I am trying to allow a particular IP address to access port 3306. I have removed 3306 from the TCP_IN list in csf configuration, and am trying to add the IP address to the csf.allow file. I have tried the following:
Is it possible to refresh the Dyndns allow list using a URL?
The reason is my firewalls will check every 15 minutes if my IP has changed, but in emergencies this is quite bad, but its rare, so I dont want to set it to refresh every 1 minute.
So I wondered if I can kick start this refresh externally, like from a URL or something? So in an emergency I update my IP, then I call this URL to...
For the last several months I've spent several hours a day battling with dictionary attackers and various hacker attempts on my server, and most of that time was busy inputting IP's to block through the firewall. But your last upgrade has been a godsend! Now you automatically detect and block 99% of the cretins who were causing my server overloads just a month ago. I hardly know what to do with...
Is there some way that CSF can be used to effectively prevent the attack described in CVE-2010-5107? I'm not overly concerned about this issue (it *has* existed for 11 years, after-all) but the third-party company that does security scans for PCI compliance wants it resolved. The suggested solution is to upgrade OpenSSH to 6.2 to use new feature that mitigate this risk but 6.2 is very new and...
Does anybody experiences this particualr issue? When I have csf enabled, my server shows a very bad ping, up to 70% packet loss in my ping report. But when I disabled it, ping goes back to 100%.
We have found that if a user is in a screen or tmux session and they su or sudo su an alert is not fired. If the user exits their screen/tmux session, the alerts will fire just fine.
It seems to be poorly documented that who am i does not properly return a user when the session is in screen/tmux. However, logname and other env variable such as $SUDO_USER will return the base user.
I recently made a change in one of my firewall settings and was going to restart csf and lfd. However, there is an error regarding the CLUSTER_PORT that I don't understand. That's not a change that I made and it is saying:
Hello
i used to install CSF like the way explained within the manual
it goes pretty ok but when i click in CSF within the WHM it just show the logo nothing else
i tried to uninstall it then it gives this error
Too many levels of symbolic links
Hi, folks. I've seen a few posts around the web about this problem from other OVH customers, but sadly no solutions... I've gotten a bit further than previous posters, but now I'm stuck. Can anyone point me in the right direction?
I've set up csf on a dedicated CentOS server at OVH. It's using a 3.8.13 kernel that they've compiled, rather than the stock 2.6.X kernel. It works great except for...
Why are ip's that i have entered into the Quick Deny fnc still getting thru the Firewall attempting to login to my wp admin panel? I have set the security level to Medium.
I have server with cpanel/WHM on board and 2 IP, 1 public and 1 private.
What need is to deny to user to ping private lan, because private lan must still to internal usage.
cpanel support reply us this:
I see CSF Firewall is installed so you may want to look at adding specific port and destination rules in /etc/csf/csf.deny and /etc/csf/csf.allow.
Hi
I wanted to ask since released software version CSF
I have full of people who can not get into my server
I wanted to ask with this new feature related to UDP packets
What should I name this feature set
I defined as:
UDPFLOOD = 1
UDPFLOOD_LIMIT = 70 / s
UDPFLOOD_BURST = 250
UDPFLOOD_ALLOWUSER = named
Is this a good bank or abnormal at all?
Still I get UDP attacks is not clear why it blocks...
My Server is:
CENTOS 6.4 x86_64 vmware – server
WHM 11.38.1 (build 15)
CSF just upgrade to ConfigServer Security & Firewall - csf v6.26
Since then, I have a peculiar problem. In WHM CSF status is Enabled but Stopped
I can start it. It shows everything is fine. 5 minutes later it say Enabled but Stopped.
Before the upgrade, it was running fine. No new changes. No error messages. The best...
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum