Cpanel/WHM sometimes has problems with the user quota files causing all users accounts to have unlimited disk space available or 0 megs of disk space in use. This obviously confuses your customers and doesn’t show a real representation of actual disk space being used by your clients. This guide will take you through fixing any quota issues with Cpanel manually or automated.
Common reasons for quota problems

- There are files owned by the same user elsewhere on the server
- The backup directory is being counted towards the users disk quota
- Extra log files are being counted towards the users quota
- Cpanel was just updated and the quotas are now unlimited

Quick Fix – an easy way to fix quota issues

Step 1. Log into your server through SSH as the root user.

Step 2. Run the following command

/scripts/fixquotas

Advanced Fix – other reasons quotas are not working

Step 1. Find the user account where the quotas are incorrect and login to your server in SSH as root.

Step 2. Go to the users folder and check their disk space being used.

cd /home/username
du -h or try du -hs

Step 3. Check /etc/passwd and /etc/shadow to make sure there is no weirdness where the username shows up multiple times.

Step 4. Try finding other files owned by the user.

find -user username | more

This will list all files owned by this user that could be affecting the quota reported by Cpanel.

Step 5. Uncompressed backups can cause quota problems, ensure your backups are compressed in the WHM backup options.

Step 6. After your determine the source of the files and remove them then run

/scripts/fixquotas

No related posts.

1) DDOS protection using CSF through “SYNFLOOD”.
2) Install apache modules like mod_dosevasive and mod_security in your server.
3) The best,free & open sources solution to protect from DDOs :- http://deflate.medialayer.com/
4) Configure APF and IPTABLES to reduce the DDOS.

Description here :-

1.) DDOS protection using CSF through “SYNFLOOD”. & Connection tracking :- Please modify these option through CSF
:-
# Enable SYN Flood Protection. This option configures iptables to offer some
# protection from tcp SYN packet DOS attempts. You should set the RATE so that
# false-positives are kept to a minimum otherwise visitors may see connection
# issues (check /var/log/messages for *SYNFLOOD Blocked*). See the iptables
# man page for the correct –limit rate syntax
SYNFLOOD = Default: 0
SYNFLOOD_RATE = 100/s
SYNFLOOD_BURST = 150

# Connection Tracking. This option enables tracking of all connections from IP
# addresses to the server. If the total number of connections is greater than
# this value then the offending IP address is blocked. This can be used to help
# prevent some types of DOS attack.
#
# Care should be taken with this option. It’s entirely possible that you will
# see false-positives. Some protocols can be connection hungry, e.g. FTP, IMAPD
# and HTTP so it could be quite easy to trigger, especially with a lot of
# closed connections in TIME_WAIT. However, for a server that is prone to DOS
# attacks this may be very useful. A reasonable setting for this option might
# be arround 300.
#
# To disable this feature, set this to 0
CT_LIMIT = Default: 50 (means 50 connections per ip address)
# Connection Tracking interval. Set this to the the number of seconds between
# connection tracking scans
CT_INTERVAL = Default: 30
# Send an email alert if an IP address is blocked due to connection tracking
CT_EMAIL_ALERT = Default: 1
# If you want to make IP blocks permanent then set this to 1, otherwise blocks
# will be temporary and will be cleared after CT_BLOCK_TIME seconds
CT_PERMANENT = Default: 0
# If you opt for temporary IP blocks for CT, then the following is the interval
# in seconds that the IP will remained blocked for (e.g. 1800 = 30 mins)
CT_BLOCK_TIME = Default: 1800
# If you don’t want to count the TIME_WAIT state against the connection count
# then set the following to “1″
CT_SKIP_TIME_WAIT = Default: 0
# If you only want to count specific states (e.g. SYN_RECV) then add the states
# to the following as a comma separated list. E.g. “SYN_RECV,TIME_WAIT”
#
# Leave this option empty to count all states against CT_LIMIT
CT_STATES =
# If you only want to count specific ports (e.g. 80,443) then add the ports
# to the following as a comma separated list. E.g. “80,443″
#
# Leave this option empty to count all ports against CT_LIMIT
CT_PORTS = 80,443

======================================================
2) Install apache modules like mod_dosevasive and mod_security in your server= :-

mod_evasive and mod_security modules are used to secure Apache Web Server from DDoS and brute force attacks by implementing web application firewall.

