Messages

16

CSF Firewall / CSF mail tracking

« on: July 03, 2018, 02:43:08 PM »

Hi,

on my old directadmin server csf had a mail tracking.
You could enter a number of e-mails that a customer could sent / day and if they would sent more you would receive an e-mail.
This was very useful when the site got hacked and they started to spam.

Any chance that this will be in CWP?

17

CSF Firewall / Re: LFD POP3 & SMTP attack aren't blocked.

« on: July 03, 2018, 12:04:21 PM »

Yeah that fixes things.
But why is the default config not correct. It isn't the basic csf config because the regex.custom has some CWP login checks.

18

CSF Firewall / Re: LFD does not prevent dovecot login attempts

« on: July 03, 2018, 10:12:07 AM »

Found the same problem:
http://forum.centos-webpanel.com/csf-firewall/lfd-pop3-smtp-attack-aren't-blocked/

All mail related items SMTP, POP3 and Imap aren't being checked.

19

CSF Firewall / Re: LFD POP3 & SMTP attack aren't blocked.

« on: July 03, 2018, 09:48:49 AM »

Already found a fault in the csf.conf

The log location is wrong:
POP3D_LOG = "/var/log/maillog"
IMAPD_LOG = "/var/log/maillog"

should be
/var/log/dovecot-info.log

The log contains auth failures for pop3 and imap.
But the bans still don't work

20

CSF Firewall / LFD POP3 & SMTP attack aren't blocked.

« on: July 03, 2018, 09:27:44 AM »

With the default csf config the
LF_POP3D = "0"
LF_POP3D_PERM = "0"

So it doesn't block attacks.
Enabling the LF_POP3D = "1" doesn't change anything.
The attack still continue without a ban.

21

Apache / Possible to run the login page on a subdomain.

« on: June 29, 2018, 04:51:38 PM »

Is it possible to run the cwp on a subdomain on port 80 or 443?
so for my main domain test.com
I could login using test.com:2030
but is it possible to create admin.test.com instead?