Fri, October 30, 2020, 14:27:12
 
Home · Latest · Trends  /  Plain Text
7

CSF block force attacks on Exim

CSF / LFD block force attacks on Exim Centos 
1. Backup /etc/csf/csf.conf

2. Make sure this exist in /etc/csf/csf.conf


LF_DAEMON = "1"



LF_CSF = "1"



SMTP_BLOCK = "1"



SMTPAUTH_LOG = "/var/log/exim/reject.log"
SMTPRELAY_LOG = "/var/log/exim_mainlog"
POP3D_LOG = "/var/log/maillog"
IMAPD_LOG = "/var/log/maillog"
SCRIPT_LOG = "/var/log/exim_mainlog"


If reject.log not exist replace with log file with "Incorrect authentication data" messages

3. Restart LFD


csf --lfd restart


4. Restart csf


csf -r



Output in /etc/csf/csf.deny


212.129.11.11 # lfd: (smtpauth) Failed SMTP AUTH login from 212.129.11.11<br />(FR/France/212-129-63-54.example.com): 5 in the last 3600 secs - Mon Jun 26 08:10:47 2017
rated 7 times [  7] [ 0]  / comments: 0 / hits: 2727  / 3 years ago, mon, jun 26, 2017, 09:21:15
More From » Plain Text
 

Comments

There are no comments for this Snippet yet
Username
 
Your Comment
 
Share
Snippets
CentOS - SpamAssassin and Exim
Install SpamAssassin and Exim on a CentOS
4 years ago, thu, sep 8, 2016
SSH CSF - ConfigServer Commands
Common SSH commands for CSF [ConfigServer]
4 years ago, wed, dec 28, 2016
Simple CSS Javascript Share Buttons
Simple CSS javascript social share buttons
4 years ago, tue, jan 3, 2017
Basic ClamAV SSH Command Line Commands
Basic ClamAV antivirus engine SSH command line commands
4 years ago, thu, jan 19, 2017
Leverage browser caching htaccess
How to leverage browser caching with htaccess
3 years ago, sat, jun 10, 2017
Exim mail queue commands
Basic SSH Exim mail queue commands
3 years ago, sat, sep 2, 2017
Warning: purging the environment. Suggested action: use keep_environment issue
3 years ago, tue, feb 27, 2018
SSH IPTables command to block IP Address
3 years ago, tue, feb 27, 2018
Exim - How to block certain domain
3 years ago, wed, feb 28, 2018
Posted
paki

paki

Member since Sep 7, 2016
Total Points: 127
Total Code Snippets: 12
Total Comments: 0
Location: n/a
Follow
Following
User not following anyone yet.
CopyRight devcodepro · Privacy · RSS