fuzzylogic
- Total activity 235
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 81
Comments
Recent activity by fuzzylogic-
cPanelMichael is correct the rule I posted relies on other OWASP CRS rules to do the blocking. It was wrong of me to assume you would have this in your environment. Here is another rule example ba...
-
Your Modsec rule would not work, it has no id (which is mandatory). Below is a copy of OWASP CRS rule 913102 (a Paranoia Level 2 rule), edited so as to block all the bots you listed in your example...
-
What makes the client think that it was csf that blocked them. What errors did they see or what changes in behavior from your server did they see. Could they not access website frontend, cPanel, em...
-
Almost. (and yes parentheses not brackets) (regex1)regex2(?:regex3)regex4(regex5) The value of capture group 1 = regex1 It can be output in the scripting language using the regex using the $1 syn...
-
You are correct that extra backslash was a copy paste error on my part. Good Spotting. They can be hard to see. As I said I tested the regex but not in place on a cPanel server. Look to the regex ...
-
I'm sure you have checked the source code of... /home/domain/public_html/domain.com/administrator/logs/error.php and it is in fact a log file, not a dynamic php file. If it's source is in fact mu...
-
I.m OK wit you adding it to Serge's list of CSF custom regex. Seems appropriate for that thread.
-
Your custom regex appears to be in the right place and identical to my working version.
-
You have... CUSTOM1_LOG = "usr/local/cpanel/logs/error_log" in /etc/csf/csf.conf I posted... CUSTOM1_LOG = "/usr/local/cpanel/logs/error_log" I forgot to add that after editing /etc/csf/csf.conf c...
-
Actual version for Keat because his errors have no date/time stamp or hostname. Sample log line... Dropping connection from xxx.xxx.xxx.xxx because of tcp_wrappers In /etc/csf/csf.conf at about li...