We have been using CSF on cPanel quite successfully for years and over the last couple of years, we have started using them on Virtualmin/Webmin servers as well. The difference we see is that while CSF is very well optimized for cPanel with lot of additional custom configuration like monitoring unwanted scripts, monitoring exim login attempts and blocking them if necessary, monitoring service failures etc.This doesn't seem to be the case for webmin/virtualmin out of the box.
Does anyone have a standard set of optimized configuration rules that can be applied for csf to monitor on virtualmin/webmin servers?