Page 3 of 3 FirstFirst 123
Results 41 to 49 of 49

Thread: CSF Firewall with Login Failure Detection + Brute Force Monitor

  1. #41
    Join Date
    Dec 2004
    Location
    Canada
    Posts
    68
    PS: I also had to change my ftpd log directive in csf to point to /var/log/messages instead of secure because I have pureftpd. Any way csf can autodetect that in the future?
    Sheldon King
    cPanel to DirectAdmin Convert
    And im loving it

  2. #42
    Join Date
    Aug 2006
    Location
    LT, EU
    Posts
    7,178
    On new installations of CSF it should default to /var/log/messages on DirectAdmin servers.
    Martynas Bendorius
    MB Martynas IT. Professional server management company. Official DirectAdmin, CloudLinux, LiteSpeed and Comodo partners.

  3. #43
    Join Date
    Dec 2004
    Location
    Canada
    Posts
    68
    What about this though?

    ------

    Hello. It doesnt seem that csf/lfd is blocking the IP's that DA detects for me. I have it enabled in DA and CSF however when I check the IP's are never blocked.

    See below conf
    #[*]Enable login failure detection of DirectAdmin connections
    # This option also detects login failures on DA for Roundcube, SquirrelMail and
    # phpMyAdmin if installed and logging enabled via CustomBuild v2+
    #
    # If you do not want to scan for one or more of DIRECTADMIN_LOG_*, simply set
    # the respective option to ""
    LF_DIRECTADMIN = "5"
    LF_DIRECTADMIN_PERM = "1"

    Also note:
    /usr/local/directadmin/scripts/custom/brute_force_notice_ip.sh

    Doesnt exist. Should it?
    Sheldon King
    cPanel to DirectAdmin Convert
    And im loving it

  4. #44
    Join Date
    Dec 2004
    Location
    Canada
    Posts
    68
    I used the scripts provided and it works. Moderator please sticky this post.
    Sheldon King
    cPanel to DirectAdmin Convert
    And im loving it

  5. #45
    Join Date
    Jul 2008
    Location
    Maastricht
    Posts
    3,506
    Which scripts provided. Do you mean scripst like brute_force_notice-ip.sh?
    Greetings, Richard.

  6. #46
    Join Date
    Dec 2004
    Location
    Canada
    Posts
    68
    Yes.

    Make sure you follow the instructions exactly. Its super simple though and they only work if your using CSF!
    Sheldon King
    cPanel to DirectAdmin Convert
    And im loving it

  7. #47
    Join Date
    Jul 2008
    Location
    Maastricht
    Posts
    3,506
    I know, I have them running for years and even made some adjustments zo they make temporary blocks automatically.

    I just wanted to know if you did not used another solution which might be interesting.
    Greetings, Richard.

  8. #48
    Join Date
    Jun 2016
    Posts
    40
    Hi Guys, I just noticed that CSF doesn't block brute-force on phpmyadmin. I searched and found this topic. Can you tell me if this is still the procedure to get this working? Or is there another / better way?

  9. #49
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    12,385
    I believe you've got the same question here: https://forum.directadmin.com/showthread.php?t=56981 and it was already replied.

    p.s. please avoid double-posting

Page 3 of 3 FirstFirst 123

Similar Threads

  1. Replies: 61
    Last Post: 10-18-2018, 10:46 AM
  2. Brute Force Monitor * Your connection has timed out
    By lid3r in forum Admin-Level Difficulties
    Replies: 2
    Last Post: 12-05-2011, 11:22 AM
  3. Problems with Brute Force Monitor
    By pinotje in forum CentOS
    Replies: 1
    Last Post: 10-30-2011, 09:29 AM
  4. How can i stop brute force monitor?
    By uberguru in forum Admin-Level Difficulties
    Replies: 2
    Last Post: 08-17-2011, 10:15 AM
  5. brute force monitor error
    By wdieke in forum Admin-Level Difficulties
    Replies: 10
    Last Post: 07-05-2011, 12:29 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •