Search found 5 matches

by dannato
15 Mar 2020, 22:03
Forum: General Discussion (csf)
Topic: LFD do not recognize matching rule from Imunify360
Replies: 0
Views: 1821

LFD do not recognize matching rule from Imunify360

Hello, LFD do NOT recognize matching mod_security rules from Imunify. We tested with many imunify rules with LF_MODSEC directive and DEBUG directive enabled in csf.conf. Imunify mod_security rules are not counted neither ignored. Tested with: Imunify 4.5.6-1 CloudLinux 7.7 cPanel 11.84 CSF 14.02 Exa...
by dannato
24 Jan 2019, 20:52
Forum: General Discussion (csf)
Topic: LF_MODSEC do not block ip address after matches
Replies: 0
Views: 488

LF_MODSEC do not block ip address after matches

Hello, csf -v csf: v12.09 (cPanel) LF_MODSEC is set to 20 LF_TRIGGER is set to 0 LF_SELECT is set to 0 an IP matches more than 20 hits with mod_security for minute but IP is not blocked: grep x.x.x.x /var/log/apache2/error_log | grep modsec | awk '{print $4}' | grep 21:50:50 | wc -l 23 Waiting for y...
by dannato
23 Dec 2015, 16:52
Forum: Suggestions (csf)
Topic: LF_QOS not working
Replies: 2
Views: 3676

Re: LF_QOS not working

do you have any news about ? LF_QOS still not working for us in release: csf: v8.08 (cPanel)

Waiting for your reply

Best regards
by dannato
24 Oct 2014, 12:14
Forum: General Discussion (csf)
Topic: csf.pignore ignore settings
Replies: 1
Views: 2489

csf.pignore ignore settings

Hello, i added following lines in /etc/csf/csf.pignore: exe:/usr/local/lsws/fcgi-bin/lsphp-5.4.34 and restarted csf but i still receive email like this: Time: Fri Oct 24 08:40:34 2014 +0200 PID: 591387 (Parent PID:591387) Account: xxxxxxx Uptime: 11623 seconds Executable: /usr/local/lsws/fcgi-bin/ls...
by dannato
02 Mar 2014, 22:59
Forum: General Discussion (csf)
Topic: Ignore su login csf.suignore
Replies: 1
Views: 1503

Ignore su login csf.suignore

Hello, we enabled LF_SU_EMAIL_ALERT and we fill file csf.suignore with our usernames but we still receive notification about su actions for those usernames. We thought csf.suignore should just let LF_SU_EMAIL_ALERT ignore those logins but on description of csf.suignore was written: "# The following ...