I want to move from fail 2 ban to csf and i use a regex to check var/log/freeswitch/debug.log for failed auth attempts
how would i translate that into a regex for csf?
\ sofia_reg.c:\d+ SIP auth failure \(REGISTER\) on sofia profile \' +\' for \ from ip
\ sofia_reg.c:\d+ SIP auth failure \(INVITE\) on sofia profile \' +\' for \ from ip
I am having trouble with my CSF and denying whole countries.
I am trying to block the country of Chia.
I have the following line in my csf.conf file.
CC_DENY = CN,RU,VN,NG,RO,UA,IN
I have restarted my csf after I made changes.
I am still getting IP's from China getting to my server.
I have checked my server logs and there are IP's that start with 175.44, which are from China.
Hi guys, apologies if this is in the wrong section. But I've ran out of options on what to do with this specific problem. I've done the research, and I can't seem figure out what it is. Other people keep getting the MLSD error on the FTP side. I can connect perfectly (probably because cPanel/Server recognizes im the admin IP (idk))
Most of the posts with this error are on shared hosting. I have a dedicated server with this error.
When I run the IP Tables test from csf I get:
Testing iptables...
With our WHM VPS, we use a third party service for weekly backups. This process always triggers the following:
/usr/local/cpanel/3rdparty/perl/514/bin/perl
We receive a CSF alert for each and every account that gets backed up. Is it safe to ignore this Perl path in csf.pignore? If so, do I simply add a line for:
I recently moved the IP of one of our DNS servers to a new cpanel server after checking DNS was running correctly on the server. However since moving the IP and adding it to the new server we are getting lots of LFd temp blocks for servers connection to DNS (example below)
Port 53 is in the list of open UDP ports in CSF so i'm at a loss to understand what the problem is. Anyone got any ideas....
Anyone else have this problem? My CSF/LFD keeps banning my IP (usually from PopPeeper accessing mail too often), I try adding myself to the allow list, but my IP changes daily, or every time my connection is reset.
Any thoughts or suggestions on what I could do to keep myself unbanned?
If I do csf -x and attempt to upload a file then it works, if I enable CSF then the upload drops. I'm sure I've missed a setting somewhere and would appreciate a point in the right direction.
I've diabled ICMP as that was causing issues but apart from that I can't think of anything else in the settings. I've been using CSF for years now and never seen this problem but have checked everything I...
Hi Chirpy and thanks as always for all that you do :)
I noticed these errors/warnings during a 6.09 to 6.10 upgrade...
...
...
mode of `/etc/csf/uninstall.sh' changed to 0700 (rwx------)
chmod: cannot access `/etc/csf/*.php': No such file or directory
failed to change mode of `/etc/csf/*.php' to 0000 (---------)
mode of `/etc/csf/webmin/csf/index.cgi' changed to 0700 (rwx------)
mode of...
I have a CentOS 5.8 server, with a game server on it. I have web hosting on a different server, and I'm trying to query the game server using PHP. It's sending a UDP request to the server, but it is being blocked. I turn off CSF and the request is successfully made. I had tried the following,
- Allow All Ports, Incoming and Outgoing TCP And UDP
- Put the incoming request's IP into my csf.allow...
latest CSF, I've many emails like lfd on host: Suspicious process running under user xxx . This is nice feature but this send me many emails, so i try to turn off this but with no result:
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum