Hello,
Tested on 3 servers. centos6 and centos7
if someone got banned for portscanning , his IP doesn't sent to "csf.deny" file. and of course you can't unblock it's IP or find it in /etc/csf/csf.deny , it just shows in /var/log/lfd that this IP is blocked.
However there's no way to unblock it by anyway because it doesn't in /etc/csf/csf.deny, and csf -tr doesn't work too.....and you have to disable the entire csf rulez because you can't remove the blocked ip!
version : v9.24
Would you please fix that?
Thanks.
Portscan doesn't put denied ip in "csf.deny"
-
ForumAdmin
- Moderator
- Posts: 1524
- Joined: 01 Oct 2008, 09:24
Re: Portscan doesn't put denied ip in "csf.deny"
We are unable to recreate any issues with the port scanning blocking which uses a common procedure to block in csf with all the other methods. This would suggest a configuration issue where you have csf installed.
It might help if you post your PS_* settings. If you see frequent blocks, it could also simply be a case of you setting DENY_IP_LIMIT too low.
It might help if you post your PS_* settings. If you see frequent blocks, it could also simply be a case of you setting DENY_IP_LIMIT too low.