ConfigServer Community Forum

awebsite4u wrote: ↑22 Aug 2023, 16:27 As a temporary fix I changed http:// to https:// on lines 336 to 338 in /usr/local/csf/lib/ConfigServer/Config.pm and restarted both CSF and LFD.

We will release a new version that makes this same change in due course.

Yes, that's the expected behaviour

That will happen if you install csf before installing cpanel. If you edit csf.conf and change GENERIC = "1" to GENERIC = "0" and then run the following to update csf it should recreate those entries:

This has been implemented in the new released of v14.18

Those emails are controlled by LF_EMAIL_ALERT

That is controlled by the Login Tracking options: # Block IMAP logins if greater than LT_IMAPD times per hour per account per IP # address (0=disabled) - not recommended for IMAP logins due to the ethos # within which IMAP works. If you want to use this, setting it quite high is # probably a good id...

It would help if you could provide an example log line that was not detected.

It's some debug code that you can safely ignore. It will be resolved in the next release of csf.

csf.uidignore has nothing to do with the LF_SUDO_EMAIL_ALERT option. lfd cannot log if LF_SUDO_EMAIL_ALERT is disabled, which might suggest that you failed to restart lfd after changing it, or there's an issue with your /etc/csf/csf.conf file.

You need to post the log lines from /var/log/messages or wherever the kernel log lines for the firewall are logged that are being detected by LFD. A sample of which will be provided in the emails from lfd regarding any report. You're also confusing UDP_FLOOD and UID Tracking which are different opti...