Wed, April 14, 2021
 
https://devcodepro.comdevcodepro
Home · Latest · Trends  /  Plain Text
7

CSF block force attacks on Exim

CSF / LFD block force attacks on Exim Centos
1. Backup /etc/csf/csf.conf 2. Make sure this exist in /etc/csf/csf.conf
LF_DAEMON = "1"
LF_CSF = "1"
SMTP_BLOCK = "1"
SMTPAUTH_LOG = "/var/log/exim/reject.log" SMTPRELAY_LOG = "/var/log/exim_mainlog" POP3D_LOG = "/var/log/maillog" IMAPD_LOG = "/var/log/maillog" SCRIPT_LOG = "/var/log/exim_mainlog"
If reject.log not exist replace with log file with "Incorrect authentication data" messages 3. Restart LFD
csf --lfd restart
4. Restart csf
csf -r
Output in /etc/csf/csf.deny
212.129.11.11 # lfd: (smtpauth) Failed SMTP AUTH login from 212.129.11.11<br />(FR/France/212-129-63-54.example.com): 5 in the last 3600 secs - Mon Jun 26 08:10:47 2017
rated 7 times (7) (0)
comments: 0 / hits: 3078  / 4 years ago, mon, jun 26, 17, 09:21:15
More From » Plain Text
 

Comments

There are no comments for this Snippet yet
Only authorized users can post. Please sign in first, or register a free account
 
Share
Posted
paki
Member since Sep 7, 2016
Total Code Snippets: 12
Total Comments: 0
Location: n/a
paki snippets
5 years ago, thu, sep 8, 16, 3:04:22
comments: 0 / hits: 4881
4 years ago, wed, dec 28, 16, 4:11:52
comments: 2 / hits: 3490
4 years ago, tue, jan 3, 17, 3:37:12
comments: 0 / hits: 2191
4 years ago, thu, jan 19, 17, 5:40:32
comments: 0 / hits: 4209
4 years ago, sat, jun 10, 17, 3:16:28
comments: 0 / hits: 2141
4 years ago, sat, sep 2, 17, 4:26:09
comments: 1 / hits: 2243
3 years ago, tue, feb 27, 18, 9:25:15
comments: 0 / hits: 1519
3 years ago, tue, feb 27, 18, 9:41:12
comments: 0 / hits: 1619
3 years ago, wed, feb 28, 18, 11:02:34
comments: 0 / hits: 1664