ConfigServer Community Forum

Hello,

After my cPanel updated to v60 I started getting the following error:

Time: Wed Oct 12 14:36:40 2016 +0300
Error: Failed to detect code in SYSLOG_LOG

SYSLOG may not be running correctly on

Running /scripts/restartsrv_rsyslogd --status displays that the rsyslog service is indeed running.

CentOS: 7
CSF: 9.24

Any idea why I get this error?

Thank you.

We spun up a new server and added CSF to it. Pleasantly surprised to see 'Authentic' theme as the new default theme. However, the 'Firewall Configuration' link is missing. When changing back to the old 'Gray Framed' theme, the link returns.

Can't see anywhere to change that. Is it a bug or are we missing a setting someplace?

EDIT: oops. I put this in the wrong forum. Should have been bugs.

I've updated my server from using EasyApache 3 to EasyApache 4 but now when I run a scan with ConfigServer Security & Firewall I am getting the attached warnings (which I didn't get before).

Is this a bug, or are these all genuine warnings that I need to work through ?

Screenshot of errors:

The system is running PHP 5.6.29

Thanks in advance

Config Server installed Firewall & Security, and uses the two options to run this plugin.

After several hours the plugin have put in, I get error messages in my log DirectAdmin,

Site Summary / Statistics / Logs> Error Log Web Full Error Log

Sat Feb 18 17: 44: 25.414434 2017] AH01630: client denied by server configuration: /home/admin/domains/nieuws-feiten.nl/public_html/ robots.txt
AH01630:...

Hi,

im new to this forum but a long time user of csf. And since i use it i want to understand it a bit better.
Before i always used fail2ban next to csf because i dont know how to configure and especially where to see and confirm that csf is watching my logs.

So i thought it was needed to run fail2ban for per example imap logins.

People keep telling me that its not needed.

So that leaded me...

Hi,
Ive got a streaming company ive got a site streaming one of my streams.

Would like assistance to block the domain as blocking the IP has done nothing.

Im using ConfigServer Security & Firewall - csf v9.30

Regards

Andy

I'm having a bad time with CSF.

I've tried all profiles, i've turned off mod_security, i've duplicated settings from another working server with CSF all to no evail.

I've check logs and there is nothing i can find.

Basically when I enable CSF/LFD my sites run fine and then slow down and won't load javascript files and other files relating to wordpress or modx (modx specifically). There are...

Have a problem configuring CLUSTERING (csf: v9.28) with 'CentOs release 6.8'.

Have set the parameters 'CLUSTER_SENDTO, CLUSTER_RECVFROM, CLUSTER_POST, CLUSTER_KEY and CLUSTER_BLOCK'.

On machine 1 (CentOs release 7.3.1611) a test with the command 'csf --cping' give a valid output.
On machine 2 (CentOs release 6.8) same test gives the output 'Can't locate object method new via package Crypt::CBC...

Ok here it goes.

I have an issue with Passive FTP.

I entered the following in my CSF firewall: 30000:50000

I also changed my pure-ftp.conf file to 30000 50000

Restarted the FTP

Still have the issue. Not sure if there is something other to do. Never had this issue before with my other server.

Any help is appreciated.

Since the update to CSF 8.17, I have been receiving the following typical alert for every 100 or so messages sent by Mailman to legitimate lists:

Time: Tue Apr 5 17:15:20 2016 -0400
Type: LOCALHOSTRELAY, Local Account - ::1
Count: 109 emails relayed
Blocked: No

For a list of 600-700 members, I receive 6 alerts. Note the strange account name. 8.19 did not correct the problem and it never...

Hi there, I just rebooted my server and spent over an hour watching the iptables rules being loaded one by one. It seems as though there were many thousands of rules being set, but I cannot understand how. Once CSF had finished and I was able to interactively access the server, I checked csf.deny and there are only 218 lines in that file, which are all single IPs (not CIDRs). there are currently...

Hello
i found LF_HTACCESS block for login failure detection but for of Apache
what about same founction for tomcat web authentication (realm) ??

Thank you

And I am getting:

Job for lfd.service failed because a configured resource limit was exceeded. See systemctl status lfd.service and journalctl -xe for details.
● lfd.service - ConfigServer Firewall & Security - lfd
Loaded: loaded (/usr/lib/systemd/system/lfd.service; enabled; vendor preset: disabled)
Active: failed (Result: resources) since Fri 2016-12-02 14:19:54 EET; 4ms ago
Process: 86993...

Hey All,

I encountered a super weird issue today, and was not able to figure out the cause, or reproduce.

Out of the blue, my server started rejecting connections from anyone, anywhere. Meaning, all hosted sites were down, the server was not pingable, WHM was unreachable, etc..

My gut instinct was check the firewall and sure enough, after logging in via console and executing a csf -x the whole...

se

it looks like there is a new exploit affecting Cpanel servers
How can an IP gain access to Cpanel /whm without logging in

is there some setting in CSF that I can tweak to block this

Hello.
I have installed a firewall csf but check server security the message

csf running check
iptables is not configured. You need to start csf

System used:
OS CentOS 6.8
virtuozzo
DirectAdmin

Please help me

Hi,

I provisioned a new VPS a few days ago and they used a pretty old image as CSF is on version 6.36. When it looks to upgrade it cannot seemingly find the server for whatever reason. I tried running csf -u in the shell and get the same 'Oops' message.

I don't want to accidentally mess anything up so if you can let me know how to either manually upgrade or completely uninstall the software...

Hi,

We have a master server and many slave servers which together form a csf cluster. When we try to use the option cluster ping, we are not getting reply from few servers. Please see the details below.

csf --cping
---
Sent request to 213.xxxxx, no reply
Sent request to 213.xxxxxx, no reply
Sent request to 213.xxxxx, no reply
Sent request to 213.xxxxxxx, no reply
Sent request to 213.xxxxxxx, no...

Hi Guys,

I have stuck with 1 problem. LFD doesn't want to generate email reports about ssh/cpanel login attempts and etc.

maillog is empty on related emails from root@hostname

CentOS release 5.11 (Final)
WHM 11.46.1 (build 7)
csf v7.58
egrep '(LF_CPANEL_ALERT_USERS =|LF_CPANEL_ALERT =)' /etc/csf/csf.conf
LF_CPANEL_ALERT = 1
LF_CPANEL_ALERT_USERS = root

RESTRICT_SYSLOG = 0
LF_ALERT_TO =...

Hello guys,

I have CSF v.7.60 installed and up until recently when I manually put an entry in the Temporary Allow/Deny block using WHM everything worked as it supposed to.

I believe after the cPanel update -but I'm not certain- to 11.46.2 (build 4) Temp entries are not kept more than 12-24 hours. So if I choose to keep an IP say for 7 days, the next day this IP is removed even though I selected...