Search found 7 matches

Search found 7 matches Page 1 of 1
by samedwards
27 Apr 2018, 20:26
Forum: Suggestions (csf)
Topic: LF_NETBLOCK Enhancements
Replies: 0
Views: 568

Hello, I'd like to see LF_NETBLOCK extended to work like the LF_[application]_PERM triggers, where this can either be a permanent or a temporary ban of a configured length. Additionally, I'd like to see CC_LOOKUPS info included in the LF_NETBLOCK alert. Both of these changes can go a long way to hel...
by samedwards
20 Jan 2018, 01:20
Forum: Suggestions (csf)
Topic: Messenger v2 Needs to set HTTP status 403
Replies: 0
Views: 640

Right now, the page is served out with status 200, which means that if for example a search engine crawler gets blocked, it will update its index with the blocked page content. I've added the following to the top of index.php in ~csf/public_html/index.php for now: <?php http_response_code(403); ?> b...
by samedwards
24 Oct 2017, 18:51
Forum: Report Bugs (csf)
Topic: mod_security v2 rule doesn't work for IPv6
Replies: 5
Views: 2487

Thanks, this looks good to me!
by samedwards
23 Oct 2017, 09:28
Forum: Report Bugs (csf)
Topic: mod_security v2 rule doesn't work for IPv6
Replies: 5
Views: 2487

Thanks for the quick turnaround on this one. Looking in to this a little more though, there's a problem with my suggestion. Although a full IPv6 address with a source port would be split into a list with 9 elements, contiguous zeros in an IPv6 address can be represented by double colons (::), making...
by samedwards
21 Oct 2017, 04:27
Forum: Report Bugs (csf)
Topic: mod_security v2 rule doesn't work for IPv6
Replies: 5
Views: 2487

The mod_security v2 (apache) regex (line 335 of RegexMain.pm) has a bug that prevents it from working with IPv6 addresses. The rule matches the first [client] block in the log entry, which contains the source port appended to the client IP. The rule does attempt to remove this source port, but only ...
by samedwards
02 Aug 2017, 21:52
Forum: Report Bugs (csf)
Topic: MESSENGERV2 needs to regenerate csf.messenger.conf on SSL changes
Replies: 2
Views: 1752

With MESSENGERV2 and MESSENGER_HTTPS enabled, any time a SSL certificate path changes (which with AutoSSL could be any time the AutoSSL process runs), the csf.messenger.conf file is then pointing to a non-existant file, which causes Apache to throw a syntax error and not start. Unfortunately, it see...
by samedwards
16 Mar 2017, 01:29
Forum: Suggestions (csf)
Topic: Support ASNs in CC_IGNORE and support ASN for CC6_LOOKUPS
Replies: 0
Views: 793

Right now, it looks like the CC_IGNORE check in lfd sets the cconly parameter on its iplookup call, which only returns and checks the country code, not the full iplookup result. This is obviously a good idea so there aren't any false matches with reverse DNS or the like, but also excludes listing AS...
Search found 7 matches Page 1 of 1