Search found 3 matches

by ethanpil
08 Jun 2017, 16:25
Forum: General Discussion (csf)
Topic: Custom REGEX rules for CSF.
Replies: 56
Views: 64482

Re: Custom REGEX rules for CSF.

I tweaked the regex little, but you should be getting the IP in $1 even with your original code.... not sure why you aren't. Are you sure you are reading the correct log file with CUSTOM2_LOG ? # MJ12-Bot / Baidu / Ahrefs if (($globlogs{CUSTOM2_LOG}{$lgfile}) and ($line =~ /(\S+).*\"*(?:GET|POST|HEA...
by ethanpil
17 May 2017, 22:26
Forum: General Discussion (csf)
Topic: Custom Regex Performance
Replies: 0
Views: 612

Custom Regex Performance

I have been working to implement many of the fail2ban tests that I have found into custom regex queries for LFD in regex.custom.pm, so I don't need to also install fail2ban on my servers when CSF/LFD already supports all of this... I'm wondering if anyone can provide some wisdom in terms of performa...
by ethanpil
16 May 2017, 21:11
Forum: General Discussion (csf)
Topic: Custom REGEX rules for CSF.
Replies: 56
Views: 64482

Re: Custom REGEX rules for CSF.

Here are some rules I recently developed. I will try and keep them updated here: https://gist.github.com/ethanpil/97b62d9673327b5aeab90d8b3837843d NginX Security to block bad behaving web visitors These rules have helped me block vulnerability scanners, and bots/hackers scanning for varios versions ...