Search results

Thank you, much appreciated... May I politely please suggest that the basic and obvious filters be added to the BFM GUI section? For example, SSH, Postfix, Dovecot, FTP (or sFTP) bruteforcing, which just happen automatically as soon as you initialize your server from all sorts of IPs all over...

I enabled the 'medium' setting in the profile but I don't see BFM capturing any of the portscanning IPs at all... I wish there were more options like there are in fail2ban to configure which filters are enabled and to customize them. I can live with it for now though. Also, the correct way to...

Thanks, I didn't see that option... I applied medium and I will remove 'dmesg -n 1' because it hasn't been logging anything since I enabled it and I'll report back.

The first thing you want to do after installation is change the SSH port right? So go into /etc/sshd/sshd_config and uncomment the port line. Next, reflect this change in CSF... Wait, DirectAdmin will do this automatically for you. This list is replaced, if present, by "Port" definitions in...

This is a little frustrating, but I have a fresh installation -- and BFM is not automatically blocking some nuisance IP Addresses that keep trying to bruteforce SSH. Also, this command should be integrated into the UI so stop the spamming messages in the VNC console which makes it unusable...

I added that setting to "/usr/local/directadmin/conf/directadmin.conf" because it was not present. Thanks, much appreciated :)

I have looked at CSF.CONF and could not find a setting to disable this. Can someone please direct me to where it can be disabled? Thanks

Thanks. I changed it in both files in /usr/local/directadmin/data/users/admin and issued systemctl restart directadmin. I could not find the setting in the web interface though, and my hostname is already set properly.

Hi, I sometimes get system load average e-mails, but they're sent to the wrong address. Here's an example: "[email protected]" where "0-0-0-0" is my real address. I get an email from mailer daemon telling me the email-bounced because there is no such address. LFD e-mails arrive...

Hello, I have my server running pretty well, except for one thing: Before switching over my email hosting, I used to receive a newsletter from a company. With DirectAdmin, I do not receive this. I do not have spam filtering set up, so I was looking at examining mail logs. In "Email Manager"...

Ah yes, indeed it is PT_USERTIME and not PTC_USERTIME... Ok, yours is at 3000 you say by default? Thanks for that. Perhaps it would be prudent for the developers to take a note of that. The default of "1800" for Ubuntu seems insufficient. Thanks again ...oh, and not a single email since...

I've gone ahead and made the following change to /etc/csf/csf.conf: PTC_USERTIME = "1800" to PTC_USERTIME = "0" I then issued "sudo csf-r" and "sudo service lfd restart". Since all the emails had to do with this setting in particular, and they were finishing 1 minute ahead of the threshold...

Oh, yea, that's fine, it's just a mask. The pertinent line in my /etc/hosts reads as follows: x.x.x.x ubuntu.com ubuntu Yea, I removed it since it was no longer doing anything after changing my FQDN. I also just deactivated my file-type swapfile... Upon rebooting after removing the entry in...

Ah, then I should elaborate on my system specifications: OS: Ubuntu 22.04.1 LTS (GNU/Linux 5.15.0-60-generic x86_64) admin@ubuntu:~/Download$ ./vpsb-lx64-250 Version 2.5.0, (c) 2018+ jsg (->lowendtalk.com) Machine: amd64, Arch.: x86_64, Model: Intel Core Processor (Haswell, no TSX, IBRS) OS...

Ok, two interesting things to note: 1) The mail queue administration is now consistently empty after changing the server over to my FQDN, however, the emails still come through (the last one complained about systemd.networkd) 2) My alias seems to be ignored now, because although I have it set...

Ok, thanks, I'll fix that and report back.

No sir, not me. I wonder if it's related to my VPS... But it shouldn't be. It's quad core, 4GB ram, fast storage... Should be able to handle the workload. I have many emails this morning lol from CSF as before... I wonder what could be causing this.

Ok, here are the results which I've been receiving in my email: lfd on server-<snip>.da.direct: Excessive resource usage: admin (22269 (Parent PID:22268)) Time: Tue Feb 14 02:06:10 2023 +0000 Account: admin Resource: Process Time Exceeded: 9066 > 1800 (seconds) Executable...

Thanks @Richard G and @BillyS I set up the email alias and I will report back. The only thing I have aside from this fresh install is a Wordpress installation in a subdirectory (manual install of Wordpress).

I'm getting these messages in the Mail Queue Administration every hour or so: 2023-02-13 15:59:29 Received from root@<snip> U=root P=local S=817 T="lfd on <snip>: Excessive resource usage: systemd-network (680 (Parent PID:680" 2023-02-13 15:59:29 <snip> R=localuser T=local_delivery defer...