Hi,
I configured CSF to block all IPs expect my IP and everything is working perfectly.
Now, my question can I check those blocked IPs. As far as I know, they are dropped so there would be no log.
Regards,
Search found 8 matches
- 05 Feb 2020, 12:40
- Forum: General Discussion (csf)
- Topic: Can I see a log of blocked (dropped) connections?
- Replies: 1
- Views: 1914
- 23 Jan 2020, 20:29
- Forum: General Discussion (csf)
- Topic: Requests in WordPress wp-includes return 520 error
- Replies: 0
- Views: 2846
Requests in WordPress wp-includes return 520 error
Hi, I noticed that after this latest update many requests return 520 error especially any page or file behind wp-includes This issue only appeared after the latest update (14.01)!! I didn't change anything on the server. The only thing changed is the CSF update. Note: The entire website works well a...
- 16 Oct 2019, 14:48
- Forum: General Discussion (csf)
- Topic: Block POST requests if it contains a specific word
- Replies: 0
- Views: 2774
Block POST requests if it contains a specific word
Hello,
Can I Block POST request if it contains a specific word or some words?
Regards,
Moderated Message:
Can I Block POST request if it contains a specific word or some words?
Regards,
Moderated Message:
Please do not bump threads
- 17 Oct 2018, 09:58
- Forum: General Discussion (csf)
- Topic: Custom regex not working
- Replies: 4
- Views: 4287
Custom regex not working
Hello, I'm using this regex to block wp-login.php POST requests on /etc/csf/regex.custom.pm: if (($globlogs{CUSTOM2_LOG}{$lgfile}) and ($line =~ /(\S+).*] "POST \/wp-login\.php.*" 200/)) { return ("Failed WordPress login from",$1,"wordpress","5","80,443&q...
- 01 Jan 2018, 23:54
- Forum: General Discussion (csf)
- Topic: CSF not blocking IPs
- Replies: 1
- Views: 2228
CSF not blocking IPs
Hi
I've tried many ModSec attacks (SQL injections) on my server to see if the IP will be blocked but noting blocked.
I saw apache log, it contains all the attempts from my IP.
csf.conf contains:
LF_MODSEC_PERM=1
LF_MODSEC=1
How to block the attacking IP?
Thanks in advance.
I've tried many ModSec attacks (SQL injections) on my server to see if the IP will be blocked but noting blocked.
I saw apache log, it contains all the attempts from my IP.
csf.conf contains:
LF_MODSEC_PERM=1
LF_MODSEC=1
How to block the attacking IP?
Thanks in advance.
- 05 Apr 2015, 20:16
- Forum: General Discussion (cxs)
- Topic: add Fingerprint for new PHP shell
- Replies: 6
- Views: 7736
Re: add Fingerprint for new PHP shell
one last question
now if any changes made to the file so it can now uploaded so is there any other effective method to identify the file ?
now if any changes made to the file so it can now uploaded so is there any other effective method to identify the file ?
- 05 Apr 2015, 19:58
- Forum: General Discussion (cxs)
- Topic: add Fingerprint for new PHP shell
- Replies: 6
- Views: 7736
Re: add Fingerprint for new PHP shell
you answer is really insanely awesome like the product
really awesome !!
i'll try it
thanks in advance.
really awesome !!
i'll try it
thanks in advance.
- 01 Apr 2015, 20:05
- Forum: General Discussion (cxs)
- Topic: add Fingerprint for new PHP shell
- Replies: 6
- Views: 7736
add Fingerprint for new PHP shell
Hi
Can i add new Fingerprint not included in cxs scanner so any one will upload that shell will be quarantined as others
thanks in advance.
Can i add new Fingerprint not included in cxs scanner so any one will upload that shell will be quarantined as others
thanks in advance.