I installed bastille to the T of what was written here over at unofficial-support.com and I can no longer get into my system via SSH and I cannot access my mail. This really sucks since I have several live sites right now. Rackshack says I need a system restore. Anybody have any other ideas? Quickly...

Thanks.
abrazell

Find in the documentation how to stop the firewall. RS has been known to turn this stuff off if you will ask them nicely (never hurts) and tell them exactly what to do. The have done it for me in the past when I locked myself out.

Give them something explicit like
Please execute the following command:
/etc/init.d/myfirewall stop

yeah, :p I did that and it's really encouraging to hear you say that you've done this.

Thanks.

I'll let you know

abrazell

You have to add additional ports to allow bastille.

the how-to works, did you skip over some steps? (if so which ones?)

I've installed Bastille a few times now following the unofficial-support tutorial and if has never failed me.

well, having difficulty finding a "friendly sysadmin" there....no one wants to help me.

No I did not skip any steps....

vigor...what additional ports?

abrazell

I read those docs once.... I seem to remember that one of the first step they ask you to do is to deny all traffic in hosts.deny. If you were installing from remote, you should have excluded port 22 (sshd) from that. The port used by your control panel (if any) should also been left open... With those, I guess you could have managed.

I could be wrong, but I think I remember that those docs (bastille) were written for people who made modifications right from the console... That's probably why you got locked out.

are you using ipchains firewall rules? Ask Rackshack to execute

/sbin/ipchains --flush

that will flush all firewall rules and you will be able to get into your server.

hope this helps

Let me try to be more clear than I already have been. :)

RACKSHACK IS DOING NIL FOR ME. THEY WILL REBOOT THE SERVER AND THEY WILL RESTORE THE SERVER. THEY WILL EXECUTE NO COMMAND! :D

I'm having them reboot now but I'm pretty sure that won't work. I'm pretty sure it will start back up.

Anyways. Cross your fingers.

abrazell

did a reboot work?

why did you did up a 6 month old thread? I don't think abrazell even has that server anymore and barefooting is now using another data center for hosting.

Was searching around for people that use bastille - want to install it on a server i have but the config is cpanel / whm - and any help from other users is appreciated - thought that user may have some help info to give.

Tazzman has written a Bastille HOWTO for CPanel/WHM servers. I don't have the exact link but a search should probably turn it up.

http://www.section5.valcato.net/Bastille_Cpanel_HowTo.txt

I tried it on a test box but some features of WHM wouldn't work afterwards (eg account transfers). I haven't had time to go through it properly yet though.