ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

whitelist lfd suspicious process wp-cron.php

https://mail.forum.configserver.com/viewtopic.php?t=10117

Page 1 of 1

whitelist lfd suspicious process wp-cron.php

Posted: 10 Mar 2017, 15:58
by webmaster
What file do I edit to whitelist or safely ignore the lfd alert for wp-cron.php?

• csf.ignore
• csf.pignore
• maybe a different one?

I edit /etc/csf/csf.pignore and put this inside of it:

Code: Select all

exe:/home/userXYZ/public_html/wp-cron.php
I even restart CSF from SSH PuTTY and WHM control panel

Why do I still receive email from LFD service?

Code: Select all

Executable:

/usr/selector/php

Command Line (often faked in exploits):

/usr/bin/php /home/userXYZ/public_html/wp-cron.php

Re: whitelist lfd suspicious process wp-cron.php

Posted: 11 Mar 2017, 17:03
by webmaster
I may have found my answer here, it looks like csf.fignore is the file to be editing.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited