I have installed CloudPanel and the new website caused a “Too many redirects” bug. This is because my SSL certificates are controlled by a proxy and this can cause some confusion between the systems. Also, because CloudPanel installs its own certificates.
This application can also install a Let’s Encrypt certificate, but this works only in more conventional systems. Mine is going through a DNS to a Proxy that listens to a certain IP address and that proxy redirects the request to a Virtual Machine on one of my servers.
So, here is my, probably unconventional method of disabling the SSL certificates on my CloudPanel installation:
Done! Your website should now say “Hello world :-)”
You can see that I have disabled the listen to port 443, the certificate keys, the forced https and the path to the keys. I chose to switch off the forced HTTP, because my proxy is already taking care of that.
This post is subject to change, but this helps you along your way!
Since unraid forum is throwing a hissyfit with its captcha thing, I’ll just post it on my own website.
root@<containername>:/data# archivebox manage createsuperuser
[i] [2021-11-11 14:29:07] ArchiveBox v0.6.2: archivebox manage createsuperuser
[i] ArchiveBox should never be run as root!
For more information, see the security overview documentation:
“Cannot connect to the network folder. Ensure the shared folder name is correct”
TL;DR: Switch SMB 1.0/CIFS support ON in Windows 10. Share folder to everyone. Maybe use the computer’s user/pass. Done.
My HP LaserJet 300 colorMFP M375nw suddenly stopped scanning to a network folder in Windows 10. After many hours of futile searching, I have found the solution.
Perhaps it is not the safest solution, but heck it needs to work. Now.
If you have not changed anything to your share folder, please proceed to step 2.
Setting up your shared folder is a drag in Windows 10, since you can basically do it in multiple ways with one showing something differently than the other.
1. R-Click the folder that you want to share
2. Click Properties
3. Click the Share tab
4. Select Everyone in the pull-down menu
5. Click Add
6. Select Read/Write on the right of the Everyone entry
7. Click the Share button
8. Click Ready or OK
9. Close the Properties window
1. Open the control panel
2. Click Programs and Features
3. Click Programs and Functions in the top right corner
4. Click Add/Remove Windows Features in the left column. (the one with the shield ,I am translating this from Dutch)
5. Search for SMB 1.0/CIFS support and check that box
6. Click OK
Thing should be working again and if not, do check if the shared folder address in your printer’s share panel is correct.
Press Y and enter to continue. It will now do the thing. Patience, young one. Phase 1, 2 and 3 should all install without a hitch. [ OK! ]
While you are waiting, go set up the DNS at your registrar.
@ 1000 MX 10 mail.domainname.tld
* 1000 A 0 VPS_IP_ADDRESS
@ 1000 A 0 VPS_IP_ADDRESS
ftp 1000 A 0 VPS_IP_ADDRESS
localhost 1000 A 0 127.0.0.1
mail 1000 A 0 VPS_IP_ADDRESS
pop 1000 A 0 VPS_IP_ADDRESS
www 1000 A 0 VPS_IP_ADDRESS
Don’t worry about the SPF, domainkey, the acme-challenge and the dmarc yet.
If you get “Device “link” does not exist.”, type in the name of the network interface you found at step 1
All should be ready now and you should see a few success messages. If not, go fix.
Time for a little maintenance.
apt-get upgrade -y
apt-get dist-upgrade -y
RESTART THE VPS
To the control panel mobile!
Log in with your root password
You will now have to go through the post-installation wizard, press Next
Set everything up to according to your wishes. For me, that’s:
Preload Virtualmin libraries? yes
Run email domain lookup server? yes
Run ClamAV server scanner? yes
Run SpamAssassin server filter? yes
Run MariaDB/MySQL database server? yes
Run PostgreSQL database server? no
Set a MySQL password. Make it strong!
MariaDB/MySQL configuration size:
Primary nameserver : YOUR_HOSTNAME and tick the checkbox “Skip check for resolvability”
Password storage mode: Only store hashed passwords
Virtualmin post-installation configuration is now complete!
Are we done yet? D: No.
Click “Re-check and refresh configuration”If you get
Virtualmin is configured to setup DNS zones, but this system is not setup to use itself as a DNS server. Either add 127.0.0.1 to the list of DNS servers, or turn off the BIND feature on the module config page.
Click list of DNS servers and add 127.0.0.1 in the DNS Servers field and press Save. Next, click Apply Configuration. Then, click the Virtualmin on top, click System Settings and then Re-check Configuration.
No errors? Click Return To Virtual Servers List
Your Virtualmin installation is now ready to had domain names etc added.
Set up your first virtual server
Click Add New Virtual Server, Owned By: <new user>
Enter the following data:
Domain name: YOUR_DOMAINNAME.TLD
Description: Optional, but make a short desc.
Administration Password: STRONG_PASSWORD!Under Enabled Features tick the options you would like to have. I basically tick everything except for “Setup IP-based virtual FTP” since I don’t need it.
Click Create Server
If all went well, click Return To Virtual Server Details where you can check things again
Time to install a SSL certificate for your domain
Is your domain available already under simple http://? If you have moved your domain and changed your DNS, ping your domain as well to see if everything is set correctly and has been propagated completely. Your frontpage of your domain should say “Apache2 Debian Default Page”
Time to make some DNS additions! Click Server Configuration and then click DNS Records.
Move the following data over to your DNS settings at your registrar:
SPF, _acme-challenge.mail and _acme-challengeSo, here’s an example:For SPF:
When everything is set up, go to the Virtualmin tab, click Server Configuration and then click SSL Certificate
Click Let’s Encrypt
Did you set up your DNS according to the pre-filled list you see in the field named “Domains associated with this server”? Then you’re good to go and click Request Certificate. If not, manually enter the domain and subdomains.At this point, the request either succeeds or fails. In the latter case, click SSL Certificate again, then Let’s Encrypt and correct the wrong entry.TIP: If you have errors and try to get a certificate too many times, you get an error about that as well. If you get the following message, go play outside for a little bit or proceed with setting up email as described in the next part.
Error requesting challenges: Error creating new authz :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/
Setting up e-mail
Click the Virtualmin tab, then Edit Users
Click + Add a user to this server
Enter a mailbox name, like “info”
Enter a password
Click the Create button
Now this has been set up, you can poke your DNS settings again! Woo!
Click the Virtualmin tab, then Email Settings, then DomainKeys Identified Mail
Click Install Now and wait
At the bottom of the page, it should read
installation completed successfully
Click Return To DKIM Form
Set the DKIM up as follows:Signing of outgoing mail enabled? yes
Selector for DKIM record name: 2018
Reject incoming email with invalid DKIM signature? yes
Size of new DKIM key: 2048Press Save when done
All should be well, so click Return To DKIM Form
Click Return To Virtual Servers List
Click the Virtualmin tab, then Server Configuration, then DNS Options
Set this form up as follows:SPF record enabled? yes Allowed sender hostnames: DOMAINNAME.TLD
DMARC record enabled? yesPress Save when done
Click the Virtualmin tab, then Server Configuration, then DNS Records
Copy the _dmarc entry over to your DNS settings at your registrar
Click the Virtualmin tab, then Email Settings, then DomainKeys Identified Mail
Set “Signing of outgoing mail enabled?” to yes
Click the Save button
Click Return to DKIM form
Copy part of the content of the field “DNS records for additional domains” over to your DNSExample:
2018._domainkey IN TXT ( “v=DKIM1; k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8/I4PwduFS/q”
“5L+Bec7hQIDAQAB” )This will end in a train wreck, so remove the first part, namely:2018._domainkey IN TXT ( …. )