Search found 1048 matches
- 30 Dec 2023, 20:02
- Forum: General Discussion (csf)
- Topic: Custom REGEX rules for CSF.
- Replies: 93
- Views: 2028878
Re: Custom REGEX rules for CSF.
see above post
- 30 Dec 2023, 19:59
- Forum: General Discussion (csf)
- Topic: Custom REGEX rules for CSF.
- Replies: 93
- Views: 2028878
Re: Custom REGEX rules for CSF.
HAPPY NEW YEAR EVERYBODY!!! I want to share an SPAM ASSASSIN Rule that I am sure you will like it, I know here is not the place to add SPAMASSASSIN rules as this forum was for CSF REGEX rules, but I am sure you will like it. Details: A lot of spam have entered into my servers coming from OUTLOOK IP ...
- 30 Dec 2023, 19:33
- Forum: General Discussion (csf)
- Topic: One computer on the local network blocked, but not others
- Replies: 3
- Views: 3292
Re: One computer on the local network blocked, but not others
Hi.
One way to find what is bloking that computer is to check log files searching for computer name not by the IP, give it a try.
Sergio
One way to find what is bloking that computer is to check log files searching for computer name not by the IP, give it a try.
Sergio
- 19 Dec 2023, 03:14
- Forum: General Discussion (cmc)
- Topic: Mod_security is not blocking
- Replies: 5
- Views: 6533
Re: Mod_security is not blocking
You can add rules for CSF on the file: /usr/local/csf/bin/regex.custom.pm and after you add your rules you have to restart LFD in order for them to start working. Be very carful adding rules in there as a bad written rule can make your server down. Please read CSF readme file to know about this. Ser...
- 18 Dec 2023, 04:26
- Forum: General Discussion (cmc)
- Topic: Mod_security is not blocking
- Replies: 5
- Views: 6533
Re: Mod_security is not blocking
Yes, you can create your own CSF rule to block modsecurity attacks. Please read my post at: https://forum.configserver.com/viewtopic.php?p=32708#p32708 In that post I wrote a rule that you can use to block ModSec attacks, you will need to write the rules that you want to block and CSF will block the...
- 17 Dec 2023, 20:55
- Forum: General Discussion (cmc)
- Topic: Mod_security is not blocking
- Replies: 5
- Views: 6533
Re: Mod_security is not blocking
Francisco, CMC does not block any IP, the one that should block the IP is CSF, check the following options: [*]Enable failure detection of repeated Apache mod_security rule triggers LF_MODSEC = Default: 5 [0-100] LF_MODSEC_PERM = Default: 1 [0-604800] Also, in WHM you should check that the ModSecuri...
- 16 Dec 2023, 23:01
- Forum: General Discussion (cxs)
- Topic: First time ever CXS rule is not working, why?
- Replies: 2
- Views: 2766
Re: First time ever CXS rule is not working, why?
Ohhh, that is why.
Thought I was doing something wrong, thanks for telling, appreciated.
Best Regards,
Sergio
Thought I was doing something wrong, thanks for telling, appreciated.
Best Regards,
Sergio
- 16 Dec 2023, 12:39
- Forum: General Discussion (cxs)
- Topic: First time ever CXS rule is not working, why?
- Replies: 2
- Views: 2766
First time ever CXS rule is not working, why?
Hi, Sarah. Would you be kind to tell me what I am doing wrong on the following rule that I have created on CXS? InmunifyAV+ is detecting the following code as malicious, so, I have added the rule in cxs.xtra to quarantine the file but is not working. This is the code that I want to block: <?php eval...
- 14 Dec 2023, 02:26
- Forum: General Discussion (csf)
- Topic: Trying to ignore a Perl script, but still getting alerts
- Replies: 3
- Views: 3127
Re: Trying to ignore a Perl script, but still getting alerts
Great to know it worked for you, your welcome.
- 13 Dec 2023, 03:36
- Forum: General Discussion (csf)
- Topic: Trying to ignore a Perl script, but still getting alerts
- Replies: 3
- Views: 3127
Re: Trying to ignore a Perl script, but still getting alerts
Try this instead:
Sergio
Code: Select all
cmd:/usr/bin/perl /home/example/public_html/cgi-bin/cart.cgi