ConfigServer Community Forum

Anyone out there searching for this:

I know this is old but still I didn't find anything to exclude/ignore error_log and error.log. error_log isn't generated only in public_html, but in subfolders too. And not only inside public_html (hfile) back outside of it too (if Addon domains are outside public_html for example). So I am looking ...

I see in Plugins > CSF: Firewall Status: Enabled but Stopped (and the Start button) all the time. But in terminal csf and lfd are on and running: [root@vega ~]# systemctl status csf ● csf.service - ConfigServer Firewall & Security - csf Loaded: loaded (/usr/lib/systemd/system/csf.service; enable...

I had issues with a weird attack so I've installed mod_qos on a cPanel server. It seems to work: [root@earth ~]# cat /var/log/apache2/error_log | grep qos [Tue Aug 13 13:26:01.064302 2019] [mpm_event:notice] [pid 25623:tid 47999883764800] AH00489: Apache/2.4.39 (cPanel) OpenSSL/1.0.2s Apache mod_bwl...

There is always a "spam" folder usually, from Spamassassin or assp deluxe. Is there a way to "automate" this: https://www.configserver.com/mshelp/faq.htm : "We recommend filtering the email in your email client and placing it in a separate folder so that you can check throug...

And I am getting: Job for lfd.service failed because a configured resource limit was exceeded. See "systemctl status lfd.service" and "journalctl -xe" for details. ● lfd.service - ConfigServer Firewall & Security - lfd Loaded: loaded (/usr/lib/systemd/system/lfd.service; enab...

I got users with scripts that are chmoding themselves as 777. Others uploading them this way. Anyway for whatever reason, there are directories with 777 permissions. I don't really care, cagefs does the work well. But what concerns me is cxswatch. I may get ~500 mails per day per server that is 4000...

I've just completed installing MailScanner, ClamAV and MSFE.

Taking a look around I saw @ mailwatch that a few accounts are sending spam.
All passed as "CLEAN". Is there a way to stop them / filter them ?

http://www.cdnet.gr/spam.png

Adding /* seems to work because imp subdirectory isn't hidden:
Watching it...
(except if I scr*w it up with regex)

/tmp/\.horde/.*
/tmp/\.horde/*

Getting the same messages all day.
The weird is, /tmp/.horde is already in ignore list.
Also trying to ignore user cpanelhorde doesn't help either.