Search found 8 matches

Search found 8 matches Page 1 of 1
by jmginer
03 Feb 2019, 15:23
Forum: General Discussion (cxs)
Topic: cxs CPU cores
Replies: 0
Views: 214

Hello, in a server with 2 TB of data we need +3 days to analyze all the content with cxs.

The server has 24 cores and PCI-e/NVMe disks, however cxs only uses 1 core.

Is it possible to configure to give more cores and thus be able to finish the process faster?
by jmginer
17 Nov 2018, 11:23
Forum: General Discussion (csf)
Topic: cpanelsolr pignore lfd
Replies: 0
Views: 618

Hello, how we can exclude cpanelsolr in pignore? Thanks! Time: Fri Nov 16 23:01:20 2018 +0100 Account: cpanelsolr Resource: Process Time Exceeded: 274648 > 1800 (seconds) Executable: /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.191.b12-0.el6_10.x86_64/jre/bin/java Command Line: /usr/lib/jvm/jre-1.8.0/bin/j...
by jmginer
30 Jun 2018, 13:10
Forum: General Discussion (csf)
Topic: Help with regex for dns/named scans protection
Replies: 0
Views: 298

Hello, we are receiving a very high number of DNS requests from domains that we are not hosting, This is producing a high load on the server and a rapid increase in disk usage due to the writing of the logs. Can you help me to create the regex in order to protect? Thank you. Jun 30 14:05:20 ns2 name...
by jmginer
19 Aug 2017, 18:55
Forum: General Discussion (csf)
Topic: regex.custom.pm trigger trigger level and temporary value ignored
Replies: 1
Views: 705

Hello, I have configured this regex.custom.pm # setup-config if (($globlogs{CUSTOM1_LOG}{$lgfile}) and ($line =~ /(\S+).*] "\w*(?:GET|POST) \/wp-admin\/setup-config\.php.*" /)) { return ("setup-config attack",$1,"setup-config","20","80,443","3600"); } As you can see, the trigger level is 20 and the ...
by jmginer
01 Mar 2017, 09:49
Forum: General Discussion (csf)
Topic: wordpress bruteforce web attacks
Replies: 0
Views: 530

Hello,

we're having some issues related to bruteforce attacks with bots that are trying to access to wp-login.php

What is the best way to drop connections in this cases?

Thanks!
by jmginer
13 Jun 2016, 10:32
Forum: General Discussion (cxs)
Topic: twentyfourteen hacked?
Replies: 1
Views: 3191

All the twentyfourteen in my server are detected as exploit. Is true? Content of the file cxs[163898]: ['/home/xxx/public_html/wp-content/themes/twentyfourteen/js/featured-content-admin.js'] - Suspected exploit file /** * Twenty Fourteen Featured Content admin behavior: add a tag suggestion * when c...
by jmginer
21 Feb 2016, 09:18
Forum: General Discussion (cxs)
Topic: CXS for Linux
Replies: 1
Views: 1399

Hello, is possible to install CXS on a non-cPanel server? Just to scan files on a CentOS (or any Linux) server via shell. No need interface.
by jmginer
18 Feb 2015, 20:51
Forum: General Discussion (csf)
Topic: Suspicious process running under user cpanellogaholic
Replies: 1
Views: 1592

+1 Time: Wed Feb 18 21:08:29 2015 +0100 PID: 7905 (Parent PID:7904) Account: cpanellogaholic Uptime: 119 seconds Executable: /usr/local/cpanel/3rdparty/php/54/bin/php-cgi Command Line (often faked in exploits): /usr/local/cpanel/3rdparty/php/54/bin/php-cgi -d display_errors=0 -d log_errors=1 -d erro...
Search found 8 matches Page 1 of 1