ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

LF_SCRIPT_ALERT

https://mail.forum.configserver.com/viewtopic.php?t=3836

Page 1 of 1

LF_SCRIPT_ALERT

Posted: 26 Sep 2010, 18:23
by MaraBlue
I think lfd's script alert would be a great tool if configured just a bit differently, to identify/disable the directory of the actual script, rather than 'public_html'. Either that or when lfd changes the permissions, change it so that the website is still viewable online, just not able to process script emails.

As it is now, when enabled and someone is abusing a script, 'public_html' is disabled meaning the client's website is not able to be seen online.

I've changed the CSF/LFD settings to still send an email yet not change the directory permissions. If lfd could be set to disable the *actual* directory the script resides in (in my case, /home/user/public_html/js/), rather than '/home/user/public_html', that would make a world of difference. Either that or change the permissions on that directory ('/js/') rather than 'public_html.

Re: LF_SCRIPT_ALERT

Posted: 02 Oct 2010, 09:43
by chirpy
As per the documentation, LF_SCRIPT_PERM:
... the directory identified by LF_SCRIPT_ALERT will
# be chmod 0 and chattr +i to prevent it being accessed.
So it already does do that.

Re: LF_SCRIPT_ALERT

Posted: 03 Oct 2010, 00:15
by MaraBlue
chirpy wrote:As per the documentation, LF_SCRIPT_PERM:
... the directory identified by LF_SCRIPT_ALERT will
# be chmod 0 and chattr +i to prevent it being accessed.
So it already does do that.
That's what I *don't* want it to do. It's disabling the "public_html" directory, not the "js" directory where the script resides.

This means the clients' website is not available to be viewed by anyone via http. I don't want clients getting pissed off at me in the name of security, and having their website go dark (no matter the reason) is going to piss them off.

Re: LF_SCRIPT_ALERT

Posted: 24 Oct 2010, 09:51
by chirpy
As I said, lfd already is coded to disable the directory within which it reports the script from the cwd= statement in the exim log.

Re: LF_SCRIPT_ALERT

Posted: 24 Oct 2010, 21:53
by MaraBlue
chirpy wrote:As I said, lfd already is coded to disable the directory within which it reports the script from the cwd= statement in the exim log.
One more time, it's disabling the *parent* directory (of where the script resides), not the directory of where the script actually is *in*. It's disabling the wrong directory.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited