I am getting below error message when i try to send email via horde (or) roundcube (or) squirrelMail

Failed to set sender: info@emailaddress.com [SMTP: Failed to write to socket: not connected (code: -1, response: )]

Solution:1
Try to find csf firewall is installed on whm. If yes follow the below steps if not skip to Solution:2

1. Login to WHM
2.WHM > Plugins > ConfigServer Security&Firewall > Firewall Configuration
3.In that file, ensure that “SMTP_ALLOWLOCAL” has a 1 next to it. If it does not, change to 1 and click the “Change” button
4. Restart CSF

Solution:2
Try to find mail service is running
1. Login to server via ssh
2. Service exim status. If stopped execute the below command
3. Service exim restart.

Hope the above solutions might fix the issue.

I am here to share you few free openvz  template.

Centos:
centos-4-x86.tar.gz - 151 MB
centos-4-x86_64.tar.gz - 164 MB
centos-5-x86.tar.gz - 173 MB
centos-5-x86_64.tar.gz - 183MB
centos-6-x86.tar.gz - 192MB
centos-6-x86_64.tar.gz - 205MB

Debian:
debian-5.0-x86.tar.gz - 132MB
debian-5.0-x86_64.tar.gz - 134MB
debian-6.0-x86.tar.gz - 149MB
debian-6.0-x86_64.tar.gz - 151MB

Fedora:
Fedora 13 i386 - 154MB
Fedora 13 x86_64 - 163MB
fedora-15-x86.tar.gz - 204MB
fedora-15-x86_64.tar.gz - 204MB

Suse:
suse-11.3-x86.tar.gz - 187MB
suse-11.3-x86_64.tar.gz - 191MB
suse-11.4-x86.tar.gz - 186MB
suse-11.4-x86_64.tar.gz - 190MB

Ubuntu:
ubuntu-8.04-x86.tar.gz - 108MB
ubuntu-8.04-x86_64.tar.gz - 110MB
ubuntu-10.04-x86.tar.gz - 135MB
ubuntu-10.04-x86_64.tar.gz -138MB
ubuntu-10.10-x86.tar.gz - 129MB
ubuntu-10.10-x86_64.tar.gz - 135MB
ubuntu-11.04-x86.tar.gz - 121MB
ubuntu-11.04-x86_64.tar.gz - 127MB
ubuntu-11.10-x86.tar.gz - 123MB
ubuntu-11.10-x86_64.tar.gz - 125MB

Openvz template – Centos + Cpanel
CentOS 5 i386 w/cPanel  (32bit)
CentOS 5 x86_64 w/cPanel (64bit)

Openvz template – Centos + Webmin
CentOS 5 i386 w/Webmin (32bit)
CentOS 5 x86_64 w/Webmin (64bit)

Below steps will explain you how to transfer hosting account from one server to other server via SSH rather than WHM method.

1. Log into the server that your copying the accounts from via SSH

2. # /scripts/pkgacct [username]

3. #scp cpmove-[username].tar.gz root@[NEWSERVERIP]:/home/

4. Log into the [NEWSERVER] via SSH

5. #/scripts/restorepkg [username]

IF you are using different SSH port on new server. You need to follow below step rather than 3rd step

# scp -P portnumber cpmove-[username].tar.gz root@[NEWSERVERIP]:/home/

I am here to provide you the solution which i have found from cpanel forum for domainname.com/cpanel is not working.

One of my client can able to access the domain name via cpanel port but unable to access it via /cpanel.

http://domainame.com:2082 — > works

http://domainname.com/cpanel  —- > Not working

Solution:

1. Need to check the httpd.conf file on server whether it have the below lines.If not we need to add it.

“ScriptAlias /cpanel /usr/local/cpanel/cgi-sys/redirect.cgi”

2.Open /var/cpanel/cpanel.config and search for alwaysredirecttossl word and change it to Zero.

3.Restart Cpanel.

That’s it. It will start to work

Installation instructions:

Step 1: Download Author Popup WordPress Plugin

Step 2: Extract and upload the entire author-popup directory  to /wp-content/plugins/

Step 3:  Open your theme’s single.php file  /wp-content/themes/yourtheme/single.php

Put this code     <?php the_author_posts_link();?>  inside class=”postmeta” area.

Step 4:  Activate the plugin in wp-admin area.

Additional Configurations:

#1. Author Popup plugin displays user’s gravatar picture based upon his email address.

#2. If you have wordpress profile custom fields with the name of “twitter” & “facebook” then, that user’s twitter & facebook profiles will be linked inside popup.

label: twitter

value: twitter username

label: facebook

value: full facebook profile url
label: youtube

value: full channel url

Demo

Credits:

Coda Popup Bubble‘s styles.

Author Exposed Plugin‘s Idea.

For feedbacks & bugs:

Please comment here., I will do improvements on next release.

My black hat social marketing methods are only for online marketers, Not for SEO experts. Because, they are good at link building & optimising html . They have no clue about “Online reputation”. SEO people always deal with spiders & algorithms. Social marketing is all about dealing with real persons & their interests.

To get succeed in social marketing,  You must spend nice amount of time with “Knock” method. (I will explain about it later).

“Give Away” Ads

Claim at your website that, You will be giving any one or many of the below gadgets on daily or weekly basis.

• iPad2
• iPod
• iPhone
• Others that doesnt starts with “i”

Tell them that, You will give away a free iPad every week for whom shares this give away page link in their Facebook , Google+ and tweet.  Nobody can trace out your give away results, Whether you are being ethical or not. They will simply forget about this  after seeing few “cat falls” videos & millions of other shared content by their personally unknown hundreds of friends.

Like to get “Discount Coupon”

This technique does not apply for people selling “physical commodities” or reselling items.  If you own a virtual or software product  then 100% of its cost is profit for you after some break even point. So, you may offer discount coupons. Do it if they like your page or site.

Create a Female Profile & Promote anything(ANYTHING)

Step 1: Just put a female profile picture(hermione, bella or atleast just facebook’s default female avatar).

Step 2: Find people who has lesser than 20-30 friends. Add them as your friend.

Step 3: Make your total friend count as 100-300 range (Thats the average friends count of a normal person at facebook)

Step 4:  Share 5-10  funny videos from youtube per week. (This will make your friends to listen to you)

Step 5: Share some cool gadgets, graphic version of future cars & etc.

Step 6: Share few TED talk videos

Step 7: Promote anything you want. This must be 1:10 ratio.  Share 9 cool things + 1 promotional material.

Step 8:  Create an another female profile.

Google+ Social Marketing Tips

Marketing your product at Google+ is ultra easy and you will surly get huge traffic back.

Step 1: Share a cool image or video and write about how great google+ is…

Step 2: Write a very very real look alike promotional post. “I bought this X e-book and read first 5 chapters, It sounds unbelievable & waste of time to me.  Because the tricks available at this Y book sounds possible. What do you think Matt?”

Step 2 Note1: Look., x is some popular & your competitive product.

Step 2 Note2: Y is your product.

Step 2 Note 3: Matt is some of your other fake profile (later you should add a comment from matt that, “Yeah I am reading Y by y Kindle now”

Step 3: Now, Add 100s of people at your circle. at-least 10-20 people per day (Google may suspect you for too much of activity)

Step 4:  Never add a newer post for a month. So that, This promotional post will be on top.

Step 5: 1000s of people whom you have added will give a look at your profile for at-least once.

Step 5 Note 1: they wont suspect you because of no newer posts. Nobody is active at  Google+ . So they will simply see your promotional post and it has higher possibility to get a click.

Do “Knock & Get Back” trick:

Step 1: Make a 100% profile with “sounds original” kind of information.

Step 2: Do the Step1 & Step 2 from Google+ trick (This applies for all social networks including LinkedIn)

Step 3: Go to all of your friend’s profiles.. Give  as much as possible “Likes” & +1s  (It is FREE!)

Step 4: Give positive, encouraging, blessing, motivated comments to every possible shared items of your 100s of friends.

Step 5: All of them will look back to you and think “Who is this highly motivated & positive holy fucker?”

Step 6: Thats it.. They will surly click at your recently shared promo content (it should be real look alike)

Social Marketing Success Formula:

Social Traffic =  Fake Female Profiles * (Crazy Content Sharing + Knocking Attitude)

Thats it. Please believe it., It has no constant, But still a formula.

Secret Tips for becoming “Oh Yeah! He is the Man!” kind of person online:

1. Dont be rude or carrot head with anyone.

2. Dont share excessive of hyperlinks. Social networks are for enjoying  Youtube + Flicker with friends under different domain.

3. Dont stop doing it.

4. Dont do this at Digg, Reddit , Slashdot, Hacker News ,  selective groups at LinkedIn or anywhere where smart people out there.

5. Never forget to like and +1 any crap shared by your friends. Because they think they are not crap.

 Do you have any cool black hat social marketing ideas to crack social crowd? Then kindly add your comment.

Author: KarthiKeyan

Step 1: How to secure SSH port in Linux server?

Gaining SSH root access is the primary goal of every crackers around. Once they could get root access., They will install rookkits, keyloggers, mail bombs and etc. So, They usually try to gain access to your server using some formal password combinations.  They attempt to login to your server using bruteforce method.

SSH always runs on port number 22

You have to change it to some non-default number like., 2323 or 3009  some number that is hard to guess.

/etc/ssh/sshd_config

above file is the default ssh configuration file. You can change its “Port” value by opening it using Vi or Nano.  CentOS Documentation has clear information about how to change linux server ssh port to a non-standard number. This instructions applies for any redhat kernel based distro.

Step 2: Always check your /tmp folder

It is like., Checking your trash can of your bedroom for any hidden cams. Yes., Some crackers upload a *.php  *.py *.sh files to your server’s /tmp file and let them to become a primary spamming bot in your server.  You have to always try to find if there are any suspicious file around there in /tmp and delete them.  Usually deleting the file wont pay off. You have to find the source loop hole that allows such file in /tmp . You have to audit your web applications that allows file-uploads and anonymous FTP uploads to your server.

Step 3: Disable Anonymous FTP Service

Enabling anonymous FTP service is most like., Inviting robbers by opening your house window.

/etc/proftpd.conf

/etc/vsftpdvsftpd.conf

Simply disable anonymous FTP.

Step 3:  Always use SFTP and completely stop using FTP

SFTP is more secure than you think. Most windows based ftp clients such as filezilla, smartftp & coreftp could be affected by many malwares and it will upload “Trojan Horse JavaScript” code to your website files. I personally got affected my many javascript trojans because of virus infected ftp client transfers.  This wiki page has clear & simple information about how to install SFTP

Step 4:  How to disable direct file or image hotlinking?

Lets say you have a cool picture file in your website. http://mywebsite.com/images/picture.jpg  . If  a guy puts your file in his website and lets say his website has thousands of visitors per day., Then, You will be endup paying money for your excessive bandwidth. Disabling hotlink is like., Saving money in your server bandwidth. This is one of the best tool that lets your to generate .htaccess code for hotlink protection.

You have to select a live chat system that has following features.,

• Easy to integrate with your website, Without modifying lots of code.
• Offers a deep integration with 3rd party chat protocols (Gtalk, MSN)
• Allows you to customize the theme of widget to blend to your theme

Olark Live Chat Review

One of the best thing about Olark is., It supports wide range of mobile devices & multiple chat protocols ( iChat, Adium, Pidgin, Meebo, GTalk, etc). Olark has one free plan that supports maximum 20 chat conversations per month with only one operator support.

ZopIM Live Chat Review

Zopim’s dashboard and account area has been crafted by flex UI. You can find a sleek & clean experience while chatting with your website visitors. Zopim has a free plan that allows only two concurrent chats and 1 operator.

LiveZilla Live Chat Service Review

LiveZilla is one of the popular & free live chat service. Unfortunately it supports windows client UI only. Unlike other live chat providers, It doesnt offer a web interface to chat with your website visitors.

Click Desk Live Chat Review:

ClickDesk is one of the handy and easy to integrate live chat system. It supports gtalk as its primary 3rd party plugin support. it has a permanent FREE plan that supports 2 operators + 5 concurrent visitor chats.

Below is the rpm required for Perl-GD

Perl-GD

Easy way to install rrdtool in centos via yum

Add the below repo to your yum repo

#vim yum.repos.d

[rrdtool]
name=rrdtoll RPM Repository for Red Hat Enterprise Linux
baseurl=http://apt.sw.be/redhat/el$releasever/en/$basearch/dag
gpgcheck=1
gpgkey=http://dag.wieers.com/rpm/packages/RPM-GPG-KEY.dag.txt
enabled=1

# yum install rrdtool

That’s it . You are done. !!!!!

