shell bypass 403

Cubjrnet7 Shell

: /etc/nginx/conf.d/users/ [ drwxr-xr-x ]
upload mass deface mass delete console info server

name : srotefeatures.conf
proxy_cache_path /var/cache/ea-nginx/proxy/srotefeatures levels=1:2 keys_zone=srotefeatures:10m inactive=60m;

#### main domain for srotefeatures ##
server {
    server_name srotefeatures.in www.srotefeatures.in mail.srotefeatures.in;
    listen 80;
    listen [::]:80;

    include conf.d/includes-optional/cloudflare.conf;
    
    set $CPANEL_APACHE_PROXY_PASS $scheme://apache_backend_${scheme}_119_18_48_27;

    # For includes:
    set $CPANEL_APACHE_PROXY_IP 119.18.48.27;
    set $CPANEL_APACHE_PROXY_SSL_IP 119.18.48.27;
    set $CPANEL_SERVICE_SUBDOMAIN 0;

    set $CPANEL_PROXY_CACHE srotefeatures;
    set $CPANEL_SKIP_PROXY_CACHING 0;
    
    listen 443 ssl;
    listen [::]:443 ssl;

    http2 off;

    ssl_certificate /var/cpanel/ssl/apache_tls/srotefeatures.in/combined;
    ssl_certificate_key /var/cpanel/ssl/apache_tls/srotefeatures.in/combined;
        
    ssl_protocols TLSv1.2 TLSv1.3;
    proxy_ssl_protocols TLSv1.2 TLSv1.3;
    ssl_prefer_server_ciphers on;
    ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256;
    proxy_ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256;
            
    root "/home/srotefeatures/public_html";

    location /cpanelwebcall {
        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass http://127.0.0.1:2082/cpanelwebcall;
    }

    location /Microsoft-Server-ActiveSync {
        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass http://127.0.0.1:2090/Microsoft-Server-ActiveSync;
    }

    location = /favicon.ico {
        allow all;
        log_not_found off;
        access_log off;
        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass $CPANEL_APACHE_PROXY_PASS;
    }

    location = /robots.txt {
        allow all;
        log_not_found off;
        access_log off;
        include conf.d/includes-optional/cpanel-proxy.conf;
	proxy_pass $CPANEL_APACHE_PROXY_PASS;
    }

    location / {
        proxy_cache $CPANEL_PROXY_CACHE;
        proxy_no_cache $CPANEL_SKIP_PROXY_CACHING;
        proxy_cache_bypass $CPANEL_SKIP_PROXY_CACHING;

        proxy_cache_valid 200 301 302 60m;
        proxy_cache_valid 404 1m;
        proxy_cache_use_stale error timeout http_429 http_500 http_502 http_503 http_504;
        proxy_cache_background_update on;
        proxy_cache_revalidate on;
        proxy_cache_min_uses 1;
        proxy_cache_lock off;

        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass $CPANEL_APACHE_PROXY_PASS;
    }

    if ( $http_cookie ~ "wordpress_logged_in_[a-zA-Z0-9]+" ) {
        set $CPANEL_PROXY_CACHE off;
        set $CPANEL_SKIP_PROXY_CACHING 1;
    }
    
            
    include conf.d/server-includes/*.conf;
    include conf.d/users/srotefeatures/*.conf;
    include conf.d/users/srotefeatures/srotefeatures.in/*.conf;
}
server {
    listen 80;
    listen [::]:80;

    listen 443 ssl;
    listen [::]:443 ssl;

    http2 off;

    ssl_certificate /var/cpanel/ssl/apache_tls/srotefeatures.in/combined;
    ssl_certificate_key /var/cpanel/ssl/apache_tls/srotefeatures.in/combined;

    server_name  cpanel.srotefeatures.in cpcalendars.srotefeatures.in cpcontacts.srotefeatures.in webdisk.srotefeatures.in webmail.srotefeatures.in;

    include conf.d/includes-optional/cloudflare.conf;
    
    set $CPANEL_APACHE_PROXY_PASS $scheme://apache_backend_${scheme}_119_18_48_27;

    # For includes:
    set $CPANEL_APACHE_PROXY_IP 119.18.48.27;
    set $CPANEL_APACHE_PROXY_SSL_IP 119.18.48.27;
    set $CPANEL_SERVICE_SUBDOMAIN 1;

    location /.well-known/cpanel-dcv {
        root "/home/srotefeatures/public_html";
        disable_symlinks if_not_owner;

        # pass to Apache
        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass $CPANEL_APACHE_PROXY_PASS;
    }

    location /.well-known/pki-validation {
        root "/home/srotefeatures/public_html";
        disable_symlinks if_not_owner;

        # pass to Apache
        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass $CPANEL_APACHE_PROXY_PASS;
    }

    location /.well-known/acme-challenge {
        root "/home/srotefeatures/public_html";
        disable_symlinks if_not_owner;

        # pass to Apache
        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass $CPANEL_APACHE_PROXY_PASS;
    }

    location / {
        # Force https for service subdomains
        if ($scheme = http) {
            return 301 https://$host$request_uri;
        }

        # no cache
        proxy_cache off;
        proxy_no_cache 1;
        proxy_cache_bypass 1;

        # pass to Apache
        include conf.d/includes-optional/cpanel-proxy.conf;
        proxy_pass $CPANEL_APACHE_PROXY_PASS;
    }
}

© 2025 Cubjrnet7