Page 1 of 1
Add IP files to csf.conf
Posted: 06 Mar 2009, 13:03
by sv70
having generated any file with same format of file csf.deny, so we can include them inside csf.conf:
csf.conf new option example:
MY_OWN_LOGS ="/home/domain1/public_html/csf.deny, /home/domain2/public_html/csf.deny, "/home/domain3/public_html/csf.deny"
Posted: 13 Mar 2009, 10:29
by chirpy
That's what the GLOBAL_DENY feature is for.
Posted: 16 Mar 2009, 16:19
by sv70
sorry, I forgot this option. Thank you,
Posted: 29 Apr 2009, 18:30
by sv70
the solution of GLOBAL_DENY is quite useless because as I wrote in thread
showthread.php?t=2230
So still I ask the support T. to include a new feature in the configuration file, able to read extern log files.
the situation is this:
- we are suffering a brute-force attack in several webpages. If we make a php script to include the attacker's IP inside a log file, still the attacker would have 3600 seconds to test many passwords.
- If we low the time (i.e: 2 seconds) we are overloading the process.
- If we want to call one shell script to execute IP-table rules, then we are forced to low the security level in the server so PHP can be able to execute the .sh.
some help?