Search found 39 matches

by Black Tiger
07 Apr 2020, 19:23
Forum: Suggestions (csf)
Topic: nftables
Replies: 3
Views: 2135

Re: nftables

We're 2 years further now and with Centos 8 this is really starting to get interesting.
In fact it lies in the netfilter's idea's to in time replace iptables with nftables.

Are there any plans from configserver to create a CSF firewall which works with nftables? Any insights on this?
by Black Tiger
04 Nov 2019, 23:25
Forum: General Discussion (csf)
Topic: chcon error on Ubuntu 18
Replies: 1
Views: 1194

chcon error on Ubuntu 18

I ran into some errors today when installing CSF on an Ubuntu 18.04 VPS system. *WARNING* TESTING mode is enabled - do not forget to disable it in the configuration 'lfd.service' -> '/usr/lib/systemd/system/lfd.service' 'csf.service' -> '/usr/lib/systemd/system/csf.service' chcon: invalid context: ‘...
by Black Tiger
18 Oct 2019, 00:11
Forum: General Discussion (csf)
Topic: Queue alert and queue interval and script alert
Replies: 0
Views: 1655

Queue alert and queue interval and script alert

Hello. After looking at some fresh csf.conf file I detected I was missing some stuff in my own csf.conf files. Some were logical because they were only for cPanel. Somewhere on the forums in a very old topic, I read that queue alert/interface was also only for cPanel because this worked with exim. H...
by Black Tiger
09 Oct 2019, 01:44
Forum: General Discussion (csf)
Topic: systemd-logind: Failed to remove runtime directory /run/user/0: Device or resource busy
Replies: 1
Views: 1752

Re: systemd-logind: Failed to remove runtime directory /run/user/0: Device or resource busy

Curious about this too. We have a VPS running which has this issue too. About every minute a logfile entry with this. Also tried the commands: [root@vps: ~]# fuser -m /run/user/0 [root@vps: ~]# fuser -a /run/user/0 /run/user/0: [root@vps: ~]# no result, can't find the cause either. So if anyone woul...
by Black Tiger
13 Oct 2018, 13:59
Forum: General Discussion (csf)
Topic: Is safe to change SSH port? Can i tell to CSF what port for SSH is used?
Replies: 5
Views: 1755

Re: Is safe to change SSH port? Can i tell to CSF what port for SSH is used?

No as far as I know if you change ports_sshd to a custom port then the custom port will be protected like port 22 was.
by Black Tiger
13 Oct 2018, 13:37
Forum: General Discussion (csf)
Topic: Is safe to change SSH port? Can i tell to CSF what port for SSH is used?
Replies: 5
Views: 1755

Re: Is safe to change SSH port? Can i tell to CSF what port for SSH is used?

You're welcome.

CSF does not only log but also blocks the user which makes the attempts. That is the default behaviour.
The mail you get is always to notify you that a user has been blocked because of the attempts.

Or maybe I do not understand you correctly.
by Black Tiger
13 Oct 2018, 02:45
Forum: General Discussion (csf)
Topic: Unblock Outgoing SSH Connection
Replies: 1
Views: 900

Re: Unblock Outgoing SSH Connection

I have no issues with this.
You did restart sshd after changing the port and also added the custom port in the tcp_in and tcp_out in csf.conf and restarted csf in the receiving server?
by Black Tiger
13 Oct 2018, 02:31
Forum: General Discussion (csf)
Topic: change command iptables to csf
Replies: 1
Views: 984

Re: change command iptables to csf

If you want to run them after csf has run, then create a file called /etc/csf/csfpost.sh and add the lines in there. If you want them applied before CSF runs, create a file called /etc/csf/csfpre.sh and add the lines in there. In both cases you ofcourse have to restart csf after creating or changing...
by Black Tiger
13 Oct 2018, 02:21
Forum: General Discussion (csf)
Topic: Is safe to change SSH port? Can i tell to CSF what port for SSH is used?
Replies: 5
Views: 1755

Re: Is safe to change SSH port? Can i tell to CSF what port for SSH is used?

Oh this is a fun one. Yes ofcourse you can change the SSH port, but do add the custom port in csf.conf incoming and outgoing first, before you start using it. If you also keep port 22 in csf.conf, then CSF will keep monitoring port 22 and you can set up a decent block rule because often they will ke...
by Black Tiger
28 Mar 2018, 14:09
Forum: General Discussion (csf)
Topic: Suspicious File Alert
Replies: 3
Views: 6034

Re: Suspicious File Alert

You have to bump a 5 year old question for that? Should have created a new thread for it. Next to that, it's easy to find if you read the config file. I would advise against it, but it can be done by setting these settings like this: PT_LIMIT = "0" PT_DELETED = "1" Don't forget to restart csf and lf...