The mod_evasive authoring site (zdziarski.com) states that mod_evasive is an evasive maneuvers module for Apache to provide evasive action in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera..

*Note: mod_evasive module has been known to cause problems with frontpage server extensions. If you use frontpage server extension, you should thoroughly test your mod_evasive installation before deploying a production server.

[root@map007~]# cd  /usr/local

[root@map007 local]#  wget http://www.zdziarski.com/blog/wp-content/uploads/2010/02/mod_evasive_1.10.1.tar.gz
[root@map007 local]# tar -xvzf mod_evasive_1.10.1.tar.gz
[root@map007 local]#  cd mod_evasive
[root@map007 mod_evasive]#  /usr/local/apache/bin/apxs -cia mod_evasive.c
[root@map007 mod_evasive]# mv mod_evasive.loT mod_evasive.lo
[root@map007 mod_evasive]# /usr/local/apache/bin/apxs -cia mod_evasive.c
[root@map007 mod_evasive]#  httpd -M|grep evasive

Edit httpd.conf with the following details
[root@map007 mod_evasive]# vi /etc/httpd/conf/httpd.conf

<IfModule mod_evasive20.c>
DOSHashTableSize   3097
DOSPageCount   2
DOSSiteCount   50
DOSPageInterval   1
DOSSiteInterval   1
DOSBlockingPeriod   600
</IfModule>

[root@map007 mod_evasive]# cd /usr/local/apache/modules/
Then download mod_evasive20.so through web and place it in modules directory and change the permission with 755.

[root@map007 ~]#  /etc/init.d/httpd restart

======================================================

3) The best,free & open sources solution to protect from DDOs :-

http://deflate.medialayer.com/ :-

(D)DoS Deflate is a lightweight bash shell script designed to assist in the process of blocking a denial of service attack. It utilizes the command below to create a list of IP addresses connected to the server, along with their total number of connections. It is one of the simplest and easiest to install solutions at the software level.

netstat -ntu | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n

IP addresses with over a pre-configured number of connections are automatically blocked in the server’s firewall, which can be direct iptables or Advanced Policy Firewall (APF). (We highly recommend that you use APF on your server in general, but deflate will work without it.)
Notable Features :-

* It is possible to whitelist IP addresses, via /usr/local/ddos/ignore.ip.list.
* Simple configuration file: /usr/local/ddos/ddos.conf
* IP addresses are automatically unblocked after a preconfigured time limit (default: 600 seconds)
* The script can run at a chosen frequency via the configuration file (default: 1 minute)
* You can receive email alerts when IP addresses are blocked.

Installation :-

[root@map007 ~]# wget http://www.inetbase.com/scripts/ddos/install.sh
[root@map007 ~]# chmod 0700 install.sh
[root@map007 ~]# ./install.sh

Uninstallation :-

[root@map007 ~]# wget http://www.inetbase.com/scripts/ddos/uninstall.ddos
[root@map007 ~]# chmod 0700 uninstall.ddos
[root@map007 ~]# ./uninstall.ddos

4) Configure APF and IPTABLES to reduce the DDOS.

Source: Linuxsurgeon.org

No related posts.

So lets get started!

1. Login to your server and su to root, I know the irony!

2. cd /root

3. pico .bashrc

4. Scroll to the end of the file then add the following:
echo ‘ALERT – Root Shell Access (YourserverName) on:’ `date` `who` | mail -s “Alert: Root Access from `who | cut -d’(‘ -f2 | cut -d’)’ -f1`” you@yourdomain.com

Replace YourServerName with the handle for your actual server
Replace you@yourdomain.com with your actual email address

5. Crtl + X then Y

Now logout of SSH, close the connection and log back in! You should receive an email address of the root login alert a few minutes afterwards.

