disable updates
Guys.
Any ideas how i stop automatic updates.
It seems that cpanel is doing some sort of automatic updates.
Is there any way to stop this.
-
Home " Server Configuration " Update Preferences Even if you set all three options to Never Update, cPanel Update cron will fire. If you review the log afterward, you'll see what happens when it ran. What sort of problem are you having with it? 0 -
I'm getting about 25+ emails per day for a start. some of which are telling me that files have failed the MD5 check after the cron job runs. I've been out of the country for 4 days and come back to about 150 emails to try and trawl through. As i'm not actually using the server fully yet, i thought i'd try and fine tune this. Also, I will be the only user on the server, so i was planning to maybe do an update manually occasionally, where i can keep an eye on it, 0 -
Updates should be left enabled for most users. If you're on top of security and monitoring the server constantly, sure, disabling updates may be an option. I've got a better idea, read the emails you got while away a bit closer. ...some of which are telling me that files have failed the MD5 check after the cron job runs.
That's not a cPanel Update email, that's from your firewall, CSF/LFD alerting you to system changes it feels you need to know about. You can disable that one alert email if you really wanted to. Search your CSF settings page for this: LF_INTEGRITY set it to =0 Bad idea, IMHO, but there you go. You can tweak many other alerts similar. Search the settings page for the word: Alert, to find them and choose. (wisely) You can tweak what Alerts you get from cPanel, here: Home " Server Contacts " Contact Manager HTH!0 -
BTW, was there really a need to start a new thread on a similar topic you already had going? 0 -
This is all very alien to me, i've only ever had hosted plans in the past, so i never get to see any of this. Having seen the same message on concurrent mornings, i came to the conclusion that the massive logs i'm seeing must be update related. Hence the reason i want to switch updates off, until i'm satisfied. I guess this warrants a different thread ? 0 -
I guess this warrants a different thread ?
No sir, you've already got another one going on a similar topic. :) Disabling updates might leave you vulnerable if you're away for an extended period of time. Tweaking the system and its alerts to fit your needs is important to understand. That will take time, education (reading and understanding those email is a good start) and effort though. Disabling updates does not solve your issue with too many emails, it just puts things off for another day. You want your system contacting you about things. IMHO, the more the merrier. Those alerts are my eyes and ears on my servers. If you're getting too many emails on an account you'd rather not, change the destination to another email address you crerated to send them there. That way its less annoying for you and you can check them when you have time. But you still need to check them, you should still want them all the same. As for the MD5 alert emails, the subject of both your threads, CSF/LFD is alerting you to file system changes. CSF is doing its job, as configured in your settings mentioned earlier. From the CSF configuration page for LF_INTEGRITY: System Integrity Checking. This enables lfd to compare md5sums of the servers OS binary application files from the time when lfd starts. If the md5sum of a monitored file changes an alert is sent. This option is intended as an IDS (Intrusion Detection System) and is the last line of detection for a possible root compromise. There will be constant false-positives as the servers OS is updated or monitored application binaries are updated. However, unexpected changes should be carefully inspected. Modified files will only be reported via email once. To enable this feature set the following to the checking interval in seconds (a value of 3600 would seem sensible). This option may increase server I/O load onto the server as it checks system binaries. To disable set to "0"
Read that closely, its important. To give you an example, force a cPanel update via WHM. Assuming more files are changed, you'll get an email soon after about the changes in the form of one of those alerts. You know you just forced an update, so could assume here that the changes are expected, safe. Restarting CSF/LFD is suggested at this point, you know why you got the email, the system was updated. To quote the same thing as above, a second time: This enables lfd to compare md5sums of the servers OS binary application files from the time when lfd starts.0 -
Some very interesting info there chaps. At the moment, i only have 2 accounts, one is an empty domain, the other i'm using as a mirror for a development site. I won't be renting any space out or reselling, it will be purely for our own business. I don't envisage using it for anything until at least the new year, in the mean time, it gives me an opportunity to play, learn. As regards monitoring, i will be doing so on a daily basis, so i've reconfigured the alerts to go to a different email address until i've got my head around it all. I will certainly search CSF for alerts though. 0 -
Yesterday, i disabled alerts for "No Log Lines", which has reduced the emails by about 7 or 8. I'm still seeing a few MD5 failures though. This morning i tried to view the YUM logs, but can't seem to find any commands that work. 0 -
]This morning i tried to view the YUM logs, but can't seem to find any commands that work.
You could use a command such as:tail -500 /var/log/yum.log
This will display the last 500 lines of yum.log on your system. Thank you.0 -
There is no option found to disable auto update on v 88.0.3 0 -
There is no option found to disable auto update on v 88.0.3
/etc/cpupdate.conf you can do it from within the file. Change the "daily" setting to "manual".0 -
/etc/cpupdate.conf you can do it from within the file. Change the "daily" setting to "manual".
Thanks, it working fine now.0 -
/etc/cpupdate.conf you can do it from within the file. Change the "daily" setting to "manual".
Hello, I receive this email daily cPanel version change from "11.88.0.4" to "11.88.0.4" failed during updatenow How to stop this cron? Thanks0 -
Login to whm->Update preference -> Select the tier "Release (Recommended)" and save 0 -
Same problem. 0 -
Solved ! I deleted updatenow script ! 0
Please sign in to leave a comment.
Comments
16 comments