When using cPanel/Sectigo as the SSL provider for AutoSSL, you may occasionally see this error in the autossl log: The “cPanel (powered by Sectigo)” provider cannot currently accept incoming requests. The system will try again later. This error seems to be caused be incorrect permissions in /var/cpanel/ssl/domain_tls/. You can fix this with the following command:…
Read more
Having SSL problems? One of the most common issues our team handles is related to websites not properly displaying over HTTPS, whether it be the website either not loading entirely, or just not showing the green padlock: If you’re sure that the SSL certificate is installed properly, but your site isn’t showing as secure, there…
Read more
If you’re on a cPanel server, you’ve probably noticed a sizable folder called ‘virtfs’ sitting in /home, which would appear at first to be using a ton of space. Your first inclination might be to delete it, but don’t! Most likely, the files in that folder are actually just hard links or bind mounts and…
Read more
cPanel allows you to easily create custom Exim filters by simply dropping the rules in /usr/local/cpanel/etc/exim/sysfilter/options/ and running: /scripts/buildeximconf service exim restart Here are a couple useful examples of filters we’ve created for our customers: Prevent email delivery to certain domains: if (“$h_to:, $h_cc:” contains “@domain.com”) or (“$h_to:, $h_cc:” contains “@domain.com”) then fail text “Emails to…
Read more
If you have more than a few cPanel servers in your network, it may be a good idea to set up your own mirror to serve the files necessary to run cPanel updates. Doing this could save time and bandwidth, as well as prevent problems caused by mirrors being overloaded every time a new version…
Read more
Update! cPanel supports LetsEncrypt, but you just need to install the plugin for it to work. To do this, run: /scripts/install_lets_encrypt_autossl_provider Once installed, Let’s Encrypt will appear in WHM’s Manage AutoSSL interface (Home >> SSL/TLS >> Manage AutoSSL) where you can enable the provider. At the time of this writing, LetsEncrypt is in public beta…
Read more
The cPanel update fails due to a problem installing RPMs, but is not specific about what the problem is: [20160203.180007] Testing if the newly downloaded RPMS can be installed without conflict [20160203.180007] Testing RPM transaction [20160203.180012] [20160203.180012] ***** FATAL: Test install failed: [20160203.180012] The Administrator will be notified to review this output when this script…
Read more
When attempting to create a user or restore a backup you may see this error: This system already has a database owner named___ To fix this, edit the following files on the system and remove entries for the user in question: /var/cpanel/databases/users.db /etc/dbowners…
Read more
If your server is using a NAT setup and for some reason isn’t properly showing the correct public IP that should be mapped to the private IP on your server, you can easily fix this by creating a script to tell cPanel what the public IP should be. For example, you can simple put the…
Read more
Note: This is an update from our 2011 post. If you’ve taken a peek at your PCI scan results lately, you may have noticed that your scan provider is now requiring OpenSSH 6.6 or higher due to CVE-2014-2532 – a version that is not currently available in the CentOS 5 or 6 repositories. A Yum update isn’t going…
Read more