Managing Access to System Services in Plesk
For each system service, you can choose whether to allow or deny all incoming communications, or allow only communications coming from specific IP/network addresses.
To allow or restrict access to a service on your Parallels Plesk Panel server:
1. Go to Modules > Firewall > Edit Firewall Configuration.
2. Click the service name.
3. Do any of the following:
* To allow all incoming connections, select the Allow option and click OK.
* To deny all incoming connections, select the Deny option and click OK.
* To deny access to a service from specific IP/network addresses, select the Allow from selected sources, deny from others option, specify the IP address or network address from which access to the selected service is allowed, and click Add. After you specify the required addresses, click OK.
4. To apply all changes to the firewall configuration, click Activate, and then click Activate again.
Source : http://parallels.com/
Plesk Panel Firewall Module
Parallels Plesk Panel Firewall is a module that protects your Parallels Plesk Panel-enabled server and private network from unauthorized access.
To install the Parallels Plesk Panel Firewall module through the Parallels Plesk Panel interface:
1. Login as administrator to the Parallels Plesk Panel.
2. Click the Modules shortcut in the navigation panel > Manage Modules > Add New Module.
3. Select a module package file, and click OK.
To install the Parallels Plesk Panel Firewall module through the command line:
1. Login as root to the server, where Parallels Plesk Panel is installed.
2. Run the command /plesk_installation_directory/admin/bin/modulemng –install –file=[plesk_firewall_module_filename], where ‘plesk_installation_directory’ is the directory you installed Parallels Plesk Panel to.
Example:
/usr/local/psa/admin/bin/modulemng –install –file=/opt/modules/firewall.rpm
Source : http://parallels.com/Plesk/
Once you have purchased a ColdFusion distribution package, copy it to your Parallels Plesk Panel server.
Login as root to the server and run the coldfusion-70-lin.bin installation file.
Choose your language: type the appropriate number and press ENTER.
Read the Introduction and press ENTER to continue.
Read carefully the end user license agreement and accept it by typing ‘y’ and pressing ENTER. A pre-installation check will be performed.
To continue with installation, press ENTER.
Choose installation type. Select the Install new version of ColdFusion MX with a serial number option: type ‘1′ and press ENTER, and then type in the serial number. Press ENTER.
Select the type of installation. To install ColdFusion on the server, leave the Server configuration option selected: type 1 and press ENTER.
Type 2 and then press ENTER to confirm that you do not yet have Adobe ColdFusion installed.
To continue with installation, type 4 and press ENTER.
Specify an absolute path to the installation folder. The default installation folder is /opt/coldfusionmx7. Press ENTER.
If you had earlier versions of ColdFusion installed, you can choose to migrate your settings. Otherwise press ENTER to continue.
Type 2 and press ENTER to continue with installation.
Leave the Runtime user name field blank. Press ENTER.
Specify the password that you will use to control access to the ColdFusion MX Administrator.
Disable the ColdFusion Remote Development Service (RDS): type ‘n’ and press ENTER.
To continue with installation, press ENTER.
Once the installation is completed, press ENTER to exit the installer.
Resource : http://parallels.com/Plesk/
By default, the open relay option for the mail server is disabled in Parallels Plesk Panel.
It is not recommend to enabe this option because an open relay can make it possible for an unscrupulous senders to route large volumes of spam.
You can enable it by using the root.controls.lock file located in PRODUCT_DATA_D\var directory.
To enable open relay, follow these steps:
1. Open the root.controls.lock file.
2. Remove the /server/mail.php3:relay_open line and save the file.
Preventing Graphics Hotlinking on a Web Site
Bandwidth theft or hotlinking is a direct linking to web site’s files (images, video, etc.). It can be prevented with the mod_rewrite module.
Place rules like below into the vhost.conf or .htaccess files for the domain (for example www.example.com):
RewriteEngine on
RewriteCond % !^$
RewriteCond % !^http://(www\.)?example\.com(/)?.*$ [NC]
RewriteRule \.(gif|jpg|jpeg|png|swf)$ - [NC,F]
