Thread: Centos Web Panel vs Vestacp
01-08-2017, 02:51 PM #1
Centos Web Panel vs Vestacp
I want to have a free option beside paid hosting panel is plesk which I am using for my blog sites. I checked some suggestions on this forum and selected two free hosting panels are Centos Web Panel and Vestacp but I don't know which is better and stable, no bugs or issues. Can you share me your thoughts or what are pros or cons of Centos Web Panel and Vestacp?
01-08-2017, 03:05 PM #2
I have set up centos web panel for a customer, and I think it would work good for what you are looking for. It is not ideal for using it as a web hosting company but for an individual with multiple sites it would work well. I did not like the way you had to create a site and then a user account, it is not very straight forward. Vestacp looks pretty good but I've never used it.
01-08-2017, 03:11 PM #3
I have never used either personally, but have head good things about both.
I don't think there is a real "_____ is better". Simply compare their features, try both, betermin which is better for you.█ █ RDO Servers - Shared Hosting, Resellers, VPS, Dedicated Servers & Clusters
█ █ Windows Hosting - Plesk 12 - Linux Hosting - cPanel/LiteSpeed/CloudLinux/MariaDB
█ █ Live Chat - Automated Backups - SSD's
01-08-2017, 03:45 PM #4
I installed and used bot Centos Web Panel and Vestacp for somedays and I found that they had issues. As Centos Web Panel, it didn't have a file manager or I have to upgrade php and mysql to newer version. it likes a product that not be updated by its developers. For Vestacp, it is hard to use if you see its control panel for the first time and it has some issuses that users are complaining about it.
I saw a person reported the problem that he faced when installed Vestacp here http://forumweb.hosting/14383-the-httpd-service-does-not-start-automatically-in-vestacp.html
Seem you will have no support or problems can not be solved on free hosting panels thus I would recommend going with a paid panel as Plesk, cPanel or Directadmin.
Today, 08:12 AM #5
one of my clients had VestaCP installed and migrating him to my Centmin Mod LEMP stack instead and had an opportunity to delve into VestaCP on CentOS 7 and I'm not too impressed for web server side. I wrote a full review on my site. But the gist of it is
1. nginx installed uses system openssl 1.0.1e so no support for openssl 1.0.2+ which means no ALPN protocol support and no HTTP/2 based HTTPS support
2. Apache 2.4.6 installed is actually a custom VestaCP provided 2.4.6-118 labeled yum package set. But it's based on 30+ month old 2.4.6-18 built on Dec, 2014 missing 30+ months of security and bug fix updates compared to Apache 2.4.25 latest and CentOS 7.3 Apache 2.4.6-45 built Nov 2016 !
nginx version: nginx/1.10.2
built by gcc 4.8.5 20150623 (Red Hat 4.8.5-4) (GCC)
built with OpenSSL 1.0.1e-fips 11 Feb 2013
TLS SNI support enabled
configure arguments: --prefix=/etc/nginx --sbin-path=/usr/sbin/nginx --modules-path=/usr/lib64/nginx/modules --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx.pid --lock-path=/var/run/nginx.lock --http-client-body-temp-path=/var/cache/nginx/client_temp --http-proxy-temp-path=/var/cache/nginx/proxy_temp --http-fastcgi-temp-path=/var/cache/nginx/fastcgi_temp --http-uwsgi-temp-path=/var/cache/nginx/uwsgi_temp --http-scgi-temp-path=/var/cache/nginx/scgi_temp --user=nginx --group=nginx --with-file-aio --with-threads --with-ipv6 --with-http_addition_module --with-http_auth_request_module --with-http_dav_module --with-http_flv_module --with-http_gunzip_module --with-http_gzip_static_module --with-http_mp4_module --with-http_random_index_module --with-http_realip_module --with-http_secure_link_module --with-http_slice_module --with-http_ssl_module --with-http_stub_status_module --with-http_sub_module --with-http_v2_module --with-mail --with-mail_ssl_module --with-stream --with-stream_ssl_module --with-cc-opt='-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=generic'
httpd -V Server version: Apache/2.4.6 (CentOS) Server built: Dec 15 2014 17:32:43 Server's Module Magic Number: 20120211:23 Server loaded: APR 1.4.8, APR-UTIL 1.5.2 Compiled using: APR 1.4.8, APR-UTIL 1.5.2 Architecture: 64-bit Server MPM: prefork threaded: no forked: yes (variable process count) Server compiled with.... -D APR_HAS_SENDFILE -D APR_HAS_MMAP -D APR_HAVE_IPV6 (IPv4-mapped addresses enabled) -D APR_USE_SYSVSEM_SERIALIZE -D APR_USE_PTHREAD_SERIALIZE -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT -D APR_HAS_OTHER_CHILD -D AP_HAVE_RELIABLE_PIPED_LOGS -D DYNAMIC_MODULE_LIMIT=256 -D HTTPD_ROOT="/etc/httpd" -D SUEXEC_BIN="/usr/sbin/suexec" -D DEFAULT_PIDLOG="/run/httpd/httpd.pid" -D DEFAULT_SCOREBOARD="logs/apache_runtime_status" -D DEFAULT_ERRORLOG="logs/error_log" -D AP_TYPES_CONFIG_FILE="conf/mime.types" -D SERVER_CONFIG_FILE="conf/httpd.conf"
rpm -qa --changelog httpd | head -n30 * Wed Jul 23 2014 Johnny Hughes <[email protected]> - 2.4.6-18.el7.centos - Roll in CentOS Branding * Thu Jul 17 2014 Jan Kaluza <[email protected]> - 2.4.6-18 - mod_cgid: add security fix for CVE-2014-0231 (#1120607) - mod_proxy: add security fix for CVE-2014-0117 (#1120607) - mod_deflate: add security fix for CVE-2014-0118 (#1120607) - mod_status: add security fix for CVE-2014-0226 (#1120607) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120607) * Thu Mar 20 2014 Jan Kaluza <[email protected]> - 2.4.6-17 - mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907) * Wed Mar 05 2014 Joe Orton <[email protected]> - 2.4.6-16 - mod_ssl: improve DH temp key handling (#1057687) * Wed Mar 05 2014 Joe Orton <[email protected]> - 2.4.6-15 - mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276) * Fri Jan 24 2014 Daniel Mach <[email protected]> - 2.4.6-14 - Mass rebuild 2014-01-24 * Mon Jan 13 2014 Joe Orton <[email protected]> - 2.4.6-13 - mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447) * Fri Jan 10 2014 Joe Orton <[email protected]> - 2.4.6-12 - rebuild
httpd -V Server version: Apache/2.4.6 (CentOS) Server built: Nov 14 2016 18:04:44 Server's Module Magic Number: 20120211:24 Server loaded: APR 1.4.8, APR-UTIL 1.5.2 Compiled using: APR 1.4.8, APR-UTIL 1.5.2 Architecture: 64-bit Server MPM: prefork threaded: no forked: yes (variable process count) Server compiled with.... -D APR_HAS_SENDFILE -D APR_HAS_MMAP -D APR_HAVE_IPV6 (IPv4-mapped addresses enabled) -D APR_USE_SYSVSEM_SERIALIZE -D APR_USE_PTHREAD_SERIALIZE -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT -D APR_HAS_OTHER_CHILD -D AP_HAVE_RELIABLE_PIPED_LOGS -D DYNAMIC_MODULE_LIMIT=256 -D HTTPD_ROOT="/etc/httpd" -D SUEXEC_BIN="/usr/sbin/suexec" -D DEFAULT_PIDLOG="/run/httpd/httpd.pid" -D DEFAULT_SCOREBOARD="logs/apache_runtime_status" -D DEFAULT_ERRORLOG="logs/error_log" -D AP_TYPES_CONFIG_FILE="conf/mime.types" -D SERVER_CONFIG_FILE="conf/httpd.conf"Code:
rpm -qa --changelog httpd | head -n30 * Thu Nov 03 2016 CentOS Sources <[email protected]> - 2.4.6-45.el7.centos - Remove index.html, add centos-noindex.tar.gz - change vstring - change symlink for poweredby.png - update welcome.conf with proper aliases * Wed Aug 03 2016 Luboš Uhliarik <[email protected]> - 2.4.6-45 - RFE: run mod_rewrite external mapping program as non-root (#1316900) * Tue Jul 12 2016 Joe Orton <[email protected]> - 2.4.6-44 - add security fix for CVE-2016-5387 * Tue Jul 05 2016 Joe Orton <[email protected]> - 2.4.6-43 - add 451 (Unavailable For Legal Reasons) response status-code (#1343582) * Fri Jun 17 2016 Joe Orton <[email protected]> - 2.4.6-42 - mod_cache: treat cache as valid with changed Expires in 304 (#1331341) * Wed Feb 24 2016 Jan Kaluza <[email protected]> - 2.4.6-41 - mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495)
It was discovered that httpd used the value of the Proxy header from HTTP requests to initialize the HTTP_PROXY environment variable for CGI scripts, which in turn was incorrectly used by certain HTTP client implementations to configure the proxy for outgoing HTTP requests. A remote attacker could possibly use this flaw to redirect HTTP requests performed by a CGI script to an attacker-controlled proxy via a malicious HTTP request.
Find out more about CVE-2016-5387 from the MITRE CVE dictionary dictionary and NIST NVD.
The Following User Says Thank You to eva2000 For This Useful Post:
Replies: 5 | Views: 85Last post by GswHosting, 01-08-2017, 08:22 PM
Replies: 4 | Views: 176Last post by Gecko, 01-11-2017, 08:05 AM
Replies: 3 | Views: 224Last post by GswHosting, 01-08-2017, 08:35 PM
NEW Master Reseller with WHMCS from $20.99/mo - WHM+CL - Site Builder - Dallas, TX - RadWebHosting.comBy radwebhosting in forum Reseller Hosting OffersReplies: 0 | Views: 80Last post by radwebhosting, 01-08-2017, 06:54 PM
By radwebhosting in forum Shared Hosting OffersReplies: 0 | Views: 71Last post by radwebhosting, 01-08-2017, 07:03 PM
Replies: 2 | Views: 157Last post by ferngullygraphics, 01-08-2017, 10:19 PM
By Paul Wellner Bou in forum Hosting Software and Control PanelsReplies: 1 | Views: 154Last post by LJSHost, 01-08-2017, 02:57 PM
Replies: 1 | Views: 190Last post by energizedit, 01-08-2017, 03:08 PM
Replies: 4 | Views: 318Last post by GswHosting, 01-09-2017, 09:57 AM
Replies: 1 | Views: 222Last post by LJSHost, 01-08-2017, 02:37 PM
Replies: 0 | Views: 3Last post by Semayra, Today, 05:03 PM
Replies: 0 | Views: 9Last post by steitieh, Today, 02:47 PM
Replies: 0 | Views: 13Last post by steitieh, Today, 02:39 PM
By hostingcoupons in forum Hosting Software and Control PanelsReplies: 0 | Views: 11Last post by hostingcoupons, Today, 02:28 PM
NEW WPCYCLE - MANAGED WORDPRESS WEB HOSTING - Managed VPS & Dedicated Servers - 15% - 25% OFF 1st & 2ndBy WPCycle in forum Other Hosting OffersReplies: 0 | Views: 7Last post by WPCycle, Today, 02:21 PM
Replies: 4 | Views: 629Last post by hostingcoupons, Today, 02:23 PM
By tlhIngan in forum Hosting Software and Control PanelsReplies: 6 | Views: 684Last post by tlhIngan, 01-18-2017, 12:41 PM
Replies: 2 | Views: 444Last post by wpspeedster, 07-31-2016, 08:00 AM
Replies: 5 | Views: 797Last post by fwh, 07-01-2016, 02:57 AM
Replies: 3 | Views: 358Last post by ElixantTechnology, 02-14-2016, 11:55 PM