is it posible to log the email account blocking the ip and show it in the messenger index.html message?
i mean somethig like : (imapd) Failed IMAP login from xxx.xxx.xxx.xxx user: yourmail@domain.com (AZ/Azerbaijan/-): 1 in the last 3600 secs - *Blocked in csf* for 3600 secs
and showit in the messenger index.html
in the regex i see a variable called $acc that appears to be the mail...
Hi,
I have an Interworx VPS and installed ConfigServer Security & Firewall - csf v14.01
I used the script in /etc/csf to remove APF / BFD, but now my /var/log/lfd.log gets flooded with the message: : InterWorx: Reapplied apf stub
We are using ConfigServer Security & Firewall - csf v14.01 and it blocks all connections from people on T-Mobile devises; it is not blocking an IP but a network. When i turn off they firewall, people using t-mobile can access our sites, when the firewall is activated again they cannot and I have cleared out all blocked ip addresses
I went to your applicable web page ( and downloaded your csf.tgz ( (for prospective/experimental use on one of my XCP-ng/XS/CentOS7-based DomU VMs) to my Win10 PC, and copied your provided SHA256 hash code ( for comparison... but using my hash-checksum app on my PC ( MD5 & SHA Checksum Utility 2.1 Pro ), the comparison failed.
I believe that the bug still exists. I use only cc allow filter with country codes. My control panel will not update with cc_allow_filter on. If I comment out the line then the control panel will update.
I have tried whitelisting and ignore with control panel ip addresses with no results.
I have included the CC of the control panel server also.
I know this might sound like a dump question but the following snippet of direction is provided in csf.conf:
This option will keep track of the number of File does not exist errors in
# HTACCESS_LOG. If the number of hits is more than LF_APACHE_404 in LF_INTERVAL
# seconds then the IP address will be blocked
#
# Care should be used with this option as it could generate many
# false-positives,...
I have enabled messenger with v2 and set ip up as per the readme. The redirect works fine but I get the regular blocked page and not the page offering an unblock with ReCaptcha.
I had a bit more detailed post but everytime I tried to post it something in it was triggering your mod security.
I have restarted lfd a couple of times with no effect. Correct user is made with directory, permissions...
Hello,
I'm facing some problems with CFS, me and Cpanel support found that the problem was something with CSF.
Now I have CSF disabled for the good performance of my websites.
With CSF enabled I get a bunch of problems that can be seen at not right now, but if I enable it they just appear.
Can anyone help me or have some clue on how to make CSF work again? Note that eveything was working before,...
Ubuntu 18.04.3 LTS
Cyberpanel 1.9
Error : CSF : Enabled but Stopped Unable to start the error output :
open3: exec of /usr/sbin/ipset flush failed: No such file or directory at /usr/sbin/csf line 5408.
While search found need to install IPSET & I have installed IPSTE.
________
root@cloud:~# sudo apt-get install ipset
Reading package lists... Done
Building dependency tree
Reading state...
I noticed that after this latest update many requests return 520 error especially any page or file behind wp-includes
This issue only appeared after the latest update (14.01)!!
I didn't change anything on the server. The only thing changed is the CSF update.
Note: The entire website works well and there are no errors at all (Only any file or page behind wp-includes)
During a recent update the web UI on my LFD has broken; it now just gives me ERR_CONNECTION_RESET . Nothing error-related is being logged in /var/log/lfd.log. What could the problem be?
I have an account that can't receive mail from a vendor that uses Outlook 365.
I have been sent the NDR from the outgoing smtp server and the IT at the other end says I need to allow connection from the APAC region datacenter for O365.
I am trying to figure out how to change my filtering and protections to allow an entire region to be able to connect to my server without opening up to too many...
When logging in to SSH, for some reason I keep getting two SSH Login Alert emails. I want these alert emails but this is the only alert where two emails are generated for only one login, from the same device, to the same email address, for exactly the same time inlcuding seconds.
I am no expert but have searched the configuration options and cannot understand why I am recieving two of...
In Directadmin on Centos 7 with CSF v14,
the option CC_ALLOW_SMTPAUTH is no longer available.
Making it impossible to specify country codes that are allowed to connect to smtp.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum