Atomicorp

you dont need configserver if your using atomic secure linux. it does a lot more too

i think its all the acquisitions. r1soft has been bought and sold several times since 2014 and thats rarely good for support.

if you harrass them enough they will make a module for your kernel

wrong command for outbound, run this instead

iptables -L OUTPUT -v -n

i see that in the rules SecRule ARGS|XML:/* "(?:sun\.misc\.base64decoder|unmarshaller\.base64data)" \ "chain,phase:2,status:403,deny,log,auditlog,id:337206,rev:6,severity:2,t:none,t:lowercase,t:urlDecodeUni,msg:'Atomicorp.com WAF Rules - Virtual Just In Time Patch: Struts RCE attack b...

asl kernel is 4.4.48:

uname -r
4.4.80-2010.el7.art.x86_64

i see a lot of these attacks stopped maybe you have that rules turned off?

no problems on 7 with the kernel, performance is fine for me

why does cpanel put anything in /usr/local, what is this 1995?

what kernel is your system? u can run this command to find out
uname -r

It is absurd for an MX not to support TLS. This forces all your messages to be shouted in clear text over the internet from server to server.

qmail was written before tls even existed. is it any wonder it doesnt support it? of course you could ask for your money back lol

what are your firewall rules?

u need to configure apaches errordocument directive. its going to the default setup page when its not defined

here you go

http://www.atomicorp.com/wiki/index.php ... pplication

that means you're loading the rules twice youve got a pretty complicated apache configuration so if I had to guess #1 you have a wild card in some other file loading all the rules which then get loaded again because youve explicitly defined them #2 you have another configuration file thats also load...

if the files have been changed that means they edited the files. when this has happened to us its because they guessed a password and logged in to the shell.