Search found 228 matches

by sawbuck
14 Jan 2018, 17:20
Forum: General Discussion (csf)
Topic: SSL Lets Encrypt problem
Replies: 2
Views: 2901

Re: SSL Lets Encrypt problem

Any errors if you run?
curl -v "http://ocsp.int-x3.letsencrypt.org/"

This cPanel thread: https://forums.cpanel.net/threads/could ... er.612515/ may have some relevance. Especially resetting the cipher again and testing it.
by sawbuck
27 Oct 2017, 17:11
Forum: General Discussion (csf)
Topic: Problem of receiving mail and sending mail
Replies: 1
Views: 1836

Re: Problem of receiving mail and sending mail

Port 25 needs to be open.
by sawbuck
09 Sep 2017, 23:19
Forum: Suggestions (csf)
Topic: Blocked Email IP's Rotated Out of csf.deny
Replies: 1
Views: 2832

Re: Blocked Email IP's Rotated Out of csf.deny

You can always add a "do not delete" tag to any IPs you don't want removed.
by sawbuck
28 Aug 2017, 19:27
Forum: General Discussion (csf)
Topic: Whois on my server's ip address not working
Replies: 3
Views: 3295

Re: Whois on my server's ip address not working

Probably where I'd start is a file compare with the reset_to_defaults.conf and protection_low.conf files in /usr/local/csf/profiles
by sawbuck
06 Aug 2017, 05:25
Forum: General Discussion (csf)
Topic: SSH : Allow only specific public IP
Replies: 7
Views: 5652

Re: SSH : Allow only specific public IP

https://www.akadia.com/services/ssh_tcp_wrapper.html If you're using WHM/cPanel then additional ports will need to be enabled for access. Additionally your data center/cloud provider may require specific IPs to be included in the hosts.allow file for monitoring/access purposes. Wrappers gives you th...
by sawbuck
06 Aug 2017, 04:56
Forum: General Discussion (csf)
Topic: SSH : Allow only specific public IP
Replies: 7
Views: 5652

Re: SSH : Allow only specific public IP

Use tcp_wrappers.
by sawbuck
31 Jul 2017, 23:45
Forum: General Discussion (csf)
Topic: DENY_IP_LIMIT
Replies: 1
Views: 2056

Re: DENY_IP_LIMIT

Quoting the config file (/etc/csf/csf.conf) with the default being 1000: "Limit the number of IP's kept in the /etc/csf/csf.deny file Care should be taken when increasing this value on servers with low memory resources or hard limits (such as Virtuozzo/OpenVZ) as too many rules (in the thousand...
by sawbuck
12 Jul 2017, 21:51
Forum: General Discussion (csf)
Topic: Disable CFS via SSH with rescue system
Replies: 4
Views: 3449

Re: Disable CFS via SSH with rescue system

Did you run the "touch" command as suggested?

That will generate the csf.disable file in /etc/csf.
by sawbuck
07 Jun 2017, 23:02
Forum: General Discussion (csf)
Topic: How to whitelist domain from firewall
Replies: 2
Views: 4814

Re: How to whitelist domain from firewall

You can only whitelist by IP.