Package installation

The easiest way to install Linux Malware Detect will be to use a package. Jan Wagner has put a lot of effort into debianising LMD so a big shout out to him (his Github repo). I merely built the package from the repo.

So without further ado, here is the download.

maldetect_1.4.2+dfsg-13_all.deb

Manual installation

Linux Malware Detect will not run out of the box in monitor mode (scan mode works fine) on a Debian system. There are a few things you need to do to get it working.

LMD comes with a 32-bit inotifywait binary and associated libinotifytools library. Debian Wheezy will not run 32-bit binaries out of the box. We can make it run 32-bit binaries but there’s a whole lot of additional packages you need to install, which we won’t do in order to keep things tidy.
We’ll first need to install the inotify-tools and libinotifytools0 packages which will put 64-bit versions of inotify on the system.

apt-get install inotify-tools libinotifytools0

In internals.conf, change the location of the inotifywait path to /usr/bin/inotifywait

sed -i -e"s/\$inspath\/inotify\/inotifywait/\/usr\/bin\/inotifywait/" /usr/local/maldetect/internals.conf

You may need to tweak inotify_base_watches if you have lots of paths/files.

Scanning the docroots

Now if you’re working with Plesk, you’ll only want LMD to monitor the docroots. Run the following to create a file with a list of all the docroots:

mysql -ss -uadmin -p`cat /etc/psa/.psa.shadow` psa -e "select www_root from hosting;" > /usr/local/maldetect/maldetfilelist

You can then start LMD with:

maldet -m /usr/local/maldetect/maldetfilelist

Update: 18/08/2020 Plesk Obsidian is now able to move domains between subscriptions thus negating the need for any external scripts. Please use this in built function instead. Keeping this article for posterity.

This article could have been called “Merging domains from one subscription to another” or “Moving domains between subscriptions”. But its goal remains the same. If you’re arrived at this page then you probably already know what you’re looking for.

With the business model change from Plesk 9 to Plesk 10, the upgrader splits each customer’s domains into it’s own subscription. Highly annoying if you want to keep track of a clients overall usage. What most Plesk users want is to merge all of a client’s subscriptions into a single subscription containing multiple domains, now possible with Plesk 10. Each client’s subscription consists of a “master domain”. Other domains can then be added to the subscription.

When asked, Parallels forum representatives have been dodging the issue since Plesk 10’s release, so there has to this day been no official way of merging subscriptions. The manual method seemed the only way.

What i’ve done is created a script to automate this for you. It’s been floating in my head for months but I finally got the motivation to sit down and put it together. Its not a complicated script and i’m not sure why Parallels haven’t done something similar.

This is what it does (currently) at a high level:

1. Changes the database ownership of all the DB’s of the old domain to the new subscription.
2. Backs up the files in the www root of the domain to be migrated.
3. Backs up all mailboxes associated with the domain to be migrated.
4. Gets a list of all the email accounts and associated passwords and dumps it to a file for use in a later step.
5. Removes the old subscription.
6. Re-creates the domain under the desired subscription.
7. Reads in the email account list and recreates the mail accounts.
8. Restores the files from the old domains www root.
9. Restores the mailboxes.

I’ve tried to write this script so that it should work on most if not all Plesk supported Linux distributions. Sorry Windows folks! Nothing personal. It does make changes to the psa database directly so I would highly suggest backing up your psa database first. Although i’ve been using this script myself, i’d test it on your systems first on a dummy domain.

Once the script finishes executing, check the ownerships of the files in the new wwwroot as you’ll probably need to fix these before the site will work.

Here’s what it currently doesn’t handle:

• DNS zones with modified entries. Use this script for domains with pretty much unmodified zones from your template, or take note of the changes you made manually and recreate them after the domain has been recreated. I have not yet found an easy way to dump the zone details of the domains and recreate them in an automated fashion.
• Mailing lists. I personally don’t use the mailing lists so I haven’t included that yet.

This is only a version 1 so i’d love to hear your feedback and comments, even if you don’t find it useful, and especially if you DO. Also if you do end up making improvements, please let me know so that I can merge them into the script for the benefit of others.

Download

Changelog

• v1.0 – Initial release.
• v1.1 – Fixed bug with emaillist output file.

When trying to remove a customer or subscription, you may get this error message in Plesk:

Unable to find service node for web service on domain with id=xxx

This was supposed to be fixed in 10.4.4 MU #13 but isn’t in all cases. I hit this error and the cause turned out to be because the subscription had no IP address assigned to it.

To fix this, go into the Hosting Settings of the subscription. Select an IP address, you’ll also have to reset the password.

Once you do this, you should be able to remove the customer and subscription.