What is CloudLinuxOs?

[admin]

CloudLinux is a linux based operating system designed to give shared hosting providers a more stable and secure OS. Essentially a set of kernel modifications to the Linux distribution, CloudLinux implements features to enable system administrators to take fine-grained control of their server’s resource usage. By isolating users, CloudLinux helps ensure that problems with one account don’t degrade the service for others.

CloudLinux virtualizes user accounts using a feature called LVE (LightWeight Virtual Environment). Each LVE is allotted a certain amount of resources (memory, CPU, etc.) which are separated from the server’s total resources.

CloudLinuxOs is good!
Many dependency and Vulnerabilities in the Critical software security loopholes on my server handled directly by CloudLinuxOs.
I've been using cPanel for 15 years and CloudLinuxOs for about.... 3-4 years (If not forgot...).
CloudLinuxOs is used when cPanel Not support Linux Distro for EOL of Centos 5 at that time.
But apparently after the migration... It's Looks like NginX and php-fpm aren't compatible with CloudLinuxOs at that time...
So... I have decided to set back to php-cgi and Apache HTTP Server which is commonly used by Web server on Linux systems. Then everything's worked fine.
Really don't know what's went wrong exactly...
but If your core business is related to Email Marketing...
Read on!

Currently...
I'm using EA-PHP and ZendGuardLoader (Php script programming encoded with Zend engine for security purpose) rather than CageFS + Alt-PHP.
I'm not using CageFS and MySQL Governor modules (Precaution to use Alt-PHP). It's slowing down my outbound email process.
And to make sure that all of my websites sending all of outbound emails in the real time,
I'm using these directions to my server activity:

Code: Select all

# Protect your server from malicious virus, malware, spyware, etc.
# with direction Like this:

chkconfig clamd on

If you're using CSF Firewall for your server, make sure this configuration set up correctly:
Within your WHM:
/etc/csf/csf.ignore

Code: Select all

# Do not remove or change this line as it is a safeguard for the UI editor
###############################################################################
# Copyright 2006-2018, Way to the Web Limited
# URL: http://www.configserver.com
# Email: sales@waytotheweb.com
###############################################################################
# The following IP addresses will be ignored by all lfd checks
# One IP address per line
# CIDR addressing allowed with a quaded IP (e.g. 192.168.254.0/24)
# Only list IP addresses, not domain names (they will be ignored)
#

127.0.0.1

Include /etc/csf/cpanel.comodo.ignore
Include /etc/csf/cpanel.ignore

cmd:spamd child

Code: Select all

# To fix error from: Cron <root@(your_server_name)> run-parts /etc/cron.daily
# Like this:
# /etc/cron.daily/logrotate
# error: stat of /var/log/maillog failed: No such file or directory

touch /var/log/maillog
chmod 600 /var/log/maillog
chown root:root /var/log/maillog

Code: Select all

# If got the error like this: (If you're using CSF Firewall)
# iptables: Unknown error 18446744073709551615
# then run this command:

chkconfig dnsmasq off

Code: Select all

# starting update spamd to get able to reach any of the sa-update mirrors. 
# Updating Apache SpamAssassin™ 

/scripts/sa-update_wrapper

Code: Select all

# Clear the server memory cache every 3 hour on minute 2
# use command:
# nano /var/spool/cron/root 
# to add this direction to your cron jobs:

2 */3 * * * sync; echo 3 > /proc/sys/vm/drop_caches >/dev/null 2>&1

Code: Select all

# Most important things for my server
# in cPanel WHM :
# Home »Server Configuration »Tweak Settings »PHP
# and thickmark ioncube and sourceguardian.
#
# Regarding CSF firewall Warning like this: 
# You should modify /usr/local/lib/php.ini and set:
# enable_dl = Off
# This prevents users from loading php modules that affect everyone on the server. 
# Note that if use dynamic libraries, such as ioncube, 
# you will have to load them directly in the PHP configuration.
# (usually in /usr/local/lib/php.ini)
#
# Just keep your /usr/local/lib/php.ini 
# and set with this direction:
# enable_dl = On
# To make ZendEngine working.
#
# install IonCubeLoader

/scripts/phpextensionmgr

# Install Zend GuardLoader 

/scripts/installzendopt
 

Code: Select all

# Then check your server with ssh access such like this (I'm using php 7.3.33 cli):
php -v

# and the result will looks like this:

PHP 7.3.33 (cli) (built: Jan 19 2022 21:11:46) ( NTS )
Copyright (c) 1997-2018 The PHP Group
Zend Engine v3.3.33, Copyright (c) 1998-2018 Zend Technologies
    with the ionCube PHP Loader + ionCube24 v10.4.5, Copyright (c) 2002-2020, by ionCube Ltd.

Code: Select all

# Then check your server with ssh access such like this:

hostnamectl

# and the result will looks like this:

   Static hostname: <Your_domain_server>
         Icon name: computer-desktop
           Chassis: desktop
        Machine ID: 9d9843c00baa42cfb6faxxxcdc5e
           Boot ID: 541cd09c1c864b27bdc6c8a60xxxx6a
  Operating System: CloudLinux 7.9 (Boris Yegorov)
       CPE OS Name: cpe:/o:cloudlinux:cloudlinux:7.9:GA:server
            Kernel: Linux 3.10.0-962.3.2.lve1.5.39.el7.x86_64
      Architecture: x86-64

Code: Select all

# check your WHM server release with ssh access such like this:
/usr/local/cpanel/cpanel -V

# and the result will looks like this (I'm using stable WHM LTS Release):
94.0 (build 24)

Code: Select all

# Fix mysql error everyday at 2:25 am and add this to the crontab
# nano /var/spool/cron/root

25 2 * * * mysqlcheck --auto-repair --optimize --all-databases >/dev/null 2>&1

Code: Select all

# To Ensure that you can even disable LVE limits and avoid email queue stuck :
# just add this command to all of your mail server:

lvectl set-user root --unlimited

# and for another user cPanel websites:

lvectl set-user [username] --unlimited