I used this product for more than 3 years and never happened this. Since yesterday and after my CSF upgraded form vers-5.65 to 5.66 my csf.deny file doesnt accept any more lines, showing this lots of messages in my lfd-log:
I´v restarted CSF twice and erase all of olders csf.deny entries but doest works, it´s like csf.deny file doesnt roll new entries and discard oldiers. Ive keep configured to keep 120 of last SSH login failures (port 22) and works fine after CSF upgraded.Oct 28 06:44:07 moche lfd[12889]: *Error*: csf output: deny failed: tcp|in|d=22|s=37.55.225.145 is in already in the deny file /etc/csf/csf.deny 68 times
Oct 28 06:44:07 moche lfd[12889]: (sshd) Failed SSH login from 37.55.225.145 (UA/Ukraine): 4 in the last 3600 secs - *Blocked in csf* port=22 [LF_SSHD]
Oct 28 06:44:12 moche lfd[12921]: *Error*: csf output: deny failed: tcp|in|d=22|s=37.55.225.145 is in already in the deny file /etc/csf/csf.deny 68 times
Oct 28 06:44:12 moche lfd[12921]: (sshd) Failed SSH login from 37.55.225.145 (UA/Ukraine): 4 in the last 3600 secs - *Blocked in csf* port=22 [LF_SSHD]
...... more than 36 messages like this ........
Oct 28 08:02:46 moche lfd[18267]: (sshd) Failed SSH login from 64.31.20.117 (US/United States/): 4 in the last 3600 secs - *Blocked in csf* port=22 [LF_SSHD]
Oct 28 08:02:51 moche lfd[18329]: *Error*: csf output: deny failed: tcp|in|d=22|s=64.31.20.117 is in already in the deny file /etc/csf/csf.deny 68 times
Oct 28 08:02:53 moche lfd[18329]: (sshd) Failed SSH login from 64.31.20.117 (US/United States/): 4 in the last 3600 secs - *Blocked in csf* port=22 [LF_SSHD]
...... more than 81 messages like this ........
I appreciate all of your suggestions.
regards
FER