Unable to avoid LFD emails. [Resolved]
Posted: 25 Jun 2016, 17:24
Time: Sat Jun 25 18:16:39 2016 +0200
PID: 32341 (Parent PID:32341)
Account: rpc
Uptime: 62454 seconds
Executable: /usr/sbin/rpcbind
Command Line (often faked in exploits): /sbin/rpcbind -w
I tried to Add ignore rules here: nano /etc/csf/csf.pignore like this:
pcmd:/sbin/rpcbind -w
cmd:/sbin/rpcbind -w
user:rpc
This still did not stopped the emails to arrive? Anything I miss here? I also tried the exe:/usr/sbin/rpcbind, nothing helped.
PID: 32341 (Parent PID:32341)
Account: rpc
Uptime: 62454 seconds
Executable: /usr/sbin/rpcbind
Command Line (often faked in exploits): /sbin/rpcbind -w
I tried to Add ignore rules here: nano /etc/csf/csf.pignore like this:
pcmd:/sbin/rpcbind -w
cmd:/sbin/rpcbind -w
user:rpc
This still did not stopped the emails to arrive? Anything I miss here? I also tried the exe:/usr/sbin/rpcbind, nothing helped.