aeroweb
- Total activity 21
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 5
Comments
Recent activity by aeroweb-
After further review of both the mod-security logs and Apache logs it appears that the Googlebot is actually triggering rule: 942100 "sql injection attack detected via libinjection" The Google bot...
-
I do not have a dnf.rpm.log file. I checked the yum.log files and its not in there. I also checked /etc/apache2/conf.d/modsec_vendor_configs/OWASP3 but it appears that the rule files here get up...
-
Thanks for the info, much appreciated. The strange thing is, we've used modsecurity with the OWASP rules setup on our servers for years now. And yes, we would occasionally get false positives a...
-
Thanks for providing that thread. So if I understand correctly only version 102 of WHM is being updated and the Stable version (100.0.12), and LTS version (94.0.24) are not being updated thus CPH...
-
We are very familiar with brute force attacks and various distributed attacks, that was not my question. We have been using a combination of CSF and other features for years which has helped mitig...
-
It took an hour or more on each server but it finally completed. Looks like it is just a large DB update that takes a while to finish. ClamAV update process started at Wed Mar 6 20:30:38 2019 W...
-
Just wanted to add that the same issue is happening on all our servers that just started an update. ClamAV update process started at Wed Mar 6 20:32:22 2019 WARNING: Your ClamAV installation is ...
-
We tried both the "Only-verify-recipient" and the "Trusted SMTP IP addresses" and neither worked. Is there a way we can set a rule (even manually in exim) to allow a single IP to bypass the RFC-co...
-
Hello, We are having a similar issue. We want to have the "Require RFC-compliant HELO" option enabled however there is one IP address that we want to allow to connect despite the fact they have an...