ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

CSF/LF Not blocking mod security anymore?

https://mail.forum.configserver.com/viewtopic.php?t=11301

Page 1 of 1

CSF/LF Not blocking mod security anymore?

Posted: 06 May 2019, 22:00
by noimad1
So I'm running the owasp modsecurity rules, but for some reason I cannot get CSF to block those IP's triggering the rules anymore.

I have LF_MODSEC set to 5, and I've even tried setting LF_CXS to 1, but the IP's just aren't getting blocked. Am I possibly missing something?

Re: CSF/LF Not blocking mod security anymore?

Posted: 04 Jul 2019, 14:17
by cbartos
Hello,

I have the same problem, any fix?

This problem is only with cPanel OWASP rules, my personal rules are triggering the IP block by lfd after X tries.

Thank you!

Re: CSF/LF Not blocking mod security anymore?

Posted: 04 Jul 2019, 15:19
by cbartos
For me I just found a fix, if you disable crs-setup.conf from cPanel Vendors OWASP, csf is triggering the IP block after X tries.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited