ConfigServer Community Forum

Hi there,

Just a small note to say that it's great you've added support for dynamic hostnames, thanks! However, would it be possible to have more control over the firewall entries so that they have specific port access? As it stands right now they are given blanket ACCEPT permissions on all ports and protocols which is a little too excessive, imo.

Something like the implementation you have for...

Hello, would it be possible to have support to csf. Thanks for this great piece of software!

Hello,

is there a way to insert custom filenames in LF_DIRWATCH ?
I have the following below and they`re gone by the time the notify email arrives.

/home/user/public_html/Admin/dse84abzw1abzw1abzw1abzw1abzw1abzw1abzw1abzw1abzw1ab (deleted)
/tmp/ZCUDF2ePoS (deleted)

regards,
Cosmin

Recently, a spammer guessed the email password of one of our users (he guessed it in 5 tries!) and then proceeded to use SMTP AUTH to send thousands of spams through my server.

I looked through my e-mail alerts, and did not find any alerts about this high volume of relayed mail. I only found out about the problem due to receiving an alert about the high queue size.

In CSF, I have the...

is this possible?
to access it through WHM also, but it should have limited options:
- Quick Allow
- Quick Deny
- Remove Deny

for when you're on the move and need to unblock someone's IP.

something you can access like domain.com:2087/cgi/mobile_addon_csf.cgi

would anyone use such a sript?

Later Edit:
or what files should I edit/copy and where, in order to get a minimal CSF UI when accessing...

hi,
In the Check Server Security, is there a way to get a weighted score rather that a simple addition of secured areas?

If not, I'd like to see WHICH are most important than others. Is there an ordered list anywhere?

thanks! :)

Hi,

The entry for PERMBLOCK as listed in the CSF deny file could be a bit more verbose:

XX.XX.84.26 # lfd: (PERMBLOCK) XX.XX.84.26 has had more than 4 temp blocks in the last 86400 secs - Thu May 7 14:55:43 2009

As a suggestion, could you possibly have it notate the reasons for the temp blocks? They could be shortened, ie:

XX.XX.84.26 # lfd: (PERMBLOCK) 4 temp blocks in the last 86400 secs...

I don`t know if this utterly possible, but what I`d like to see would be a feature to allow/deny useragents. Basically, I`ve had a nasty issue last days with Googlebot being blocked out, and the only thing I could see in the logs were a port scan ip blocked ...
After 4 days, I said what the heck, I`ll look in CSF - > Iptables last x log entries ... and guess what ... google bot blocked ...
So I`d...

having generated any file with same format of file csf.deny, so we can include them inside csf.conf:

csf.conf new option example:

MY_OWN_LOGS = /home/domain1/public_html/csf.deny, /home/domain2/public_html/csf.deny, /home/domain3/public_html/csf.deny

Hello!

Thank you for your very good scripts.

Recently, my customers were complaining that their scripts contain the following code:

This happens because the malicious software that gets account password from FTP clients (most popular - TotalCommander, FlashFXP, FileZilla etc.)

This is really very big problem and I find solution for this.
For example, server can send notification if user...

Hi,

I'm not sure if this is worth your time, but when running the 'csf -m' command on a Fedora 10 server, CSF inaccurately reports the OS as outdated. Since this is the latest version, you could add checks. That said, I'm not sure how many people run Fedora servers, and if it would be worth it to add checking for the current release version to accomplish this. Just a suggestion. The work you do...

first time i'm installed on my box, csf working well, i'm upgrading to v.4.64 just now and installing webmin modules, csf not want start up, when i look inside /var/log/lfd.log:

Apr 18 22:59:54 unmeteredbox lfd : daemon started on unmeteredbox.com - csf v4.60 (generic)
Apr 18 22:59:54 unmeteredbox lfd : CSF Tracking...
Apr 18 22:59:54 unmeteredbox lfd : LOAD Tracking...
Apr 18 22:59:54...

Hi,
Really love these programs! But I've needed to customize regex.pm to match my errors messages and also to cover a few other programs. It would be great if there was a method to add new regex patterns and protect them from being over-written during upgrades.

As another example, my smtpauth listens on 25 and 587, so I have to edit within lfd.pl to change this. This should be controlled in a...

Hello,
I would first like to thank the ConfigServer team for the scripts makes available to us. :D
and would like to request the possibility of adding a button to automatically clean the file csf.deny.
On many occasions I have to access the firewall through my blackberry, and it is uncomfortable to edit the file csf.deny using a mobile device, a button to automatically clean the file csf.deny and...

Can a warning be added in the interface regarding the FTP not working on a VPS until port changes are made' on a new install of CSF..

It seems this catches quite a few people out..

I had CSF installed on a new VPS server and this bit was not done, which caused me and my clients a couple of days of angst wondering why I could ftp in, and my clients could not (as I had my IP address in the exempt...

When the mysql slow queries log is enabled, it would be great to get a csf alert like dbuser has had more than XX slow queries recorded in the last XX minutes.

Is this possible at all ?

Thanks !

Hello,

I have a suggestion for the existant LF_SCRIPT_ALERT function. Right now when it detects spam, it chmod's the directory and chattr's it.

It would be really good if it could also delete the emails associated with this script which are still in the mail queue. This would prevent spam from exiting the server. ;)

I'd like to know if this is possible for future releases...

Thanks a lot ;)