Search found 14 matches

Search found 14 matches Page 1 of 2
by JulesR
21 Jan 2019, 21:05
Forum: Suggestions (cmc)
Topic: Support Ranges in CMC Whitelist
Replies: 0
Views: 511

Hi there, Would it be possible for you to please add ID range support to CMC? For example, instead of needing to list an individual rule ID per line, ModSecurity provides support for ranges. So, instead of: SecRuleRemoveById 1 SecRuleRemoveById 2 SecRuleRemoveById 3 SecRuleRemoveById 4 SecRuleRemove...
by JulesR
03 Oct 2015, 23:39
Forum: General Discussion (csf)
Topic: CSF/LFD Slows Server
Replies: 1
Views: 884

Have a strange issue here. Recently a VPS we manage has had massively increased traffic (400%+) than usual. With CSF/LFD enabled, even though load on the box is low, connections are extremely slow and often timeout or take over 20 seconds to load. With CSF/LFD disabled, connections are much faster a...
by JulesR
12 Oct 2014, 21:59
Forum: General Discussion (csf)
Topic: CSF no longer blocking mod_security
Replies: 5
Views: 2494

It was fixed in the release before the latest one, that's correct. Details can be found in the link i provided to Litespeed's forum.
by JulesR
30 Sep 2014, 22:09
Forum: General Discussion (csf)
Topic: CSF no longer blocking mod_security
Replies: 5
Views: 2494

That's correct, I just noticed the recent Litespeed update prepended "[modsecurity]" to the start of these lines. I've reported this issue to Litespeed: http://www.litespeedtech.com/support/forum/threads/remove-modsecurity-line-in-error_log.9904/ In the meantime, in case Litespeed take a long time t...
by JulesR
30 Sep 2014, 21:53
Forum: General Discussion (csf)
Topic: CSF no longer blocking mod_security
Replies: 5
Views: 2494

Using Litespeed 4.2.16. Excerpts of our /usr/local/apache/logs/error_log: [modsecurity] [Tue Sep 30 20:43:09 2014] [error] [client 95.211.131.148] ModSecurity: Access denied with code 403, [Rule: 'user:bf_block' '@gt 0'] [id "5000135"] [msg "ip address blocked for 5 minutes, more than 10 login attem...
by JulesR
03 Feb 2014, 20:05
Forum: Suggestions (cxs)
Topic: LMD Integration
Replies: 0
Views: 1621

Hi there, There is a similar product out there called LMD (https://www.rfxn.com/projects/linux-malware-detect/) which also provides exploit scanning capabilities and relatively frequent signature updates. It would be great if cxs could use the signature database associated with LMD, or perhaps invok...
by JulesR
03 Feb 2014, 19:30
Forum: Suggestions (cxs)
Topic: Files with 777 changed to 644?
Replies: 5
Views: 4547

Just wanted to say we also think this would be a great feature...
by JulesR
21 Nov 2012, 00:13
Forum: Suggestions (csf)
Topic: Enable/provide inbound traceroute option
Replies: 0
Views: 1216

Since performing a traceroute from different machines/OS'es will vary in using either ICMP or UDP ports 33434 to 33534, would having an option for "TRACERT_IN" or something similar not be beneficial?

This way it reduces the list of entries required in UDP_IN.
by JulesR
19 May 2010, 08:28
Forum: Suggestions (csf)
Topic: Lf_script_perm on maxemails
Replies: 0
Views: 1232

Lf_script_perm is a great option to prevent the continual attempt to send mails after the maxemails limit has been reached, but would it be much work to set this option around the maxemails for a particular domain? As an example, let's say we maxemails set to 200 across the board. We have a customer...

by JulesR
11 Mar 2010, 06:02
Forum: Suggestions (csf)
Topic: Abilty to disable prosess tracking mail notifications
Replies: 3
Views: 1972

In some situations I think it'd be very useful, Chirpy. Our CSF/LFD process ignore is quite customised, and we've got it down now to a point where we have process killing on because we know what should and shouldn't be killed. Granted, this has taken us quite some time to "perfect" for our needs, bu...
Search found 14 matches Page 1 of 2