Note: This is a great tool for servers that have multiple admins or if you give someone SSH access for whatever reason, although you should give out the root password to as few people as humanly possible and be sure to change it often.

This will not magically alert you when a hacker runs the latest kernel exploit on your server and logs into SSH because they will create their own SSH/telnet connection. You should keep your system up to date, install a firewall and follow the latest security releases.

No related posts.

To fix this error make sure you recreate the archives folder as well as the partial folder. open a console window and type

1. cd /var/cache/apt

2. Type ls check to make sure archives folder is displayed in case you dont see the archives folder create the folder

sudo mkdir archives if you already have the archives folder then skip this step.

3. type cd archives , create the partial folder by typing sudo mkdir partial

4. type sudo apt-get autoclean to make sure apt is working properly.

Thats it you should now be able to get apt to work properly.

No related posts.

Exception in thread “main” java.lang.NoClassDefFoundError: uk.co.planetbeyond.servicemonitor.gui.ClientMain
at java.lang.Class.initializeClass(libgcj.so.90)
Caused by: java.lang.ClassNotFoundException: javax.swing.RowSorter not found in gnu.gcj.runtime.SystemClassLoader{urls=[file:/home/sajid/sm/sm.jar], parent=gnu.gcj.runtime.ExtensionClassLoader{urls=[], parent=null}}
at java.net.URLClassLoader.findClass(libgcj.so.90)
at gnu.gcj.runtime.SystemClassLoader.findClass(libgcj.so.90)
at java.lang.ClassLoader.loadClass(libgcj.so.90)
at java.lang.ClassLoader.loadClass(libgcj.so.90)
at java.lang.Class.initializeClass(libgcj.so.90)

I googled it to get some solution but everyone had its own answer for this error. Browsing through this thread over Ubuntu forums I found this solution and it worked for me. All I have to do is to run this command in a terminal:
sudo update-java-alternatives -s java-6-sun
According to the author this command sets the JRE6 to run by default. That No Class Def Found error was probably due to invalid path to the appropriate JRE installation. Give it a try if your are facing this error.

No related posts.

The Ubuntu developers are moving quickly to bring you the absolute latest and greatest software the Open Source Community has to offer. The Jaunty Jackalope Alpha 3 will be the third alpha release of Ubuntu 9.04, bringing with it the earliest new features for the next version of Ubuntu.

This is still an alpha release. Do not install it on production machines. The final stable version will be released on April 23rd, 2009.

Download Links(direct links):
Ubuntu 9.04 Alpha3 32bit
Ubuntu 9.04 Alpha3 64bit

No related posts.

1. Login as root to your server using Putty.

2. Now enter the following command to edit the ssh config file.

pico /etc/ssh/sshd_config

3. Now change the Port

4. Save the changes by pressing (ctrl+o)

5. Close that editing mode using (ctrl+x)

6. Restart SSH using the following command

service sshd restart

7. Now Login with new SSH Port.

No related posts.

Once you are connected to the server via SSH, run the following command:
# df -h

This will output the usage of each partition in the server. To list the size of a specific directory, run the following command:
# du -sh /home/

If you want to list all the subdirectory sizes under /home, run the following command:
# du -sh /home/*

The output of the ‘df’ command will show you overall disk usage. To find out how much space a give directory is used us the ‘du -s ‘ command.

No related posts.

No related posts.

Firefox menu > File > Quit
Then execute in terminal:
sudo killall -9 -r firefox
sudo apt-get purge firefox firefox-3.0 ubufox
sudo apt-get install –reinstall firefox firefox-3.0 firefox-3.0-gnome-support
When it’s done, try run firefox

I hope it works.

No related posts.