Search found 809 matches

by Sergio
14 Jan 2021, 14:14
Forum: General Discussion (csf)
Topic: Receiving E-Mail Notifications - Even when EMAIL_ALERT disabled ??
Replies: 4
Views: 1182

Re: Receiving E-Mail Notifications - Even when EMAIL_ALERT disabled ??

If you are using cPanel the work around is very easy: 1. Enter into webmail of the account that you are receiving the emails. 2. Create a Filter. 3. Name the filter as you want. 4. On the first line select SUBJECT CONTAINS and write the subject of that email. 5. ADD a second line (be careful not to ...
by Sergio
08 Jan 2021, 16:47
Forum: General Discussion (csf)
Topic: Default ports in TCP OUT
Replies: 1
Views: 829

Re: Default ports in TCP OUT

When CSF is installed it comes with some ports that you as administrator has to check and modify accordingly. I suggest you to check the following from cPanel: How to Configure Your Firewall for cPanel & WHM Services Valid for versions: 84,86,90,92,94 Last modified: November 20, 2020 https://doc...
by Sergio
08 Jan 2021, 15:27
Forum: General Discussion (csf)
Topic: CSF csf.allow still denied
Replies: 3
Views: 665

Re: CSF csf.allow still denied

Hello Is there a way a bulk IP POP3 or imap will IP's will be allowed? I tried IP like this (for example only) 123.45.0.0/24 # csf.allow then I saw some IP IN csf.deny 123.45.111.222 # lfd: (pop3d) Failed POP3 login from 123.45.111.222 can somebody explain to me why is this happening? how can I mak...
by Sergio
08 Jan 2021, 15:14
Forum: General Discussion (csf)
Topic: SOLVED: It seems like CSF+LFD ignores Custom Log file
Replies: 2
Views: 1083

Re: It seems like CSF+LFD ignores Custom Log file

Hi, Serge. Happy New Year 2021! It seems that the error that you have is that you are not passing the variable $1 on the rule, you have: if (($lgfile eq $config{CUSTOM8_LOG}) and ($line =~ /[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}/)) { return ("Own Blacklist",$1,"Blacklisted&quo...
by Sergio
02 Oct 2020, 16:06
Forum: General Discussion (csf)
Topic: Update ConfigServer softwares
Replies: 2
Views: 736

Re: Update ConfigServer softwares

Most of the utilities updates automatically and if not, when you access any of them check at the bottom of the main page of each of the utilities you will see if there is an update and clicking the notice it will do the update.
by Sergio
02 Oct 2020, 16:02
Forum: General Discussion (csf)
Topic: ImunifyAV and CSF / ClamAV
Replies: 3
Views: 977

Re: ImunifyAV and CSF / ClamAV

I have both installed without any issues.
I bought ImunifyAV+ that does a great job cleaning cpanel accounts if malware is found on the web site.
by Sergio
02 Oct 2020, 15:53
Forum: MailScanner Front-End
Topic: MailControl not showing From address.
Replies: 2
Views: 1524

Re: MailControl not showing From address.

Thank you for answering,
Sergio
by Sergio
09 Sep 2020, 17:28
Forum: General Discussion (csf)
Topic: Blocking Wordpress Login and xmlprc attacks with LFD
Replies: 28
Views: 42803

Re: Blocking Wordpress Login and xmlprc attacks with LFD

Here is the rule that I use to block at the first byte some ModSecurity rules: # BLOCKING ModSec Rules attacks if (($lgfile eq $config{CUSTOM1_LOG}) and ($line =~ /^\[\S+\s+\S+\s+\S+\s+\S+\.\d+\s+\S+\] \[:error\] \[pid \d+.*\] \[client \S+\] \[client (\S+)\] ModSecurity.*\[id "(210280|210350|21...
by Sergio
04 Sep 2020, 03:25
Forum: General Discussion (csf)
Topic: Blocking Wordpress Login and xmlprc attacks with LFD
Replies: 28
Views: 42803

Re: Blocking Wordpress Login and xmlprc attacks with LFD

Hi.
This have been a long time since I tried to show you the code that I need to start from the beginning.

To help you, I need to see the latest reported error line from /etc/apache2/logs/error_log and I will try to give you the rule.
by Sergio
30 Jul 2020, 21:31
Forum: MailScanner Front-End
Topic: How train MailScanner to not send emails to noreply addresses?
Replies: 8
Views: 2836

Re: How train MailScanner to not send emails to noreply addresses?

I will give it a try, thanks.

I will add:
To: noreplay@* no

Sergio