Search found 4 matches

by nospa
01 Oct 2014, 16:29
Forum: Report Bugs (csf)
Topic: After upgrading to 7.51 - bug with csf.allow
Replies: 5
Views: 5101

Re: After upgrading to 7.51 - bug with csf.allow

My problem was bigger - I've put in csf.allow entries to allow ssh access to my server only from certain IPs, after upgrade - I was unable to ssh into my server, even to access csf and stop it! I need to ask for kvm in my datacenter to solve this problem. This should be fixed asap in next release of...
by nospa
01 Oct 2014, 12:30
Forum: Report Bugs (csf)
Topic: After upgrading to 7.51 - bug with csf.allow
Replies: 5
Views: 5101

After upgrading to 7.51 - bug with csf.allow

I've found that after upgrading to CSF 7.51, if /etc/resolv.conf is chattr +i - I'm unable to use csf.allow entries.

I also get this error when restarting csf:

*Error* Unable to open [/etc/resolv.conf]: Permission denied at /usr/sbin/csf line 838
by nospa
09 Nov 2012, 17:03
Forum: Suggestions (csf)
Topic: Blocking certain country only for specific services?
Replies: 5
Views: 4268

Blocking certain country only for specific services?

Hello Is it possible to block certain country (for example China) for certain services (eg. FTP)? We see many hacking attempts from compromised servers from China using users FTP details, but we can't block China from all services because many of our users send emails to<>from China.... Any idea how...
by nospa
24 Sep 2012, 20:31
Forum: General Discussion (csf)
Topic: DNS DoS attacks
Replies: 7
Views: 7976

DNS DoS attacks

I would like to prevent DNS attacks by limiting number of connections to DNS servers: IPTABLES -I INPUT -p udp --dport 53 -m recent --set --name DNSQF --rsource IPTABLES -I INPUT -p udp --dport 53 -m recent --update --seconds 1 --hitcount 9 --name DNSQF --rsource -j DROP IPTABLES -I INPUT -p udp --d...