Damlhen
- Total activity 6
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 1
Activity overview
Latest activity by Damlhen-
Damlhen commented,
Thank you for the response. I haven opened a ticket (ID: 12555373) The rule does in fact make use of SecDataDir. With this update, I have noticed that every user has its own file (username-ip.dir, ...
-
Damlhen commented,
Following is my custom rule to block bruteforce on wp-login.php page: SecAction phase:1,nolog,pass,initcol:ip=%{REMOTE_ADDR},initcol:user=%{REMOTE_ADDR},id:6 # Setup brute force detection. # Rea...
-
Damlhen created a post,
ModSecurity not working?
I have been using a custom rule to block Wordpress wp-login.php bruteforce attacks, but recently it has stopped working and the server load is going through the roof. As per my rules hit list page ...
-
Damlhen created a post,
Increase in perl script attacks
Recently I have noticed a lot of perpetually running perl scripts on the server. It uses 99% cpu and drastically increases the load on the server. The script is run from a /var/tmp/ directory and ...
-
Damlhen created a post,
Connecting to Server via FTP clarification
I have a cpanel server that has multiple IPs. Accounts are assigned different IPs from the pool. Eg: maindomain.com 1.1.1.1 anotherdomain.com 1.1.1.2 nextdomain 1.1.1.3 Before we could use main...