That did it, everything is working.

Apache 2.4.48 & TLS 1.3

@cloudbox hi use all_methods template for apache

@siteurl hi update cwp and check as it was fixed

@sandeep Hi Sandeep,

I am testing the default cwp page which is etting good scores but "Initial server response time" is high

@sandeep said in Modpagespeed configurations:

c

Hi Sandeep, thank you.

I have achieved good points for this domain without pagespeed mod. I would not like to disturb it now.

Will share you details of another domain soon.

mysorecabs_mobile.jpg

@josepp 💨
its already out for new CWP installation, existing installations need to be checked and will be later added.

@alper-peri̇
hi it is n=indeed installed fro other slurces @epel
it should be @nginx

run this command :

yum remove nginx -y && yum install nginx -y

then rebuild webserver from cwp

@sandeep said in change zerossl CA to letsencript CA acme permanently:

/root/.acme.sh/acme.sh --set-default-ca --server letsencrypt

Thank you

@sandeep I deleted the ssl of the subdomain and created an A record for dns. I tried getting ssl again, Although it gave an error because I tried too much. But right now it works the way I want.

Also definitive solution for those who missed like me: https://www.mysterydata.com/how-to-change-and-install-ssl-for-hostname-in-cwp-control-web-panel/

Thank you @sandeep

@sandeep try this :

rpm -ivh https://github.com/MailScanner/v5/releases/download/5.3.4-3/MailScanner-5.3.4-3.rhel.noarch.rpm

and follow this guide :
https://www.mailscanner.info/postfix/

@galactus i didn't changed anything other than adding key and edited sshd config.

@perfectad7
you need to add this rule to nginx domain vhost :

try_files $uri $uri/ /index.php?$args;

so for ssl it will look like this :

location / { try_files $uri $uri/ /index.php?$args; add_header Strict-Transport-Security "max-age=31536000"; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; location ~.*\.(%proxy_extensions%)$ { expires max; }

and non ssl :

location / { try_files $uri $uri/ /index.php?$args; location ~.*\.(%proxy_extensions%)$ { expires max; }

its best to create your own vhost template and assign that to all of your domains.

@sandeep Thanks for the update, all working fine now. Way faster login in user panel.

@bmask you can simply enable filesystem lock it will lock the file no one will able to edit and delete via ftp.

@josepp yes cwp will work fine in alma and in future were improving cwp for centos stream.

@sandeep Last night, after the server backup, I tried this method, so far the error has not happened, in these days if there is any change I will write you.

Thank you!

tested on multiple centos version it works fine here is configure summary, python 3.8.x building is must before compiling latest nghttp2

configure: summary of build options: Package version: 1.43.0 Library version: 34:1:20 Install prefix: /usr System types: Build: x86_64-pc-linux-gnu Host: x86_64-pc-linux-gnu Target: x86_64-pc-linux-gnu Compiler: C compiler: gcc CFLAGS: -g -O2 LDFLAGS: C++ compiler: g++ CXXFLAGS: CXXCPP: C preprocessor: gcc -E CPPFLAGS: WARNCFLAGS: WARNCXXFLAGS: CXX1XCXXFLAGS: EXTRACFLAG: -fvisibility=hidden LIBS: Library: Shared: yes Static: yes Python: Python: /usr/local/bin/python3.8 PYTHON_VERSION: 3.8 pyexecdir: ${exec_prefix}/lib/python3.8/site-packages PYTHON_CPPFLAGS:-I/usr/local/include/python3.8 PYTHON_LIBS: -L/usr/local/lib -lpython3.8 Cython: Test: CUnit: no (CFLAGS='' LIBS='') Failmalloc: yes Libs: OpenSSL: yes (CFLAGS=' ' LIBS='-lssl -lcrypto ') Libxml2: yes (CFLAGS='-I/usr/include/libxml2 ' LIBS='-lxml2 ') Libev: no (CFLAGS='' LIBS='') Libc-ares: no (CFLAGS='' LIBS='') Libevent(SSL): no (CFLAGS='' LIBS='') Jansson: no (CFLAGS='' LIBS='') Jemalloc: no (LIBS='') Zlib: yes (CFLAGS=' ' LIBS='-lz ') Systemd: no (CFLAGS='' LIBS='') Boost CPPFLAGS: Boost LDFLAGS: Boost::ASIO: Boost::System: Boost::Thread: Third-party: http-parser: no MRuby: no (CFLAGS='' LIBS='') Neverbleed: no Features: Applications: no HPACK tools: no Libnghttp2_asio:no Examples: no Python bindings:no Threading: no