We are using a reservations system on a new web site. The payment processing in that system uses a hosted payment form at Authorize.net, and when the payment is successfully completed Authorize.net submits a POST back to the reservation system to confirm the payment and retrieves a Thank You page from our web site and displays it to the customer. When the CSF/LFD firewall on the server is...
Hello CSF blocking my own customers IP's address. Please help me to change some settings... I don't want CSF to block my customers IP's like when my customers use his wordpress and try to create a new post CSF blocked his access.
This is happening to me on 2 non-cpanel servers that we're running. Basically the title of the email reads something like: lfd on localhost.localdomain
How do we get localhost.localdomain to be the actual hostname of the server?
We have our hostname attached to each IP in /etc/hosts. On 1 server, the sending email is showing: root@ourdomain.com, but for some reason the other one is still:...
After a new CSF installation, executing csf -r you get:
*WARNING* Binary location for in /etc/csf/csf.conf is either incorrect, is not installed or is not executable
*WARNING* Missing or incorrect binary locations will break csf and lfd functionality
Recently I had to add the IP of a customer's technician that had to make a vulnerability to my CSF whitelist
so he can complete the vulnerability test to one of my servers, because CSF was blocking it just when he
started a port scanning (which is good).
However he sent a report stating that a lot of ports are open, putting me to shame, and now I am wondering if I did something wrong.
Because much of my server's traffic is coming through CloudFlare, and I've whitelisted CloudFlare's IP addresses, have I rendered CSF and LFD less effective at blocking repeat attacks from the same IP?
Is there a way around this other than by taking CloudFlare out of the equation?
I have received a few emails over the past few weeks similar to the following content. Can someone tell me if this is a serious issue and what I can do to fix it.
find: `/proc/5049': No such file or directory
find: `/proc/5799': No such file or directory
find: `/proc/5801': No such file or directory
This indicates that the issue is with the software itself, and not with any portion of cPanel. Researching this in their forums it looks like you may be able to resolve this by forcing an update of the...
We have problem with LF_PERMBLOCK_ALERT notification.
Rule was set to 0 so we don't want to notification when someone is perm blocked and we set LF_PERMBLOCK_ALERT to 0 but we still receive mails.
Can you help me to resolve this issue.
We have a really unusual intermittent issue that is driving us crazy. We have a number of clients using O365 mail service for sending mail from their WordPress websites. We have a plug-in installed that sends and logs emails via SMTP to office 365 (Post SMTP aka postman) The plug-in is OK with diagnostic information and when this issue occurs, we can deduce that when it drops out the...
I'm hoping someone can help me, I currently have a dedicated server running CLOUDLINUX 6.6 x86_64 standard – server WHM 11.50.0 (build 29) and I use CSF Firewall.
I've decided to use SendGrid (www.sendgrid.net) as an SMTP service to send invoices through my WHMCS system. Everything works for a couple of days and then the SMTP no longer works. Each time this happens, I have to disable CSF...
We are getting daily alert from the servers that the csf is failed. When we check, the error would be like
Error: Error processing command for line (6 times): , at line 329 in /usr/sbin/csf
Its a centos6 + cpanel server. There are no other applications holding the IPtables. This is very frequent and we have to remove the csf.error and restart csf.
I've been using CSF for many years and always had good luck using LFD and CC_Deny/Allow, etc. NOW, I migrated my Cpanel server to new hardware, and I can't seem to get the CC_Allow Filter ( I added US,CA only for now) to limit the countries it's allowing access to. I'm getting login attempts from all over the globe.
Secondly, for instance I had 223 SSH login fails since last night and I don't see...
CSF on my WHM server attempted an auto upgrade overnight and failed with the following entry near the end of the emailed log:
Error: Invalid TCP_IN port , at line 3026 Job for lfd.service failed because the control process exited with error code. See systemctl status lfd.service and journalctl -xe for details.
I can't get the CSF Messenger to work properly on my Plesk server for SSL websites.
When I navigate to a server IP address, not using SSL, I see the Messenger page telling me I'm blocked.
But when visiting any website on the server, all of which use SSL, the IP is not blocked.
Any idea?
when i enable Perform SMTP packet inspection osm daemon wont start
Feb 13 00:56:18 server3 osmd : daemon stopped
Feb 13 00:56:33 server3 osmd : daemon started
Feb 13 00:56:33 server3 osmd : Main Process: Can't locate Net/Pcap.pm in @INC (you may need to install the Net::Pcap module) (@INC contains: /etc/osm/Modules /usr/local/cpanel...
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum