[HOWTO] Install CSF + Use it's GUI in VestaCP

[SS88]

Now i just get this:
NO LANGUAGE DEFINED

when trying to log in at the server web panel at port 8083

Not firewall issue, please see here: viewtopic.php?f=10&t=10174#p36759

[leisegang]

i got in with changing domain name iin url in firefox. but thats weird.

Anything i should do in CSF to have it optimal?

[SS88]

i got in with changing domain name iin url in firefox. but thats weird.

Anything i should do in CSF to have it optimal?

Settings depend per user, just make sure Vesta's port is in the settings.

[hafeezksa]

I am receiving a lot of messages "Suspicious process running under user... " in my email , Which option should be disable in conf. in order to ignore it?

[SS88]

I am receiving a lot of messages "Suspicious process running under user... " in my email , Which option should be disable in conf. in order to ignore it?

PT_LIMIT = 0

[hafeezksa]

I am receiving a lot of messages "Suspicious process running under user... " in my email , Which option should be disable in conf. in order to ignore it?

PT_LIMIT = 0

ya, I already do it "0" but still receiving alerts in email.

[SS88]

I am receiving a lot of messages "Suspicious process running under user... " in my email , Which option should be disable in conf. in order to ignore it?

PT_LIMIT = 0

ya, I already do it "0" but still receiving alerts in email.

Did this work for you? I did the same but it was still sending me e-mails from like 30 minutes ago so essentially the email server got them 'backed up' .

[hafeezksa]

PT_LIMIT = 0

ya, I already do it "0" but still receiving alerts in email.

Did this work for you? I did the same but it was still sending me e-mails from like 30 minutes ago so essentially the email server got them 'backed up' .

Now its ok after adding process in /etc/csf/csf.pignore all of my emails was from imap-login process
so I add "exe: /usr/libexec/dovecot/imap-login" in csf.pignore file and restart csf-r

[Phantro]

...

SS88, you are the best!

I hope the gods bless you!

---------------------------

The settings below, will make your Ubuntu 14.04 to block for 1 day (86400 seconds) IPs of that try more then 5 times wrong password.

Go in config settings, and change:

Code: Select all

RESTRICT_UI = from 1 to 0

Save it, and then you will be able to change this other settings:

Code: Select all

SMTPAUTH_LOG  = /var/log/exim4/mainlog
POP3D_LOG = /var/log/dovecot.log
IMAPD_LOG = /var/log/dovecot.log

Code: Select all

LF_POP3D = 5
LF_POP3D_PERM = 86400

LF_IMAPD = 5
LF_POP3D_PERM = 86400

These settings maybe can work with other linux distros, you just should find the correct log files.
I don't know what is the correct file for FTP because I'm not using FTP server, but if you want to block brute force over FTP, you should find the log file and configure in the same way of I posted above.

Other good settings, is to enable CSF lfd Blocklists. In the main page of CSF, find this button, and comment out lines with block lists (remove the #). After do it, go in configurations and use Safe Chain update = 1 to fast load these lists. This will block MILLIONS of spammers and hack IPs.

Thank you and sorry about my bad english, it's not my main language and I never use google translator! I just type it =P

[moucho]

Since CSF versión 9.0 the frontend ui for VestaCP isn't working anymore.

According to their changelog, one of the features is:
"Convert csfui.pl, csfuir.pl and cseui.pl to perl modules and modify the calling UI specific scripts"

The template for VestaCP calls csfui.pl , but this perl script is no loger used, and moving it from his src/old folder to /usr/local/csf/bin doesn't work either.

Have anyone been able to make it work with this new feature, and if not do anyone have an older versión of csf (8.26 should be great) that can be shared here so we could continue to use it on VestaCP?