Search found 10 matches

by JulesR
03 Oct 2015, 23:39
Forum: General Discussion (csf)
Topic: CSF/LFD Slows Server
Replies: 1
Views: 2434

CSF/LFD Slows Server

Have a strange issue here. Recently a VPS we manage has had massively increased traffic (400%+) than usual. With CSF/LFD enabled, even though load on the box is low, connections are extremely slow and often timeout or take over 20 seconds to load. With CSF/LFD disabled, connections are much faster a...
by JulesR
12 Oct 2014, 21:59
Forum: General Discussion (csf)
Topic: CSF no longer blocking mod_security
Replies: 5
Views: 5788

Re: CSF no longer blocking mod_security

It was fixed in the release before the latest one, that's correct. Details can be found in the link i provided to Litespeed's forum.
by JulesR
30 Sep 2014, 22:09
Forum: General Discussion (csf)
Topic: CSF no longer blocking mod_security
Replies: 5
Views: 5788

Re: CSF no longer blocking mod_security

That's correct, I just noticed the recent Litespeed update prepended "[modsecurity]" to the start of these lines. I've reported this issue to Litespeed: http://www.litespeedtech.com/support/forum/threads/remove-modsecurity-line-in-error_log.9904/ In the meantime, in case Litespeed take a l...
by JulesR
30 Sep 2014, 21:53
Forum: General Discussion (csf)
Topic: CSF no longer blocking mod_security
Replies: 5
Views: 5788

CSF no longer blocking mod_security

Using Litespeed 4.2.16. Excerpts of our /usr/local/apache/logs/error_log: [modsecurity] [Tue Sep 30 20:43:09 2014] [error] [client 95.211.131.148] ModSecurity: Access denied with code 403, [Rule: 'user:bf_block' '@gt 0'] [id "5000135"] [msg "ip address blocked for 5 minutes, more than...
by JulesR
03 Feb 2014, 19:30
Forum: Suggestions (cxs)
Topic: Files with 777 changed to 644?
Replies: 5
Views: 12537

Re: Files with 777 changed to 644?

Just wanted to say we also think this would be a great feature...
by JulesR
11 Mar 2010, 06:02
Forum: Suggestions (csf)
Topic: Abilty to disable prosess tracking mail notifications
Replies: 3
Views: 4301

In some situations I think it'd be very useful, Chirpy. Our CSF/LFD process ignore is quite customised, and we've got it down now to a point where we have process killing on because we know what should and shouldn't be killed. Granted, this has taken us quite some time to "perfect" for our...
by JulesR
30 Jun 2009, 16:35
Forum: Suggestions (csf)
Topic: Relay Alert Exceptions
Replies: 7
Views: 8069

what if the user has a virus/email worm/malware at a given moment? like a dm.cgi script or so? wouldn't you want to see what it sends? Not really. The point of providing the exceptions is that only a very select few people would be added to the exception list to begin with. If anything it's a featu...
by JulesR
29 Jun 2009, 12:30
Forum: Suggestions (csf)
Topic: Relay Alert Exceptions
Replies: 7
Views: 8069

Relay Alert Exceptions

Hi there, I really love the relay alert notifications, and it has been invaluable for catching spammers in the past, but how about adding the ability to prevent notifications/alerts from a particular user account? Note that I don't want to ignore all events from that user, just the relay alerts. As ...
by JulesR
26 Jun 2009, 00:41
Forum: Suggestions (csf)
Topic: Dynamic DNS Control
Replies: 3
Views: 4412

That's fantastic, thank you for adding this so quickly! :)
by JulesR
17 Jun 2009, 05:05
Forum: Suggestions (csf)
Topic: Dynamic DNS Control
Replies: 3
Views: 4412

Dynamic DNS Control

Hi there, Just a small note to say that it's great you've added support for dynamic hostnames, thanks! However, would it be possible to have more control over the firewall entries so that they have specific port access? As it stands right now they are given blanket "ACCEPT" permissions on ...