You can download the GD library from the following url : Download

# tar -zxf gd-2.0.35.tar.gz
# cd 2.0.35
# ./configure
# make
# make install

# /usr/local/lib (default library location)
# /usr/local/include (library included files location)

# ./configure –prefix=/usr ( optional to upgrade) and do # make && make install

# ln -sf /usr/share/zoneinfo/Asia/Calcutta localtime

You can check by the below command

#date

Using the below steps you can add SPF record on a linux server running WHM control panel

For example:
Domain name: www.secureslash.com
Username: secure

Command to add SPF record for a domain name:

# /usr/local/cpanel/bin/domain_keys_installer secure

once done restart the dns service (/etc/init.d/httpd restart)

Steps to enable SPF record in Cpanel

1.Login into Cpanel

2.Under Mail Menu Click ” E-Mail Authentication”

3.Click on enable under ” SPF”

Command to check SPF record for a domain

# host -t txt secureslash.com

Command to add Domain keys for a domain name:

#/usr/local/cpanel/bin/domain_keys_installer secure

once done restart the exim service (service exim restart)

Steps to enable Domain keys in Cpanel

1.Login into Cpanel

2.Under Mail Menu Click ” E-Mail Authentication”

3.Click on enable under ” Domain Keys”

#vi /etc/network/interfaces

How to assign multiple IP addresses in debian linux:

You can assign multiple IP addresses to the same network interface by using interface alias. This is useful if you need to have more than one server visible on the internet. Note that for multiple Apache servers you can use virtual hosts to add as many servers as you like with one single IP address.Apache simply utilises the domain name supplied by the client in the http host header.

You must turn off dhcp because you must use static assignment if you are configuring multiple IPs, so basically this file is:

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
auto eth0
iface eth0 inet static
address 192.168.1.90
gateway 192.168.1.1
netmask 255.255.255.0
network 192.168.1.0
broadcast 192.168.1.255

Assuming that you interface is eth0, you can assign three IP addresses editing /etc/network/interfaces similar to this:

# the loopback interface
auto lo
iface lo inet loopback

#
auto eth0
iface eth0 inet static
address 192.168.1.42
netmask 255.255.255.0
broadcast 192.168.1.255
gateway 192.168.1.1

auto eth0:0
iface eth0:0 inet static
address 192.168.1.41
netmask 255.255.255.0
broadcast 192.168.1.255

auto eth0:1
iface eth0:1 inet static
address 192.168.1.43
netmask 255.255.255.0
broadcast 192.168.1.255

auto eth0:2
iface eth0:2 inet static
address 192.168.1.44
netmask 255.255.255.0
broadcast 192.168.1.255

Note that gateway is only assigned to eth0. If you include dns-nameservers, it should also only be specified for eth0.

If you make changes to this file you can cause them to take effect by running:
/etc/init.d/networking restart

# /etc/init.d/networking restart
Reconfiguring network interfaces…if-up.d/mountnfs[eth0]: waiting for interface eth0:0 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0]: waiting for interface eth0:1 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0]: waiting for interface eth0:2 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0:0]: waiting for interface eth0:1 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0:0]: waiting for interface eth0:2 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0:1]: waiting for interface eth0:2 before doing NFS mounts (warning).
done.

How to fix  if-up.d/mountnfs[eth0:1]: waiting for interface eth0:2 before doing NFS mounts (warning). ?

Reconfiguring network interfaces…if-up.d/mountnfs[eth0]: waiting for interface eth0:0 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0]: waiting for interface eth0:1 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0]: waiting for interface eth0:2 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0:0]: waiting for interface eth0:1 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0:0]: waiting for interface eth0:2 before doing NFS mounts (warning).
if-up.d/mountnfs[eth0:1]: waiting for interface eth0:2 before doing NFS mounts (warning).
done.

Solution:

It means that it is making sure that all ‘net interfaces are up before trying to mount a network based filesystem.

Today, All Windows7 64bit users received a threat alert called “Trojan.Fakealert.5″.

And it detected all DLL files / EXEs of my windows machine as a trojan and started deleting them. You know how frustrates it? I really have a paid account for Bit Defender Internet Security 2010. I ignored my nerd friend’s words about installing a 3000 days crack for bitdefender and I called myself as “I dont want to steal someone’s work”.

