yum install perl-libwww-perl
You need to install the LWP perl module (libwww-perl) and then install csf
ARUN Posted in FIREWALL, INSTALLATION,
31
December
2011
0
How to install and configure maldet scan
ARUN Posted in ATTACK, FIREWALL, INSTALLATION, VIRUS SCAN,
22
November
2011
wget http://www.rfxn.com/downloads/maldetect-current.tar.gz
tar -xzvf maldetect-current.tar.gz
cd maldetect-*
sh install.sh
================================
[ maldet --scan-all /home/*/public_html/ ---> To scan ]
[ maldet --report 122111-1532.827 -----> To see the report ]
[ maldet -q 122111-1532.8272 ----> To remove the Infected files ]
maldet(7488): {scan} quarantine is disabled! set quar_hits=1 in conf.maldet or to quarantine results run: maldet -q 125211-1258.7488
INFECTED FILES LIST in
cd /usr/local/maldetect/sess/
There is a file that start with session.
How to enable ping in apf
ARUN Posted in FIREWALL,
19
September
2011
Insert the following in apf.conf
IG_ICMP_TYPES=”8″
A message with the following attributes was not delivered because it contains an object which cannot be checked by antivirus. Relaying such messages is blocked by administrator.
ARUN Posted in FIREWALL, PLESK BACKEND, PLESK FRONTEND,
01
September
2011
Getting the below bounce message while trying to send emails to plesk server with drweb enabled.
================
A message with the following attributes was not delivered because it contains an object which cannot be checked by antivirus.
Relaying such messages is blocked by administrator.
================
Or
==================================
Getting the below message while trying to stop drweb from within plesk >> service management
Unable to make action: Unable to manage service by dr mgr: Empty error message from utility. (‘–stop’, ‘drweb’)
====================================
Solution :
/etc/init.d/drwebd restart
If that doesnot work kill all drweb process.
pgrep drwebd | xargs kill -9
Then check emails and if that work try enabling dr web again using
/etc/init.d/drwebd restart
Checking for perl modulesfailed You need to install the LWP perl module (libwww-perl) and then install csf
ARUN Posted in FIREWALL, INSTALLATION,
09
August
2011
Getting the below error while trying to install csf
Checking for perl modulesfailed You need to install the LWP perl module (libwww-perl) and then install csf
Solution :
yum install perl-libwww-perl
just-ping when try to access csf installed server ping fails
ARUN Posted in FIREWALL,
07
May
2011
Open csf.conf
vi /etc/csf/csf.conf
Change ICMP_IN_RATE to 30/s
Restart csf
csf -r
And this should be fixed.
Traceroute fails when csf is enabled
ARUN Posted in FIREWALL,
30
March
2011
When csf is enabled traceroute wont complete.
Tried reinstaling csf, but that too didnot fix the case.
Solution : vi /etc/csf/csf.conf
Search for UDP_IN and add 33434:33523
Restart csf csf -r and try
User blocked for pop3d access
ARUN Posted in FIREWALL,
12
March
2011
Time: Thu Feb 16 08:29:54 2009 +0200
Account: Username
Application: pop3d
IP: xxx
Logins: 61
Interval: 5263
Allowable: 60 logins per hour in 3600 second interval
Flushed in: 2 seconds
Solution :
In csf.conf increase the limit for LT_POP3D
LFD warning email
ARUN Posted in FIREWALL,
08
March
2011
Time: Tue Mar 28 13:01:17 2010 +0000
PID: 86594
Account: nobody
Uptime: 789985 seconds
Executable:
/usr/bin/memcached
Command Line (often faked in exploits):
memcached -d -p 11211 -u nobody -c 1024 -m 64
Block country through csf
ARUN Posted in FIREWALL,
02
February
2011
In csf.conf
CC_DENY = “SA”
You can get country code from the link below :
