Plesk in the Logs for your domain.

    ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/httpd/conf/modsecurity.d/rules/comodo_free/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)||salt.wiki.gd|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "salt.wiki.gd"] [uri "/User:Lia"] [unique_id "aZnLyrW2MUbixOOUfFzWWQAAAok"], referer: https://helionet.org/

    You can actually whitelist these yourself in the Web Application Firewall page of Plesk. I went ahead and added rule 240950 to the exception list for you.

    The changes will take 2 hours to take effect.

    • Like 1
  3. Those domains are all working properly for me at the moment. The "redirect" (which was probably the domain setup page) and the certificate errors suggest you didn't wait 2 hours after having domains set up before trying to use them. During that 2 hour period, Apache isn't fully configured. New domains won't work properly until Apache restarts.

    Note that the 502 error is normal on Johnny and occurs approximately every 2 hours due to the Apache restart. https://wiki.helionet.org/502_Bad_Gateway It usually lasts a few minutes.

    As for the FTP connection, try using SFTP instead of FTP/FTPS to access your account: Hostname should be johnny.heliohost.org, port 1373, and use your plesk username and password. Most users find that this works much better than regular FTP, and it's also more secure.

  4. Yeah, that's a major reason we recommend manual configuration using the server name (tommy.heliohost.org). Mail clients today check that the server name you enter against the name that the server identifies as when you connect, and the name on the certificate if applicable. The mail server on Tommy always announces itself as tommy.heliohost.org regardless of user, so when you use javalan.helioho.st as the host name, the client connects, gets a "Hi I'm a mail server called tommy.heliohost.org" and the client goes "WTF that doesn't look like javalan.helioho.st, I'll show a warning about it".

    The tommy certificate is always renewed automatically and using the server host name means the server HELO announcement matches the host name.

    That said, I just ran the renewal for your SSL certificate manually for you. You can do this yourself in the future in Plesk under SSL/TLS certificates->Reissue Certificate->Install under the Lets Encrypt option->make sure to check the box that says "Secure mail on this domain"->Get it free.

  5. Your account looks fine on our end. Is there a specific error you're seeing?

    (Note that while accounts can send email right after creation, most email providers will not accept the emails unless you request SPF and DKIM... these email security features are not set up by default).

×
×
  • Create New...