But today, My taskmanager, explorer & almost everything got quarantine. I didnt paid to bitdefender for this lame mistake.

What is the cause of Trojan.FakeAlert.5?

There was a wrong update from bitdefender caused this issue.

How to fixTrojan.FakeAlert.5?

Disable the realtime protection

Antivirus -> Shield -> Disable Real-time protection.

Do not run any scans. Disable if there is any scheduled scans.

Try to do a “System Restore” or restore the “Quarantine” files.

There a big thread at bitdefender forums with thousands of active frustrated users(including me) shouting bitdefender for this lame problem.

Note: My friend & Secure Slash co-editor Mr. PaimPozhil said to me that, There is a “real” trojan in that same name. So, Do not just disable bitdefender!  Scan your computer using “SpyBot Search & Destroy” it will find the exact trojan alone as well. Thanks Paim

It happens once again in same year. Probably more than 4 times in 2009?

If you are facing the problem while loading www.gmail.com . Just wait till they resolve this issue.

But the shame thing is.. Its corporate email solution www.google.com/a works perfect.

Indeed, while Windows 7 has an enhanced driver installation model that is designed to simplify installation, many of its features are implemented via XML and other information stored in what’s known as the Device Display Object. In theory, hardware manufacturers can simply add those components to their existing Vista driver rather than rewriting the entire code base.

However, the window of opportunity (ahem) for relatively private testing won’t be wide. Windows vice president Steven Sinofsky confirmed that Microsoft hopes to have a widespread release of an official Windows 7 beta in early 2009. Although widely available both via its PDC and WinHEC appearances and through numerous illegal torrent sites, the current Windows 7 release is the internal M3 candidate, which is missing many new UI features and isn’t being touted as feature-complete, but rather as a pre-beta. (Most of the demos at WinHEC, incidentally, were on later internal builds.)

Read the full story

Security researchers say they’ve developed a way to partially crack the Wi-Fi Protected Access (WPA) encryption standard used to protect data on many wireless networks.

The attack, described as the first practical attack on WPA, will be discussed at the PacSec conference in Tokyo next week. There, researcher Erik Tews will show how he was able to crack WPA encryption, in order to read data being sent from a router to a laptop computer. The attack could also be used to send bogus information to a client connected to the router.

To do this, Tews and his co-researcher Martin Beck found a way to break the Temporal Key Integrity Protocol (TKIP) key, used by WPA, in a relatively short amount of time: 12 to 15 minutes, according to Dragos Ruiu, the PacSec conference’s organizer.

They have not, however, managed to crack the encryption keys used to secure data that goes from the PC to the router in this particular attack

Security experts had known that TKIP could be cracked using what’s known as a dictionary attack. Using massive computational resources, the attacker essentially cracks the encryption by making an extremely large number of educated guesses as to what key is being used to secure the wireless data.

The work of Tews and Beck does not involve a dictionary attack, however.

To pull off their trick, the researchers first discovered a way to trick a WPA router into sending them large amounts of data. This makes cracking the key easier, but this technique is also combined with a “mathematical breakthrough,” that lets them crack WPA much more quickly than any previous attempt, Ruiu said.

Tews is planning to publish the cryptographic work in an academic journal in the coming months, Ruiu said. Some of the code used in the attack was quietly added to Beck’s Aircrack-ng Wi-Fi encryption hacking tool two weeks ago, he added.

WPA is widely used on today’s Wi-Fi networks and is considered a better alternative to the original WEP (Wired Equivalent Privacy) standard, which was developed in the late 1990s. Soon after the development of WEP, however, hackers found a way to break its encryption and it is now considered insecure by most security professionals. Store chain T.J. Maxx was in the process of upgrading from WEP to WPA encryption when it experienced one of the most widely publicized data breaches in U.S. history, in which hundreds of millions of credit card numbers were stolen over a two-year period.

Read Full Story

Introducing Android

Android Demo

Full Web Experience: Web Browser on Android-Powered Phones

On Android-powered phones, the browser lets users experience the full web and easily move between browsing and other tasks on their phone.

Android – Apps without borders

Watch Android engineers demonstrate that applications on Android exist without borders. Apps on Android can access core mobile device functionality through standard APIs. Through intents, apps can announce their capabilities for other apps to use.