Search found 10 matches

Search found 10 matches Page 1 of 1
by seco
05 Feb 2019, 18:17
Forum: General Discussion (csf)
Topic: Restrict access to /wp-login.php based on DYNDNS
Replies: 0
Views: 192

Hello,

I'm already using DYNDNS feature of CSF and it's really great.
Just asking, can I write a custom regex to protect /wp-login.php and accept the request to it only from my DYNDNS IP only?

Regards,
by seco
17 Oct 2018, 09:58
Forum: General Discussion (csf)
Topic: Custom regex not working
Replies: 4
Views: 828

Hello, I'm using this regex to block wp-login.php POST requests on /etc/csf/regex.custom.pm: if (($globlogs{CUSTOM2_LOG}{$lgfile}) and ($line =~ /(\S+).*] "POST \/wp-login\.php.*" 200/)) { return ("Failed WordPress login from",$1,"wordpress","5","80,443","3600"); } My CUSTOM2_LOG point to the access...
by seco
15 Oct 2018, 11:58
Forum: General Discussion (csf)
Topic: Block access to a subdomain
Replies: 0
Views: 569

Hello,

I'm using CSF with my main domain perfectly and I'm using it with Cloudflare and everything is good!
Now, I will create a subdomain and I want to block access to it, how can I do that using CSF?

Regards,
by seco
01 Jan 2018, 23:54
Forum: General Discussion (csf)
Topic: CSF not blocking IPs
Replies: 1
Views: 598

Hi
I've tried many ModSec attacks (SQL injections) on my server to see if the IP will be blocked but noting blocked.
I saw apache log, it contains all the attempts from my IP.
csf.conf contains:

LF_MODSEC_PERM=1
LF_MODSEC=1

How to block the attacking IP?
Thanks in advance.
by seco
28 Sep 2015, 10:45
Forum: General Discussion (cxs)
Topic: cxs quarantine suspicious files but csf do not block ip
Replies: 0
Views: 1678

Hi
i upgrade php to 5.5 and everything works well
before upgrade when some one upload suspicious file the ip is blocked but now ip is not blocked !!
although other things like htaccess or cpanel or ssh attacks the ip is blocked successfully

only cxs is not blocked by csf !!
what is wrong?
by seco
05 Apr 2015, 20:16
Forum: General Discussion (cxs)
Topic: add Fingerprint for new PHP shell
Replies: 6
Views: 3356

one last question
now if any changes made to the file so it can now uploaded so is there any other effective method to identify the file ?
by seco
05 Apr 2015, 20:01
Forum: General Discussion (csf)
Topic: can i send SYN packets or any to the attacker
Replies: 0
Views: 809

Hi
just fun and testing only
can i send SYN packets or any other kind of packet instead of blocking him or send those packets then block him?
thanks in advance.
by seco
05 Apr 2015, 19:58
Forum: General Discussion (cxs)
Topic: add Fingerprint for new PHP shell
Replies: 6
Views: 3356

you answer is really insanely awesome like the product
really awesome !!
i'll try it
thanks in advance.
by seco
03 Apr 2015, 21:12
Forum: General Discussion (csf)
Topic: csf stop sms script from working
Replies: 0
Views: 761

Hi i've installed csf and it is GREAT now i have php script that sends sms using a sms gateway from some company. now the script only working when i stop csf what could block my script form send sms through that gateway? or how to tail the log file responsible for that and see what is the exact prob...
by seco
01 Apr 2015, 20:05
Forum: General Discussion (cxs)
Topic: add Fingerprint for new PHP shell
Replies: 6
Views: 3356

Hi
Can i add new Fingerprint not included in cxs scanner so any one will upload that shell will be quarantined as others
thanks in advance.
Search found 10 matches Page 1 of 1