This forum is only for reproducible bugs with csf and lfd (i.e. not iptables problems, lack of understanding how to use a feature, etc). Posts must be accompanied with full technical details of the problem and how it can be recreated. Any posts not adhering to this, or not considered bugs, will be moved to the General Discussion (csf) forum.
It works perfectly for IPV4 but with IPV6 now being used more and more I've found this happening :-
: Network class C has been blocked
IP addresses that triggered the block
Sat Aug 4 00:46:03 2012 2a01:00c0:0002:0004:0216:3eff:fe0d:266d
Sat Aug 4 00:46:23 2012 2a02:2498:0001:003d:5054:00ff:fed3:e91a
Sat Aug 4 02:56:36 2012 2a01:00c0:0002:0004:0216:3eff:fe0d:266d...
i have ubuntu 12.04. In this version the logfile messages does not work. All information is now in syslog. I think configserver syslog_check needs messages for working.
Is there a way to learn syslog_check how to do or must I do without this feature?
Hello Chirpy,
I have recently been seeing frequent high CPU usage reported for LFD processes that appears to occur during the retrieval of the global ignore list we use which contains around 100 specific IP addresses and 15 class C blocks like 123.123.123.0/24 .
Is there any reason that you know of for this to be contributing excessively to high CPU usage?
So just updated one of the servers to the latest csf. csf v5.55
Ran a Check Server Security scan and under PHP Version info it says this:
Check php version (/usr/local/bin/php) WARNING Any version of PHP (Current: v4.*) older than v5.3.* is now obsolete and should be considered a security threat. You should upgrade exclusively to PHP v5.3.*
But I'm not running version 4 and have not for quite...
I realise that Ubuntu 12.04 isnt on your official support list, but I thought as it is an LTS release you will hopefully be releasing official support for it in the future.
I would like to report a bug and ask for a potential fix until a new release if possible.
Basically it seems that the stop/restart command is broken for LFD with Ubuntu 12.04.
WHM Settings Check:
The Melange Chat Server has been deprecated by cPanel and as such should be considered a security concern. You should enable WHM > Tweak Settings > Do not start deprecated Melange 1.10 chat server
In this version there is no Tweak Settings > Enable Melange chat server (deprecated)
I am running three DirectAdmin servers with csf v5.46, today when I run command csf -u to upgrade to new version v5.47, everything seems to work - but the version is still displayed as csf v5.46 - so did it not upgrade, or did you forget to change the version number in script? I have run csf -u on all my three servers, but they all still shows up as running v5.47 with the upgrade notice:
CSF 5.31 has been working fine on my VPS for some time. Upon installing 5.38 I am presented with;
iptables v1.2.11: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
Error: iptables command failed, at line 364
My parent does not have this module. The documentation says that iptable_nat optional. Is this now...
I had a user send out a newsletter last night and was expecting to receive a localhostrelay/localrelay/authrelay alert from lfd, but for some reason it was never generated. The user was sending out emails at a rate which should have triggered the alert (the limit is set at 100 and the customer was sending at ~200/hour). Any thoughts/suggestions?
In the dyndns file (/etc/csf/csf.dyndns) it states:
# Only list fully qualified domain names (FQDN's) in this file, either on their
# own to allow full access, or using Advanced Allow/Deny Filters (see
# readme.txt)
I have tried using the following advanced filter rule:
tcp|in|d=22|s=something.dyndns.org
This does not work as when LFD performs the lookup it results in:
DynDNS: Lookup for...
Getting the following massage in the cpanel error log.
invalid Cpanel::Version::gettree is no longer meaningful. Try Cpanel::Update::Config::get_tier() at /usr/local/cpanel/Cpanel/Version.pm line 86
Cpanel::Version::gettree() called at /etc/csf/csf.pl line 175
main::load_config() called at /etc/csf/csf.pl line 23
I have three custom rules in regex.custom.pm for Postfix handling, and the custom failure message in each does not seem to be used anywhere. The email notifications and lfd.log simply say login failures.... . Am I missing something?
My rules are as follows for anyone who needs them. They work great - the first one I got from this forum.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum