Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
CSF Firewall / Re: Firewall Problem after Upgrade MariaDB-Server [10.1 > 10.2] fix via csf.pėgnore?
« on: May 24, 2022, 11:56:37 AM »
I did add
local-infile=0
to
Contents of File: /etc/my.cnf
Restarted Server
Started CSF
Everything works!
Only this error here after CSF started
local-infile=0
to
Contents of File: /etc/my.cnf
Code: [Select]
#
# This group is read both both by the client and the server
# use it for options that affect everything
#
[client-server]
#
# include all files from the config directory
#
!includedir /etc/my.cnf.d
local-infile=0
Restarted Server
Started CSF
Everything works!
Only this error here after CSF started
Code: [Select]
Can't open PID file /run/lfd.pid (yet?) after start: No such file or directory2
CSF Firewall / Re: Firewall Problem after Upgrade MariaDB-Server [10.1 >> 10.2]
« on: May 24, 2022, 11:04:38 AM »Code: [Select]
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 2 0.0 0.0 0 0 ? S 06:29 0:00 [kthreadd]
root 4 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kworker/0:0H]
root 5 0.0 0.0 0 0 ? S 06:29 0:00 \_ [kworker/u128:0]
root 6 0.0 0.0 0 0 ? S 06:29 0:00 \_ [ksoftirqd/0]
root 7 0.0 0.0 0 0 ? S 06:29 0:00 \_ [migration/0]
root 8 0.0 0.0 0 0 ? S 06:29 0:00 \_ [rcu_bh]
root 9 0.0 0.0 0 0 ? R 06:29 0:01 \_ [rcu_sched]
root 10 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [lru-add-drain]
root 11 0.0 0.0 0 0 ? S 06:29 0:00 \_ [watchdog/0]
root 13 0.0 0.0 0 0 ? S 06:29 0:00 \_ [kdevtmpfs]
root 14 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [netns]
root 15 0.0 0.0 0 0 ? S 06:29 0:00 \_ [khungtaskd]
root 16 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [writeback]
root 17 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kintegrityd]
root 18 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [bioset]
root 19 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [bioset]
root 20 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [bioset]
root 21 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kblockd]
root 22 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [md]
root 23 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [edac-poller]
root 24 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [watchdogd]
root 30 0.3 0.0 0 0 ? S 06:29 0:07 \_ [kswapd0]
root 31 0.0 0.0 0 0 ? SN 06:29 0:00 \_ [ksmd]
root 32 0.0 0.0 0 0 ? SN 06:29 0:00 \_ [khugepaged]
root 33 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [crypto]
root 41 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kthrotld]
root 43 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kmpath_rdacd]
root 44 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kaluad]
root 45 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kpsmoused]
root 46 0.0 0.0 0 0 ? S 06:29 0:01 \_ [kworker/0:2]
root 47 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [ipv6_addrconf]
root 60 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [deferwq]
root 97 0.0 0.0 0 0 ? S 06:29 0:00 \_ [kauditd]
root 275 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [nfit]
root 276 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [ata_sff]
root 277 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [mpt_poll_0]
root 278 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [mpt/0]
root 294 0.0 0.0 0 0 ? S 06:29 0:00 \_ [scsi_eh_0]
root 295 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [scsi_tmf_0]
root 296 0.0 0.0 0 0 ? S 06:29 0:00 \_ [scsi_eh_1]
root 297 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [scsi_tmf_1]
root 299 0.0 0.0 0 0 ? S 06:29 0:00 \_ [scsi_eh_2]
root 300 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [scsi_tmf_2]
root 305 0.0 0.0 0 0 ? S 06:29 0:00 \_ [irq/16-vmwgfx]
root 306 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [ttm_swap]
root 396 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kdmflush]
root 397 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [bioset]
root 407 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kdmflush]
root 408 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [bioset]
root 424 0.0 0.0 0 0 ? S 06:29 0:00 \_ [jbd2/dm-0-8]
root 425 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [ext4-rsv-conver]
root 571 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [kworker/0:1H]
root 621 0.0 0.0 0 0 ? S 06:29 0:00 \_ [jbd2/sda1-8]
root 623 0.0 0.0 0 0 ? S< 06:29 0:00 \_ [ext4-rsv-conver]
root 3655 0.0 0.0 0 0 ? S 06:54 0:00 \_ [kworker/u128:1]
root 3672 0.0 0.0 0 0 ? S 06:54 0:00 \_ [kworker/0:1]
root 4023 0.0 0.0 0 0 ? S 06:59 0:00 \_ [kworker/0:0]
root 1 0.1 0.3 46328 3956 ? Ss 06:29 0:01 /usr/lib/systemd/systemd --switched-root --system --deserialize 22
root 504 0.0 0.2 37304 3016 ? Ss 06:29 0:01 /usr/lib/systemd/systemd-journald
root 521 0.0 0.0 192912 0 ? Ss 06:29 0:00 /usr/sbin/lvmetad -f
root 541 0.0 0.0 48764 8 ? Ss 06:29 0:00 /usr/lib/systemd/systemd-udevd
root 652 0.0 0.0 57704 108 ? S<sl 06:29 0:00 /sbin/auditd
root 677 0.0 0.0 26384 972 ? Ss 06:29 0:00 /usr/lib/systemd/systemd-logind
root 678 0.0 0.0 170296 4 ? Ss 06:29 0:00 /usr/bin/VGAuthService -s
root 679 0.1 0.1 350992 1960 ? Ssl 06:29 0:02 /usr/bin/vmtoolsd
polkitd 682 0.0 0.0 612232 796 ? Ssl 06:29 0:00 /usr/lib/polkit-1/polkitd --no-debug
dbus 686 0.0 0.0 66288 992 ? Ssl 06:29 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation
root 699 0.0 0.0 33404 0 ? Ss 06:29 0:00 /usr/sbin/anacron
root 716 0.0 0.0 126392 416 ? Ss 06:29 0:01 /usr/sbin/crond -n
root 4250 0.0 0.2 180416 2136 ? S 07:01 0:00 \_ /usr/sbin/CROND -n
root 4252 0.0 0.1 113284 1488 ? Ss 07:01 0:00 \_ /bin/bash /bin/run-parts /etc/cron.hourly
root 4264 0.2 2.1 354252 21896 ? S 07:01 0:00 \_ /usr/bin/python -tt /usr/sbin/yum-cron /etc/yum/yum-cron-hourly.conf
root 4265 0.0 0.0 113644 976 ? S 07:01 0:00 \_ awk -v progname=/etc/cron.hourly/0yum-hourly.cron progname { .... print progname ":\n" .... progname=""; ... } ... { print; }
root 717 0.0 0.0 25908 0 ? Ss 06:29 0:00 /usr/sbin/atd -f
root 978 0.0 0.0 576504 668 ? Ssl 06:29 0:00 /usr/bin/python2 -Es /usr/sbin/tuned -l -P
root 981 0.0 0.0 219120 780 ? Ss 06:29 0:00 php-fpm: master process (/usr/local/cwp/php71/etc/cwpsrv.conf)
root 1979 0.4 1.0 224220 10656 ? S 06:31 0:08 \_ php-fpm: pool cwpsrv
root 4426 0.0 0.2 86240 2320 ? S 07:02 0:00 | \_ su itsys -s /bin/bash -c ps auxf
itsys 4428 0.0 0.1 51860 1800 ? Rs 07:02 0:00 | \_ ps auxf
root 2001 0.4 0.9 224240 9428 ? S 06:31 0:08 \_ php-fpm: pool cwpsrv
root 987 0.0 0.0 219276 84 ? Ss 06:29 0:00 php-fpm: master process (/usr/local/cwp/php71/etc/php-fpm.conf)
root 989 0.0 0.1 214492 1364 ? Ssl 06:29 0:00 /usr/sbin/rsyslogd -n
root 994 0.0 0.0 115156 4 ? Ss 06:29 0:00 /usr/sbin/sshd -D
root 3129 0.0 0.0 154888 4 ? Ss 06:42 0:00 \_ sshd: root@pts/0
root 3139 0.0 0.0 116472 8 pts/0 Ss+ 06:43 0:00 \_ -bash
root 1000 0.0 0.0 205836 220 ? Ss 06:29 0:00 pure-ftpd (SERVER)
root 1017 0.2 0.5 593612 5808 ? Ssl 06:29 0:05 /usr/bin/python2 -s /usr/bin/fail2ban-server -xf start
named 1027 0.0 0.0 171516 872 ? Ssl 06:29 0:00 /usr/sbin/named -u named -c /etc/named.conf
root 1037 0.0 0.0 55752 84 ? Ss 06:29 0:00 cwpsrv: master process /usr/local/cwpsrv/bin/cwpsrv
root 1038 0.0 0.2 56892 2076 ? S 06:29 0:00 \_ cwpsrv: worker process
root 1039 0.0 0.1 56740 1028 ? S 06:29 0:00 \_ cwpsrv: worker process
root 1062 0.0 0.0 16092 392 ? Ss 06:29 0:00 /usr/sbin/dovecot
dovecot 1063 0.0 0.0 9752 344 ? S 06:29 0:00 \_ dovecot/anvil
root 1064 0.0 0.0 9884 460 ? S 06:29 0:00 \_ dovecot/log
root 1066 0.0 0.1 19892 1388 ? S 06:29 0:00 \_ dovecot/config
dovecot 1452 0.0 0.0 85196 860 ? S 06:29 0:00 \_ dovecot/auth
root 1553 0.0 0.0 85208 536 ? S 06:29 0:00 \_ dovecot/auth -w
root 4033 0.0 0.0 9748 864 ? S 06:59 0:00 \_ dovecot/ssl-params
root 1085 0.0 0.0 94512 4 ? Ss 06:29 0:00 login -- root
root 1845 0.0 0.0 116472 8 tty1 Ss+ 06:30 0:00 \_ -bash
opendkim 1087 0.0 0.0 97552 52 ? Ss 06:29 0:00 /usr/sbin/opendkim -x /etc/opendkim.conf -P /var/run/opendkim/opendkim.pid
opendkim 1089 0.0 0.1 630332 1512 ? Sl 06:29 0:00 \_ /usr/sbin/opendkim -x /etc/opendkim.conf -P /var/run/opendkim/opendkim.pid
root 1096 0.0 0.0 178656 96 ? Ss 06:29 0:00 /usr/local/apache/bin/httpd -k start
nobody 1141 0.0 0.0 533696 12 ? Sl 06:29 0:00 \_ /usr/local/apache/bin/httpd -k start
nobody 1146 0.0 0.0 468160 272 ? Sl 06:29 0:00 \_ /usr/local/apache/bin/httpd -k start
nobody 1147 0.0 0.6 599232 6708 ? Sl 06:29 0:00 \_ /usr/local/apache/bin/httpd -k start
nobody 1295 0.0 0.7 927004 7296 ? Sl 06:29 0:00 \_ /usr/local/apache/bin/httpd -k start
root 1109 0.0 0.0 72804 4 ? Ss 06:29 0:00 nginx: master process /usr/sbin/nginx -c /etc/nginx/nginx.conf
nobody 1110 0.0 0.2 74240 2428 ? S 06:29 0:00 \_ nginx: worker process
nobody 1111 0.0 0.0 72808 104 ? S 06:29 0:00 \_ nginx: cache manager process
root 1288 0.1 0.1 312660 1928 ? Ss 06:29 0:02 /usr/bin/spamd --pidfile /var/run/spamd.pid -d -c -m5 -H
root 1563 0.0 0.1 312660 1300 ? S 06:29 0:00 \_ spamd child
root 1564 0.0 0.1 312660 1332 ? S 06:29 0:00 \_ spamd child
root 1386 0.0 0.0 122692 272 ? Ss 06:29 0:00 /usr/libexec/postfix/master -w
postfix 1398 0.0 0.0 122772 24 ? S 06:29 0:00 \_ pickup -l -t fifo -u -o content_filter= -o receive_override_options=no_header_body_checks
postfix 1399 0.0 0.0 122960 868 ? S 06:29 0:00 \_ qmgr -l -t fifo -u
postfix 1424 0.0 0.0 122796 976 ? S 06:29 0:00 \_ tlsmgr -l -t unix -u
postfix 1446 0.0 0.0 122768 496 ? S 06:29 0:00 \_ anvil -l -t unix -u
postfix 1579 0.0 0.1 140828 1376 ? S 06:29 0:00 \_ smtpd -n smtp -t inet -u -o stress= -s 2 -o content_filter=smtp-amavis:127.0.0.1:10024 -o receive_override_options=no_address_mappings
postfix 1818 0.0 0.1 140828 1380 ? S 06:29 0:00 \_ smtpd -n smtp -t inet -u -o stress= -s 2 -o content_filter=smtp-amavis:127.0.0.1:10024 -o receive_override_options=no_address_mappings
postfix 1836 0.0 0.1 140828 1376 ? S 06:30 0:00 \_ smtpd -n smtp -t inet -u -o stress= -s 2 -o content_filter=smtp-amavis:127.0.0.1:10024 -o receive_override_options=no_address_mappings
postfix 2205 0.0 0.1 140828 1436 ? S 06:32 0:00 \_ smtpd -n smtp -t inet -u -o stress= -s 2 -o content_filter=smtp-amavis:127.0.0.1:10024 -o receive_override_options=no_address_mappings
postfix 4395 0.2 0.6 140828 6996 ? S 07:02 0:00 \_ smtpd -n smtp -t inet -u -o stress= -s 2 -o content_filter=smtp-amavis:127.0.0.1:10024 -o receive_override_options=no_address_mappings
postfix 4396 0.1 0.4 122756 5004 ? S 07:02 0:00 \_ proxymap -t unix -u
mysql 1401 0.1 3.4 1312752 34664 ? Ssl 06:29 0:03 /usr/sbin/mysqld --basedir=/usr
amavis 1466 0.1 0.0 393936 736 ? Ss 06:29 0:02 /usr/sbin/amavisd (master)
amavis 1815 0.0 0.0 395488 0 ? S 06:29 0:00 \_ /usr/sbin/amavisd (virgin child)
amavis 1816 0.0 7.4 408844 74856 ? S 06:29 0:01 \_ /usr/sbin/amavisd (ch1-avail)
3
CSF Firewall / Re: Firewall Problem after Upgrade MariaDB-Server [10.1 >> 10.2]
« on: May 24, 2022, 11:03:51 AM »Code: [Select]
security_UserProcess
top - 07:02:20 up 32 min, 2 users, load average: 0.01, 0.15, 0.16
Tasks: 128 total, 2 running, 126 sleeping, 0 stopped, 0 zombie
%Cpu(s): 5.9 us, 11.8 sy, 0.0 ni, 82.4 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
KiB Mem : 1005372 total, 440408 free, 303348 used, 261616 buff/cache
KiB Swap: 2187260 total, 1733884 free, 453376 used. 560072 avail Mem
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
2001 root 20 0 224240 9428 3796 S 12.5 0.9 0:08.77 php-fpm: po+
1 root 20 0 46328 3956 2400 S 0.0 0.4 0:01.97 /usr/lib/sy+
2 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kthreadd]
4 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kworker/0:+
5 root 20 0 0 0 0 S 0.0 0.0 0:00.06 [kworker/u1+
6 root 20 0 0 0 0 S 0.0 0.0 0:00.28 [ksoftirqd/+
7 root rt 0 0 0 0 S 0.0 0.0 0:00.00 [migration/+
8 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [rcu_bh]
9 root 20 0 0 0 0 R 0.0 0.0 0:01.11 [rcu_sched]
10 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [lru-add-dr+
11 root rt 0 0 0 0 S 0.0 0.0 0:00.01 [watchdog/0]
13 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kdevtmpfs]
14 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [netns]
15 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [khungtaskd]
16 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [writeback]
17 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kintegrity+
18 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset]
19 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset]
20 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset]
21 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kblockd]
22 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [md]
23 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [edac-polle+
24 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [watchdogd]
30 root 20 0 0 0 0 S 0.0 0.0 0:07.80 [kswapd0]
31 root 25 5 0 0 0 S 0.0 0.0 0:00.00 [ksmd]
32 root 39 19 0 0 0 S 0.0 0.0 0:00.02 [khugepaged]
33 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [crypto]
41 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kthrotld]
43 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kmpath_rda+
44 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kaluad]
45 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kpsmoused]
46 root 20 0 0 0 0 S 0.0 0.0 0:01.12 [kworker/0:+
47 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [ipv6_addrc+
60 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [deferwq]
97 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kauditd]
275 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [nfit]
276 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [ata_sff]
277 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [mpt_poll_0]
278 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [mpt/0]
294 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [scsi_eh_0]
295 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [scsi_tmf_0]
296 root 20 0 0 0 0 S 0.0 0.0 0:00.01 [scsi_eh_1]
297 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [scsi_tmf_1]
299 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [scsi_eh_2]
300 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [scsi_tmf_2]
305 root -51 0 0 0 0 S 0.0 0.0 0:00.07 [irq/16-vmw+
306 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [ttm_swap]
396 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kdmflush]
397 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset]
407 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kdmflush]
408 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset]
424 root 20 0 0 0 0 S 0.0 0.0 0:00.10 [jbd2/dm-0-+
425 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [ext4-rsv-c+
504 root 20 0 37304 3004 2856 S 0.0 0.3 0:01.57 /usr/lib/sy+
521 root 20 0 192912 0 0 S 0.0 0.0 0:00.00 /usr/sbin/l+
541 root 20 0 48764 8 4 S 0.0 0.0 0:00.17 /usr/lib/sy+
571 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kworker/0:+
621 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [jbd2/sda1-+
623 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [ext4-rsv-c+
652 root 16 -4 57704 108 40 S 0.0 0.0 0:00.02 /sbin/auditd
677 root 20 0 26384 972 800 S 0.0 0.1 0:00.10 /usr/lib/sy+
678 root 20 0 170296 4 0 S 0.0 0.0 0:00.01 /usr/bin/VG+
679 root 20 0 350992 1960 1400 S 0.0 0.2 0:02.23 /usr/bin/vm+
682 polkitd 20 0 612232 796 560 S 0.0 0.1 0:00.05 /usr/lib/po+
686 dbus 20 0 66288 992 704 S 0.0 0.1 0:00.17 /usr/bin/db+
699 root 20 0 33404 0 0 S 0.0 0.0 0:00.00 /usr/sbin/a+
716 root 20 0 126392 416 296 S 0.0 0.0 0:01.45 /usr/sbin/c+
717 root 20 0 25908 0 0 S 0.0 0.0 0:00.00 /usr/sbin/a+
978 root 20 0 576504 668 192 S 0.0 0.1 0:00.47 /usr/bin/py+
981 root 20 0 219120 780 160 S 0.0 0.1 0:00.15 php-fpm: ma+
987 root 20 0 219276 84 20 S 0.0 0.0 0:00.13 php-fpm: ma+
989 root 20 0 214492 1356 1112 S 0.0 0.1 0:00.68 /usr/sbin/r+
994 root 20 0 115156 4 0 S 0.0 0.0 0:00.02 /usr/sbin/s+
1000 root 20 0 205836 220 116 S 0.0 0.0 0:00.00 pure-ftpd (+
1017 root 20 0 593612 5792 1084 S 0.0 0.6 0:05.65 /usr/bin/py+
1027 named 20 0 171516 872 396 S 0.0 0.1 0:00.11 /usr/sbin/n+
1037 root 20 0 55752 84 0 S 0.0 0.0 0:00.00 cwpsrv: mas+
1038 root 20 0 56892 2076 1192 S 0.0 0.2 0:00.34 cwpsrv: wor+
1039 root 20 0 56740 1028 660 S 0.0 0.1 0:00.05 cwpsrv: wor+
1062 root 20 0 16092 392 244 S 0.0 0.0 0:00.02 /usr/sbin/d+
1063 dovecot 20 0 9752 344 248 S 0.0 0.0 0:00.05 dovecot/anv+
1064 root 20 0 9884 460 316 S 0.0 0.0 0:00.04 dovecot/log
1066 root 20 0 19892 1388 396 S 0.0 0.1 0:00.01 dovecot/con+
1085 root 20 0 94512 4 4 S 0.0 0.0 0:00.24 login -- ro+
1087 opendkim 20 0 97552 52 0 S 0.0 0.0 0:00.00 /usr/sbin/o+
1089 opendkim 20 0 630332 1512 880 S 0.0 0.2 0:00.53 /usr/sbin/o+
1096 root 20 0 178656 96 48 S 0.0 0.0 0:00.17 /usr/local/+
1109 root 20 0 72804 4 0 S 0.0 0.0 0:00.00 nginx: mast+
1110 nobody 20 0 74240 2428 1528 S 0.0 0.2 0:00.32 nginx: work+
1111 nobody 20 0 72808 104 8 S 0.0 0.0 0:00.01 nginx: cach+
1141 nobody 20 0 533696 12 12 S 0.0 0.0 0:00.00 /usr/local/+
1146 nobody 20 0 468160 272 56 S 0.0 0.0 0:00.00 /usr/local/+
1147 nobody 20 0 599232 6708 1684 S 0.0 0.7 0:00.04 /usr/local/+
1288 root 20 0 312660 1928 580 S 0.0 0.2 0:02.65 /usr/bin/sp+
1295 nobody 20 0 927004 7296 1432 S 0.0 0.7 0:00.25 /usr/local/+
1386 root 20 0 122692 272 168 S 0.0 0.0 0:00.19 /usr/libexe+
1398 postfix 20 0 122772 24 12 S 0.0 0.0 0:00.01 pickup -l -+
1399 postfix 20 0 122960 868 652 S 0.0 0.1 0:00.03 qmgr -l -t +
1401 mysql 20 0 1312752 34664 2508 S 0.0 3.4 0:03.88 /usr/sbin/m+
1424 postfix 20 0 122796 976 744 S 0.0 0.1 0:00.01 tlsmgr -l -+
1446 postfix 20 0 122768 496 356 S 0.0 0.0 0:00.11 anvil -l -t+
1452 dovecot 20 0 85196 860 588 S 0.0 0.1 0:00.52 dovecot/auth
1466 amavis 20 0 393936 736 248 S 0.0 0.1 0:02.04 /usr/sbin/a+
1553 root 20 0 85208 536 336 S 0.0 0.1 0:00.15 dovecot/aut+
1563 root 20 0 312660 1300 452 S 0.0 0.1 0:00.00 spamd child
1564 root 20 0 312660 1332 464 S 0.0 0.1 0:00.00 spamd child
1579 postfix 20 0 140828 1376 912 S 0.0 0.1 0:00.28 smtpd -n sm+
1815 amavis 20 0 395488 0 0 S 0.0 0.0 0:00.00 /usr/sbin/a+
1816 amavis 20 0 408844 74856 2980 S 0.0 7.4 0:01.61 /usr/sbin/a+
1818 postfix 20 0 140828 1380 912 S 0.0 0.1 0:00.40 smtpd -n sm+
1836 postfix 20 0 140828 1376 912 S 0.0 0.1 0:00.29 smtpd -n sm+
1845 root 20 0 116472 8 4 S 0.0 0.0 0:00.05 -bash
1979 root 20 0 224220 10656 3288 S 0.0 1.1 0:08.83 php-fpm: po+
2205 postfix 20 0 140828 1436 956 S 0.0 0.1 0:00.30 smtpd -n sm+
3129 root 20 0 154888 4 0 S 0.0 0.0 0:00.33 sshd: root@+
3139 root 20 0 116472 8 4 S 0.0 0.0 0:00.05 -bash
3655 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kworker/u1+
3672 root 20 0 0 0 0 S 0.0 0.0 0:00.01 [kworker/0:+
4023 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kworker/0:+
4033 root 20 0 9748 864 720 S 0.0 0.1 0:00.00 dovecot/ssl+
4250 root 20 0 180416 2136 1612 S 0.0 0.2 0:00.00 /usr/sbin/C+
4252 root 20 0 113284 1488 1276 S 0.0 0.1 0:00.01 /bin/bash /+
4264 root 20 0 354252 21896 7580 S 0.0 2.2 0:00.23 /usr/bin/py+
4265 root 20 0 113644 976 832 S 0.0 0.1 0:00.00 awk -v prog+
4395 postfix 20 0 140828 6996 5292 S 0.0 0.7 0:00.02 smtpd -n sm+
4396 postfix 20 0 122756 5004 3736 S 0.0 0.5 0:00.01 proxymap -t+
4423 root 20 0 86240 2320 1720 S 0.0 0.2 0:00.00 su itsys -s+
4424 itsys 20 0 58280 2080 1472 R 0.0 0.2 0:00.01 top -n1 -bc
4
DNS / Re: going crazy please help!
« on: May 24, 2022, 10:50:37 AM »
Router Port Forwarding will help u
5
CSF Firewall / Firewall Problem after Upgrade MariaDB-Server [10.1 > 10.2] fix via csf.pėgnore?
« on: May 24, 2022, 10:38:57 AM »
Yesterday i did the MariaDB-Server 10.2 update
https://wiki.centos-webpanel.com/mariadb-upgrade-to-new-version
Now firewall blocks CWP, SSH, Apache and other Ports. How can i fix this as best?
Did disable CFS and Blocked things are working...
Log information extracted from: "/var/log/lfd.log" (last 200 lines)
Found only this in a similar case:
https://forum.configserver.com/viewtopic.php?t=7743
I think i have to edit the csf.pėgnore,
but how?
https://wiki.centos-webpanel.com/mariadb-upgrade-to-new-version
Now firewall blocks CWP, SSH, Apache and other Ports. How can i fix this as best?
Did disable CFS and Blocked things are working...
Code: [Select]
service mysqld status
ERROR! MariaDB is running but PID file could not be foundLog information extracted from: "/var/log/lfd.log" (last 200 lines)
Code: [Select]
May 23 07:39:25 srv1 lfd[27234]: *System Integrity* has detected modified file(s): /usr/bin/agentxtrap /usr/bin/aria_chk /usr/bin/aria_dump_log /usr/bin/aria_ftdump /usr/bin/aria_pack /usr/bin/aria_read_log /usr/bin/arpaname /usr/bin/at /usr/bin/atq /usr/bin/atrm /usr/bin/bootctl /usr/bin/busctl /usr/bin/clambc /usr/bin/clamconf /usr/bin/clamdscan /usr/bin/clamdtop /usr/bin/clamscan /usr/bin/clamsubmit /usr/bin/coredumpctl /usr/bin/corepack /usr/bin/cpupower /usr/bin/crontab /usr/bin/delv /usr/bin/dig /usr/bin/freshclam /usr/bin/funzip /usr/bin/getconf /usr/bin/grub2-editenv /usr/bin/grub2-file /usr/bin/grub2-fstest /usr/bin/grub2-glue-efi /usr/bin/grub2-menulst2cfg /usr/bin/grub2-mkfont /usr/bin/grub2-mkimage /usr/bin/grub2-mklayout /usr/bin/grub2-mknetdir /usr/bin/grub2-mkpasswd-pbkdf2 /usr/bin/grub2-mkrelpath /usr/bin/grub2-mkrescue /usr/bin/grub2-mkstandalone /usr/bin/grub2-render-label /usr/bin/grub2-script-check /usr/bin/grub2-syslinux2cfg /usr/bin/gzip /usr/bin/host /usr/bin/hostnamectl /usr/bin/innochecksum /usr/bin/journalctl /usr/bin/kernel-install /usr/bin/localectl /usr/bin/loginctl /usr/bin/machinectl /usr/bin/mariadb_config /usr/bin/mdig /usr/bin/myisamchk /usr/bin/myisam_ftdump /usr/bin/myisamlog /usr/bin/myisampack /usr/bin/my_print_defaults
/usr/bin/mysql /usr/bin/mysqladmin /usr/bin/mysqlbinlog /usr/bin/mysqlbug /usr/bin/mysqlcheck /usr/bin/mysql_config /usr/bin/mysqld_multi /usr/bin/mysqld_safe /usr/bin/mysqld_safe_helper /usr/bin/mysqldump /usr/bin/mysql_embedded /usr/bin/mysqlimport /usr/bin/mysql_install_db /usr/bin/mysql_plugin /usr/bin/mysql_setpermission /usr/bin/mysqlshow /usr/bin/mysqlslap /usr/bin/mysql_tzinfo_to_sql /usr/bin/mysql_upgrade /usr/bin/mysql_waitpid /usr/bin/mysql_zap /usr/bin/named-rrchecker /usr/bin/node /usr/bin/nslookup /usr/bin/nsupdate /usr/bin/openssl /usr/bin/perror /usr/bin/pkaction /usr/bin/pkcheck /usr/bin/pkexec /usr/bin/pkttyagent /usr/bin/replace /usr/bin/resolveip /usr/bin/resolve_stack_dump /usr/bin/sasl2-sample-client /usr/bin/sasl2-sample-server /usr/bin/sigtool /usr/bin/systemctl /usr/bin/systemd-analyze /usr/bin/systemd-ask-password /usr/bin/systemd-cat /usr/bin/systemd-cgls /usr/bin/systemd-cgtop /usr/bin/systemd-coredumpctl /usr/bin/systemd-delta /usr/bin/systemd-detect-virt /usr/bin/systemd-escape /usr/bin/systemd-firstboot /usr/bin/systemd-hwdb /usr/bin/systemd-inhibit /usr/bin/systemd-loginctl /usr/bin/systemd-machine-id-setup /usr/bin/systemd-notify /usr/bin/systemd-nspawn /usr/bin/systemd-path /usr/bin/systemd-run /usr/bin/systemd-stdio-bridge /usr/bin/systemd-tmpfiles /usr/bin/systemd-tty-ask-password-agent /usr/bin/timedatectl /usr/bin/tokuftdump /usr/bin/tokuft_logprint /usr/bin/udevadm /usr/bin/unzip /usr/bin/unzipsfx /usr/bin/wsrep_sst_common /usr/bin/wsrep_sst_mariabackup /usr/bin/
wsrep_sst_mysqldump /usr/bin/wsrep_sst_rsync /usr/bin/wsrep_sst_rsync_wan /usr/bin/wsrep_sst_xtrabackup /usr/bin/wsrep_sst_xtrabackup-v2 /usr/bin/xmlwf /usr/bin/zgrep /usr/bin/zipinfo /usr/sbin/anacron /usr/sbin/atd /usr/sbin/clamd /usr/sbin/clamonacc /usr/sbin/crond /usr/sbin/ddns-confgen /usr/sbin/dnssec-dsfromkey /usr/sbin/dnssec-importkey /usr/sbin/dnssec-keyfromlabel /usr/sbin/dnssec-keygen /usr/sbin/dnssec-revoke /usr/sbin/dnssec-settime /usr/sbin/dnssec-signzone /usr/sbin/dnssec-verify /usr/sbin/genrandom /usr/sbin/grub2-bios-setup /usr/sbin/grub2-install /usr/sbin/grub2-macbless /usr/sbin/grub2-ofpathname /usr/sbin/grub2-probe /usr/sbin/grub2-rpm-sort /usr/sbin/grub2-sparc64-setup /usr/sbin/halt /usr/sbin/iconvconfig /usr/sbin/iconvconfig.x86_64 /usr/sbin/init /usr/sbin/isc-hmac-fixup /usr/sbin/lwresd
/usr/sbin/mysqld /usr/sbin/named /usr/sbin/named-checkconf /usr/sbin/named-checkzone /usr/sbin/named-compilezone /usr/sbin/named-journalprint /usr/sbin/nsec3hash /usr/sbin/pluginviewer /usr/sbin/poweroff /usr/sbin/rcmysql /usr/sbin/reboot /usr/sbin/rndc /usr/sbin/rndc-confgen /usr/sbin/rsyslogd /usr/sbin/runlevel /usr/sbin/sasl2-shared-mechlist /usr/sbin/saslauthd /usr/sbin/sasldblistusers2 /usr/sbin/saslpasswd2 /usr/sbin/shutdown /usr/sbin/snmpd /usr/sbin/snmptrapd /usr/sbin/telinit /usr/sbin/testsaslauthd /usr/sbin/tsig-keygen /usr/sbin/udevadm /bin/agentxtrap /bin/aria_chk /bin/aria_dump_log /bin/aria_ftdump /bin/aria_pack /bin/aria_read_log /bin/arpaname /bin/at /bin/atq /bin/atrm /bin/bootctl /bin/busctl /bin/clambc /bin/clamconf /bin/clamdscan /bin/clamdtop /bin/clamscan /bin/clamsubmit /bin/coredumpctl /bin/corepack /bin/cpupower /bin/crontab /bin/delv /bin/dig /bin/freshclam /bin/funzip /bin/getconf /bin/grub2-editenv /bin/grub2-file /bin/grub2-fstest /bin/grub2-glue-efi /bin/grub2-menulst2cfg /bin/grub2-mkfont /bin/grub2-mkimage /bin/grub2-mklayout /bin/grub2-mknetdir /bin/grub2-mkpasswd-pbkdf2 /bin/grub2-mkrelpath /bin/grub2-mkrescue /bin/grub2-mkstandalone /bin/grub2-render-label /bin/grub2-script-check /bin/grub2-syslinux2cfg /bin/gzip /bin/host /bin/hostnamectl /bin/innochecksum /bin/journalctl /bin/kernel-install /bin/localectl /bin/loginctl /bin/machinectl /bin/mariadb_config /bin/mdig /bin/myisamchk /bin/myisam_ftdump /bin/myisamlog /bin/myisampack /bin/my_print_defaults
/bin/mysql /bin/mysqladmin /bin/mysqlbinlog /bin/mysqlbug /bin/mysqlcheck /bin/mysql_config /bin/mysqld_multi /bin/mysqld_safe /bin/mysqld_safe_helper /bin/mysqldump /bin/mysql_embedded /bin/mysqlimport /bin/mysql_install_db /bin/mysql_plugin /bin/mysql_setpermission /bin/mysqlshow /bin/mysqlslap /bin/mysql_tzinfo_to_sql /bin/mysql_upgrade /bin/mysql_waitpid /bin/mysql_zap /bin/named-rrchecker /bin/node /bin/nslookup /bin/nsupdate /bin/openssl /bin/perror /bin/pkaction /bin/pkcheck /bin/pkexec /bin/pkttyagent /bin/replace /bin/resolveip /bin/resolve_stack_dump /bin/sasl2-sample-client /bin/sasl2-sample-server /bin/sigtool /bin/systemctl /bin/systemd-analyze /bin/systemd-ask-password /bin/systemd-cat /bin/systemd-cgls /bin/systemd-cgtop /bin/systemd-coredumpctl /bin/systemd-delta /bin/systemd-detect-virt /bin/systemd-escape /bin/systemd-firstboot /bin/systemd-hwdb /bin/systemd-inhibit /bin/systemd-loginctl /bin/systemd-machine-id-setup /bin/systemd-notify /bin/systemd-nspawn /bin/systemd-path /bin/systemd-run /bin/systemd-stdio-bridge /bin/systemd-tmpfiles /bin/systemd-tty-ask-password-agent /bin/timedatectl /bin/tokuftdump /bin/tokuft_logprint /bin/udevadm /bin/unzip /bin/unzipsfx /bin/wsrep_sst_common /bin/wsrep_sst_mariabackup /bin/wsrep_sst_mysqldump /bin/wsrep_sst_rsync /bin/wsrep_sst_rsync_wan /bin/wsrep_sst_xtrabackup /bin/wsrep_sst_xtrabackup-v2 /bin/xmlwf /bin/zgrep /bin/zipinfo /sbin/anacron /sbin/atd /sbin/clamd /sbin/clamonacc /sbin/crond /sbin/ddns-confgen /sbin/dnssec-dsfromkey /sbin/dnssec-importkey /sbin/dnssec-keyfromlabel /sbin/dnssec-keygen /sbin/dnssec-revoke /sbin/dnssec-settime /sbin/dnssec-signzone /sbin/dnssec-verify /sbin/genrandom /sbin/grub2-bios-setup /sbin/grub2-install /sbin/grub2-macbless /sbin/grub2-ofpathname /sbin/grub2-probe /sbin/grub2-rpm-sort /sbin/grub2-sparc64-setup /sbin/halt /sbin/iconvconfig /sbin/iconvconfig.x86_64 /sbin/init /sbin/isc-hmac-fixup /sbin/lwresd /sbin/mysqld /sbin/named /sbin/named-checkconf /sbin/named-checkzone /sbin/named-compilezone /sbin/named-journalprint /sbin/nsec3hash /sbin/pluginviewer /sbin/poweroff /sbin/rcmysql /sbin/reboot /sbin/rndc /sbin/rndc-confgen /sbin/rsyslogd /sbin/runlevel /sbin/sasl2-shared-mechlist /sbin/saslauthd /sbin/sasldblistusers2 /sbin/saslpasswd2 /sbin/shutdown /sbin/snmpd /sbin/snmptrapd /sbin/telinit /sbin/testsaslauthd /sbin/tsig-keygen /sbin/udevadm /etc/init.d/mysql /etc/init.d/mysqld
May 23 08:39:21 srv1 lfd[1799]: CC Error: Country Code Lookups setting MM_LICENSE_KEY must be set in /etc/csf/csf.conf to continue using the MaxMind databases
May 24 00:00:02 srv1 lfd[1799]: Main Process: TERM
May 24 00:00:02 srv1 lfd[1799]: daemon stopped
May 24 00:00:03 srv1 lfd[19941]: daemon started on srv1.mymymy.haus - csf v14.16 (CentOS Web Panel)
May 24 00:00:03 srv1 lfd[19941]: LF_APACHE_ERRPORT: Set to [2]
May 24 00:00:03 srv1 lfd[19941]: Restricted log file access (RESTRICT_SYSLOG)
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_SSHD *Disabled*
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_FTPD *Disabled*
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_IMAPD *Disabled*
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_POP3D *Disabled*
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_SSH_EMAIL_ALERT *Disabled*
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_SU_EMAIL_ALERT *Disabled*
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_CONSOLE_EMAIL_ALERT *Disabled*
May 24 00:00:03 srv1 lfd[19941]: RESTRICT_SYSLOG: Option LF_WEBMIN_EMAIL_ALERT *Disabled*
May 24 00:00:03 srv1 lfd[19941]: CSF Tracking...
May 24 00:00:03 srv1 lfd[19941]: IPv6 Enabled...
May 24 00:00:03 srv1 lfd[19941]: LOAD Tracking...
May 24 00:00:03 srv1 lfd[19941]: *ERROR*: Country Code Lookups setting MM_LICENSE_KEY must be set in /etc/csf/csf.conf to continue updating the MaxMind databases
May 24 00:00:03 srv1 lfd[19941]: Country Code Lookups...
May 24 00:00:03 srv1 lfd[19941]: CC Error: Country Code Filters setting MM_LICENSE_KEY must be set in /etc/csf/csf.conf to continue using the MaxMind databases
May 24 00:00:03 srv1 lfd[19941]: *ERROR*: Country Code Filters setting MM_LICENSE_KEY must be set in /etc/csf/csf.conf to continue updating the MaxMind databases
May 24 00:00:03 srv1 lfd[19941]: Country Code Filters...
May 24 00:00:03 srv1 lfd[19941]: CC Error: Country Code Lookups setting MM_LICENSE_KEY must be set in /etc/csf/csf.conf to continue using the MaxMind databases
May 24 00:00:03 srv1 lfd[19941]: System Integrity Tracking...
May 24 00:00:03 srv1 lfd[19941]: Exploit Tracking...
May 24 00:00:03 srv1 lfd[19941]: Directory Watching...
May 24 00:00:03 srv1 lfd[19941]: Temp to Perm Block Tracking...
May 24 00:00:03 srv1 lfd[19941]: Process Tracking...
May 24 00:00:03 srv1 lfd[19941]: Account Tracking...
May 24 00:00:03 srv1 lfd[19941]: Watching /var/log/messages...
May 24 00:00:03 srv1 lfd[19941]: Watching /var/log/secure...
May 24 00:00:03 srv1 lfd[19941]: Watching /var/log/customlog...
May 24 00:00:03 srv1 lfd[19941]: Watching /usr/local/apache/logs/error_log...
May 24 00:00:03 srv1 lfd[19941]: Watching /var/log/cwp_client_login.log...
May 24 01:00:05 srv1 lfd[19941]: CC Error: Country Code Lookups setting MM_LICENSE_KEY must be set in /etc/csf/csf.conf to continue using the MaxMind databases
Found only this in a similar case:
https://forum.configserver.com/viewtopic.php?t=7743
I think i have to edit the csf.pėgnore,
but how?
6
Information / Re: Empty user list
« on: January 17, 2020, 05:29:58 PM »
I am using CWP Free with 3 different hoster and having the same problem on all 3. One from them was just installed on a fresh system with updated Centos 7 Vanilla.
Other problems:
Verifying Version's spinning wheel (gif) never stop CPU Ressources are not shown, Restarting server services does not work and many buttons on startpage dashboard do not react.
Edit:
- Installing / Unstalling ModSec not possible
Other problems:
Verifying Version's spinning wheel (gif) never stop CPU Ressources are not shown, Restarting server services does not work and many buttons on startpage dashboard do not react.
Edit:
- Installing / Unstalling ModSec not possible
7
CSF Firewall / /etc/csf/csf.error AND /etc/init.d/lfd status doesn't work
« on: July 19, 2019, 12:24:44 PM »
Hello,
i am wondering why /etc/csf/csf.error
does not exist. If i create this file and reastart csf and lfd, the file automatically gets deleted. Can i change somewhere the path to csf.error config?
Other Point is, that /etc/init.d/lfd status does not exist in this directory.
Latest lfd error log:
Jul 19 08:07:10 srv1 lfd[997]: csf (re)start requested - running *csf startup*...
Jul 19 08:07:13 srv1 lfd[997]: csf (re)start completed
Jul 19 08:14:55 srv1 lfd[997]: Main Process: TERM
Jul 19 08:14:55 srv1 lfd[997]: daemon stopped
Jul 19 08:14:55 srv1 lfd[2652]: daemon started on srv1.mymymy.haus - csf v13.04 (generic)
Jul 19 08:14:56 srv1 lfd[2652]: LF_APACHE_ERRPORT: Set to [2]
Jul 19 08:14:56 srv1 lfd[2652]: Restricted log file access (RESTRICT_SYSLOG)
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_SSHD *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_FTPD *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_IMAPD *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_POP3D *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_SSH_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_SU_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_CONSOLE_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_WEBMIN_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: CSF Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: IPv6 Enabled...
Jul 19 08:14:56 srv1 lfd[2652]: LOAD Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Country Code Filters...
Jul 19 08:14:56 srv1 lfd[2652]: Country Code Lookups...
Jul 19 08:14:56 srv1 lfd[2652]: System Integrity Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Exploit Tracking...
Jul 19 08:14:56 srv1 lfd[2667]: CC: Processing GeoLite2 CSV Country/ASN database
Jul 19 08:14:56 srv1 lfd[2652]: Directory Watching...
Jul 19 08:14:56 srv1 lfd[2652]: Temp to Perm Block Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Process Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Account Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/messages...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/secure...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/customlog...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /usr/local/apache/logs/error_log...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/cwp_client_login.log...
Jul 19 08:14:59 srv1 lfd[2667]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [UK]
Jul 19 08:14:59 srv1 lfd[2667]: CC: No entries found for [UK] in /var/lib/csf/Geo/GeoLite2-Country-Blocks-IPv4.csv
Jul 19 08:14:59 srv1 lfd[2667]: CC: Repopulating ipset cc_cn with IP addresses from [CN]
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: loading set new_cn with 7219 entries
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: switching set new_cn to cc_cn
Jul 19 08:14:59 srv1 lfd[2667]: CC: Repopulating ipset cc_in with IP addresses from [IN]
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: loading set new_in with 6208 entries
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: switching set new_in to cc_in
Jul 19 08:14:59 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:14:59 srv1 lfd[2667]: CC: Repopulating ipset cc_ro with IP addresses from [RO]
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: loading set new_ro with 2942 entries
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: switching set new_ro to cc_ro
Jul 19 08:15:00 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:00 srv1 lfd[2667]: CC: Repopulating ipset cc_ru with IP addresses from [RU]
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: loading set new_ru with 9648 entries
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: switching set new_ru to cc_ru
Jul 19 08:15:00 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:00 srv1 lfd[2667]: CC: Repopulating ipset cc_br with IP addresses from
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: loading set new_br with 5387 entries
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: switching set new_br to cc_br
Jul 19 08:15:00 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:00 srv1 lfd[2667]: CC: Repopulating ipset cc_ua with IP addresses from [UA]
Jul 19 08:15:01 srv1 lfd[2667]: IPSET: loading set new_ua with 3577 entries
Jul 19 08:15:01 srv1 lfd[2667]: IPSET: switching set new_ua to cc_ua
Jul 19 08:15:01 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:06 srv1 lfd[2652]: csf (re)start requested - running *csf startup*...
Jul 19 08:15:09 srv1 lfd[2652]: csf (re)start completed
Thanks.
i am wondering why /etc/csf/csf.error
does not exist. If i create this file and reastart csf and lfd, the file automatically gets deleted. Can i change somewhere the path to csf.error config?
Other Point is, that /etc/init.d/lfd status does not exist in this directory.
Latest lfd error log:
Jul 19 08:07:10 srv1 lfd[997]: csf (re)start requested - running *csf startup*...
Jul 19 08:07:13 srv1 lfd[997]: csf (re)start completed
Jul 19 08:14:55 srv1 lfd[997]: Main Process: TERM
Jul 19 08:14:55 srv1 lfd[997]: daemon stopped
Jul 19 08:14:55 srv1 lfd[2652]: daemon started on srv1.mymymy.haus - csf v13.04 (generic)
Jul 19 08:14:56 srv1 lfd[2652]: LF_APACHE_ERRPORT: Set to [2]
Jul 19 08:14:56 srv1 lfd[2652]: Restricted log file access (RESTRICT_SYSLOG)
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_SSHD *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_FTPD *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_IMAPD *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_POP3D *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_SSH_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_SU_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_CONSOLE_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: RESTRICT_SYSLOG: Option LF_WEBMIN_EMAIL_ALERT *Disabled*
Jul 19 08:14:56 srv1 lfd[2652]: CSF Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: IPv6 Enabled...
Jul 19 08:14:56 srv1 lfd[2652]: LOAD Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Country Code Filters...
Jul 19 08:14:56 srv1 lfd[2652]: Country Code Lookups...
Jul 19 08:14:56 srv1 lfd[2652]: System Integrity Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Exploit Tracking...
Jul 19 08:14:56 srv1 lfd[2667]: CC: Processing GeoLite2 CSV Country/ASN database
Jul 19 08:14:56 srv1 lfd[2652]: Directory Watching...
Jul 19 08:14:56 srv1 lfd[2652]: Temp to Perm Block Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Process Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Account Tracking...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/messages...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/secure...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/customlog...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /usr/local/apache/logs/error_log...
Jul 19 08:14:56 srv1 lfd[2652]: Watching /var/log/cwp_client_login.log...
Jul 19 08:14:59 srv1 lfd[2667]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [UK]
Jul 19 08:14:59 srv1 lfd[2667]: CC: No entries found for [UK] in /var/lib/csf/Geo/GeoLite2-Country-Blocks-IPv4.csv
Jul 19 08:14:59 srv1 lfd[2667]: CC: Repopulating ipset cc_cn with IP addresses from [CN]
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: loading set new_cn with 7219 entries
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: switching set new_cn to cc_cn
Jul 19 08:14:59 srv1 lfd[2667]: CC: Repopulating ipset cc_in with IP addresses from [IN]
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: loading set new_in with 6208 entries
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: switching set new_in to cc_in
Jul 19 08:14:59 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:14:59 srv1 lfd[2667]: CC: Repopulating ipset cc_ro with IP addresses from [RO]
Jul 19 08:14:59 srv1 lfd[2667]: IPSET: loading set new_ro with 2942 entries
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: switching set new_ro to cc_ro
Jul 19 08:15:00 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:00 srv1 lfd[2667]: CC: Repopulating ipset cc_ru with IP addresses from [RU]
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: loading set new_ru with 9648 entries
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: switching set new_ru to cc_ru
Jul 19 08:15:00 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:00 srv1 lfd[2667]: CC: Repopulating ipset cc_br with IP addresses from
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: loading set new_br with 5387 entries
Jul 19 08:15:00 srv1 lfd[2667]: IPSET: switching set new_br to cc_br
Jul 19 08:15:00 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:00 srv1 lfd[2667]: CC: Repopulating ipset cc_ua with IP addresses from [UA]
Jul 19 08:15:01 srv1 lfd[2667]: IPSET: loading set new_ua with 3577 entries
Jul 19 08:15:01 srv1 lfd[2667]: IPSET: switching set new_ua to cc_ua
Jul 19 08:15:01 srv1 lfd[2667]: *Error* IPSET: [ipset v6.38: Sets cannot be swapped: the second set does not exist]
Jul 19 08:15:06 srv1 lfd[2652]: csf (re)start requested - running *csf startup*...
Jul 19 08:15:09 srv1 lfd[2652]: csf (re)start completed
Thanks.
8
CSF Firewall / Re: CSF firewall wrong path error_log
« on: July 19, 2019, 12:19:56 PM »
Yes. The old config has this wrong path here too. I did change it now.
Pages: [1]
