1 post Page 1 of 1
Junior Member
Posts: 2
Joined: 25 Apr 2013, 21:00

CSF is absolutely fantastic, we use it on many of our servers, but on our cPanel servers in a cpanel "DNS cluster" we are constantly bombarded by emails about "WHM/Cpanel root access alert" due to each of the 5 servers in the cluster remotely pulling various DNS data as part of cPanel's built in DNS cluster management. Every time a domain is edited by a customer or by management, every server reports a root access alert from each of it's neighbors in the cPanel cluster.

If we had a LF_CPANEL_ALERT_IGNORE option that could allow a delimited list of IP address or CIDR blocks to be exempted from this check, we could put our server blocks in there to stop these from coming. That way we would only be notified if a real threat was detected.

Thanks for considering!
1 post Page 1 of 1