Tweet
sshd detection?
-
-
We have convert 2 servers from CentOS 6 with cPanel, Jailshell, CSF/LFD, ModSec and some extra security tools to CloudLinux.
But now we see that LFD doesn show us sshd failed login attemps as it did before. And it doesn block any failed login attemps as it did before.
Did we made an error in configuring CSF/CloudLinux?
Or don this combination work?
(Just in case: We need to have sshd on 22 for some of our clients.) -
Works fine for us
You may need to just check the config of your CSF setup.
Look at the RESTRICT_SYSLOG setting which causes it not to use the individual app limit blocks below.
We set ours on 2 for some servers and it works great.Hostking | Since 2013 | Web Hosting | WordPress Web HostingComment
-
We also have the RESTRICT_SYSLOG on 2.
It works for ftp and imap/pop3 but the sshd failed login will not be detected.
We know there they try to login, because one ip below and up of those cloudserver servers they are detectedComment
Comment