aaP_llopez870407
Hello, please can't upload what information? What information does the error log of the website log indicate?
At the same time, check whether the permissions of the directory /www/wwwroot/xxx.com/wp-content/uploads under the site are normal?
aaPanel 6.8.28 released on 07 Jun. 2023
aaPanel_Kern I set the permissions of the directories to 777 to ensure that this was not the issue and when installing plugins it does not give a permissions error, which makes me think that in this case it is not the problem, even in one of the many tests it came up by itself an image from the creation of a new entry, not from the media option, but only an image, the second one no longer left.
where can i see the website error log?
angelTDW
@aaPanel_Kern when i execute the bt 16 command
i get the error message
"Could not resolve host: download.bt.cn"
how to overcum this error? and update the panel.
angelTDW
Hello, execute this command with root privileges to update and repair
curl https://node.aapanel.com/install/update6_en.sh|bash
I want to reinstall version 6.8.27, how do I do? Because 6.8.28 doesn't work the same as 6.8.27 . Please help me
Hello, where is the problem? Can you elaborate?
aaPanel_Kern
I just comment. If there is a new version, still let users choose the old version to install. Because many times they are used to the old version
aaPanel_Kern Gracias por el dato de los logs. He notado que el problema que he reportado sobre wordpress está relacionado con WAF Nginx, cuando lo desactivo o añado a la lista blanca mi IP no me da error wordpress. En los logs del WAF reporta como ataques la acción de subir imágenes. ¿alguna sugerencia?
Rocky Linux release 8.8 (Green Obsidian)
This scan checks 2 risks, fix them in time!
Please explain well since when I modify the status does not change to security.
I have restarted the server and nothing.
elite
Hi, thanks for your feedback, this is a known issue. Just ignore it after changing
aaP_llopez870407
Hello, try adding the upload link to the url whitelist of waf
Or add your local IP to waf's IP whitelist
hello, I have a problem that after restarting the server, nginx does not start automatically, I have to start it manually via aapanel. Everything was working great before the upgrade
thx very much
Hi, after updating from 6.8.27 to 6.8.28 (with Debian 11), I get these 5 security issues:
Critical file permission checks
Test type: Critical file permission checks
Risk level: High risk
Risk detail: The following critical files or directories have permission errors:
/etc/shadow Current permissions: 640 : root Suggested changes to: 400 : root
/etc/security Current permissions: 755 : root Suggested changes to: 600 : root
/etc/gshadow Current permissions: 640 : root Suggested changes to: 400 : root
/etc/shadow Current permissions: 640 : root Suggested changes to: 400 : root
/etc/gshadow Current permissions: 640 : root Suggested changes to: 400 : root
Solution: 1、On the [File] page, set the correct permissions and owner for the specified directory or fileSSH idle timeout detection
Test type: SSH idle timeout detection
Risk level: Medium risk
Risk detail: The current SSH idle timeout time is: 0, it is recommended to set it to 300-900
Solution: 1、Set [ClientAliveInterval] in the [/etc/ssh/sshd_config] file to be between 600 and 900
2、Tip: The recommended SSH idle timeout time is: 600-900SSH connection attempts
Test type: SSH connection attempts
Risk level: Medium risk
Risk detail: The current maximum number of SSH connections is: 6, please set it to 3-5
Solution: 1、Set [MaxAuthTries] to 3-5 in the [/etc/ssh/sshd_config] file
2、Tips: Set [MaxAuthTries] to 3-5 in the [/etc/ssh/sshd_config] filePanel login alarm
Test type: Panel login alarm
Risk level: Medium risk
Risk detail: Please enable it in [Settings] - [Notification]
Solution: 1、Enable it in [Settings] - [Notification]The panel is not monitoring
Test type: The panel is not monitoring
Risk level: Low risk
Risk detail: Open it in [Monitor] - [System Monitor]
Solution: 1、Open it in [Monitor] - [System Monitor]
Thanks in advance
defin Estou com esses problemas de segurança também, quem puder ajudar agradeço....