ConfigServer Community Forum

Hi

I am getting excessive resource usage emails for Mailman.

I added the following to csf.pignore

pcmd:/usr/local/cpanel/3rdparty/bin/python /usr/local/cpanel/3rdparty/mailman/bin/qrunner.*
pcmd:/usr/local/cpanel/3rdparty/bin/python /usr/local/cpanel/3rdparty/mailman/bin/mailmanctl.*

But I am still getting the warning emails, any idea how to stop them?

Hello, anyone knows what is this happening?

tail -f /usr/local/cpanel/logs/error_log

trim_html is not exported by the Cpanel::StringFunc::Trim module
Can't continue after import errors at /usr/local/cpanel/Whostmgr/HTMLInterface/Output.pm line 8.
BEGIN failed--compilation aborted at /usr/local/cpanel/Whostmgr/HTMLInterface/Output.pm line 8.
Compilation failed in require at...

Hello,

We are unable to reach the websites on the server when csf is enabled. Upon checking, the ip is not blocked as per lfd.log. However /var/log/messages has full of similar messages as below:.

--------------------------------------------------
Sep 10 05:14:59 eeg kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=fa:16:3e:a8:d8:45:00:1c:73:57:7f:c5:08:00 SRC=185.81.xxx.xxx...

Hello,

I've had a bot or something target one of my sites which has been eating up bandwidth. Is there something in CSF I can tweak to stop what is happening below? I can manually ban the IP; however I would like the firewall to pick this up:

82.144.222.130 - - GET /120-news/administrator/index.php HTTP/1.0 500 7309 - -
82.144.222.130 - - GET /120-news/administrator/index.php HTTP/1.0 500 7309...

I'm getting the message of excessive resource for a PHP,

The server has cPanel and I can't identify which PHP script are exhausting the resources. There are a way to know? If so, how can I find it?

Time: Wed Aug 31 12:04:06 2016 -0300
Account: xxx
Resource: Process Time
Exceeded: 1806 > 1800 (seconds)
Executable: /usr/bin/php
Command Line: /usr/bin/php
PID: 22384 (Parent PID:14269)
Killed: No...

Hello,

I've been looking for a way to allow important ports only to a few countries, and I found this topic:

I followed the suggestions and configured CSF this way:

CC_ALLOW_PORTS = GB,US,AU

CC_ALLOW_PORTS_TCP = 20,21,2077,2078,2082,2083,2086,2087,2095,2096
CC_ALLOW_PORTS_UDP = 20,21

After restarting CSF, is not possible to access the ports from any of those countries. Actually, is not...

Hi folks,

Just wondering, in IPv4 TCP_IN, TCP_OUT, UDP_IN, UDP_OUT; If I'm not managing my own DNS Server (I disabled BIND), can I remove Port 53 from those 4 fields?

I understand that my VPS will need to resolve hostnames to IPs however no one has thoroughly been able to advise whether Port 53 can be removed from any of those fields and why, or if it shouldn't be and why.

Can anyone tell me...

Upgrading csf...

Upgrading csf from v8.13 to 8.14...
Retrieving new csf package...

Unpacking new csf package...
tar (child): csf.tgz: Cannot open: No such file or directory
tar (child): Error is not recoverable: exiting now
tar: Child returned status 2
tar: Error is not recoverable: exiting now
sh: line 0: cd: csf: No such file or directory
sh: install.sh: No such file or directory

Tidying...

Hi guys.
I`m reading documentation but i`m a bit confused.
O need a port forwarding on port 24001 to another domain like mydomain.dyndns.org
Where should i do that? In Firewall Configuration but what section inside?
Kind regards and thank you for support.
p.d.:Apologize about my enligsh

Hi,

It's possible with csf to block all connections outbound to port 80 from non root users?

Thanks,
Wilson

centos7 + cpanel . The default firewall for centos7 is `firewalld`.

When installing csf on centos7 server, I found `firewalld` was automatically disabled.
but `iptables ` was not automatically installed.

so it becomes no firewall on the server?

Under this circumstance,
# systemctl status iptables : not found
# systemctl status firewalld : inactive
# systemctl status csf : inactive

but...

Hi,

CSF is reporting that I should do the following:

---
You should modify /opt/alt/php56/etc/php.ini and set: enable_dl = Off

ou should modify the PHP configuration and disable commonly abused php functions, e.g.: disable_functions = show_source, system, shell_exec, passthru, exec, phpinfo, popen, proc_open

You should consider adding ini_set to the disable_functions in the PHP configuration...

Hello

I am new here and signed up to say that the recommended setting of restrict_syslog to 3 prevents user cron job logging.

Currently I have set this option to 2 to enable logging for user crons in cPanel.

However, I would like to find out what other options are available to enable logging, yet continue with the recommended 3 level ?

I read the manual and notes, but I am still not clear...

Hello,

I am running CentOS 7 without cPanel. This night csf/lfd automatically upgraded from v9.11 to 9.13...
and restarted. OK, I did not see any problem at first time, BUT few hours later I discovered
that my site can only be accessed with IP v6, and not with IP v4, which is used by the majority of users.
This is the first time I got problem after csf/lfd update (automatic or manual mode).

So...

I'm developing a server control panel and I wish to integrate csf into it (basically a link that opens a new page with CSF's integrated UI). Since I don't want users to have to enter another username and password just to login into csf, I need it to login automatically.

Where can I find the logic that generates the sessions in /var/lib/csf/ui/ui.session or is there an example of how can this be...

a longtime ago I added the mailman code here

pcmd:/usr/local/cpanel/3rdparty/bin/python /usr/local/cpanel/3rdparty/mailman/bin/qrunner.*
pcmd:/usr/local/cpanel/3rdparty/bin/python /usr/local/cpanel/3rdparty/mailman/bin/mailmanctl.*

In the past few weeks I started getting mailman alerts again

lfd on cxxx: Excessive resource usage: mailman (12392 (Parent PID:12376))

Time: Mon Aug 15...

Hello, I'm sorry this is probably a very basic question.

We are getting a lot of Suspicious Process notifications for normal things like Wordpress Cron, etc...

I'd rather not have to add a new line in the pignore file for every client. How would I go about ignoring the following, but for ALL clients?

/usr/bin/php /home/clientUsername/public_html/wp-cron.php

Hi,

i am getting many email from CSF which I have installed on my server which are of

suspicious process is running under Avahi some times some other daemons

how can I stop such emails?

I have disabled LF_PERMBLOCK_ALERT but it stopped login and login failure mails.

i want to stop process mails only.

Thanks

Hi all, hoping someone can help with this. Basically we are sending and receiving mail from google, yahoo, comcast, etc and seeing the firewall randomly block both connections in and out of our server to these domains for no apparent reason. Here is a snippet of a log from today, these are all google mail servers. They seem to randomly get blocked and then removed. I finally started adding these...

Hi, it doesn't seem to matter how high I raise the values of LF_IMAPD or LF_POP3D - if they're on all my local network devices struggle to send or receive emails with phones/tablets always giving Couldn't Sign In... warnings.

If I turn them off it's fine, but I've tried settings them at 50 or 60 etc and as soon as I restart CSF/LFD I get the Couldn't Sign In... warnings again.

The weird thing...