Archive for the 'Ensim Support' Category

Dirty COW (CVE-2016-5195) is a privilege escalation vulnerability in the Linux Kernel.

A race condition was found in the way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings.

Impact

  • An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system and gain root access instantly.
  • This flaw allows an attacker with a local system account to modify on-disk binaries, bypassing the standard permission mechanisms that would prevent modification without an appropriate permission set.

It’s highly recommended to patch the system kernel in all Debian, Ubuntu, CentOS and RHEL distros to prevent system breakage.

Are you running a vulnerable version?

If you are not a customer subscribed under our Server Management plan and would like to have this vulnerability patched please purchase a 1x Hour of Support plan.

Don’t hesitate to contact us for any questions you may have through our Contact Form page or LiveChat!

How to Install KISS My Firewall on Ensim Control Panel

KISS My Firewall is a FREE iptables script designed for a typical web server. It takes advantage of the latest firewall technologies including stateful packet inspection and connection tracking. It also contains some preventative measures for port scanning, DoS attacks, and IP spoofing, among other things.

KISS My Firewall 2 is very easy to install and does not require any initial configuration. It will work with any stock installation of Ensim WEBppliance Basic & Pro, Plesk, and Webmin. Cpanel installations require some modifications.

When logged in as root ( “su -” ), type:

cd /usr/bin
wget http://www.indotek.com/kiss/kiss-2.2.tar.gz
tar zxvf kiss-2.2.tar.gz

That’s it! To get it running anywhere on the command line, you simply type:

kiss start

To stop the firewall, type:

kiss stop

To get status information, type:

kiss status

If you want to block an offenders IP address/subnet, simply edit the BLOCK_LIST variable in the /usr/bin/kiss file. You can separate IP addresses and subnet’s with a space. Once you are finished, simply restart KISS by typing:

kiss restart

Reset the license for Ensim Pro Control Panel Linux

Ensim Pro Control Panel license is tied to a MAC-address. Therefore, when you change your network card, Ensim does not recognize the license as valid anymore.

Rename /etc/appliance/.license/.LIC_file and /etc/appliance/.license/.MLK_file so that the license would be treated as a new one by Ensim

# mv /etc/appliance/.license/.MLK_file /etc/appliance/.license/.MLK_file.bak
# mv /etc/appliance/.license/.LIC_file /etc/appliance/.license/.LIC_file.bak

Once this is done, we need to contact support to reset the license.

IP aliases disappears after network services is restarted in Ensim

If networks service has been restarted server looses the IP aliases set by ensim.

To get all IP aliases back restart virtualhosting service.

# service virtualhosting restart

How to disable anonymous FTP in EnsimPro for Linux

By deafult the configuration file is: /etc/proftpd.conf has the last line as:

include “/etc/proftpd/anonymousftp”

which means anonymous ftp is enabled.

Upon commenting this out with a ” # ” and restarting the service ,anonymous ftp is disabled.

Next »