Domenico
23/09/06, 16:49
Ik denk dat dit voor vele cPanel server beheerders een nuttige add-on is dus vandaar deze post voor als je het nog niet zou kennen. Check it out!
http://www.configserver.com/cp/csf.html
This is an exclusive! add-on application for cPanel servers running on RH or derivative Linux. That is: RH9, RHE3/4, CentOS3/4, Fedora Core 1/2/3/4/5.
This suite of scripts provides:
Straight-forward SPI iptables firewall script
Daemon process that checks for login authentication failures for:
courier imap and pop3
ssh
non-ssl cpanel / whm / webmail (ssl cpanel/whm login tracking support available in EDGE release)
pure-pftd
password protected web pages (htpasswd)
mod_security failures
POP3/IMAP login tracking to enforce logins per hour
SSH login notification
SU login notification
Excessive connection blocking
WHM configuration interface
WHM iptables report log
Easy upgrade between versions from within WHM
Pre-configured to work on a cPanel server with all the standard cPanel ports open
Auto-configures the SSH port if it's non-standard on installation
Block traffic on unused server IP addresses - helps reduce the risk to your server
Alert when end-user scripts sending excessive emails per hour - for identifying spamming scripts
Suspicious process reporting - reports potential exploits running on the server
Excessive cPanel user processes reporting
Suspicious file reporting - reports potential exploit files in /tmp and similar directories
Directory and file watching - reports if a watched directory or a file changes
Block traffic on the DShield Block List (http://www.dshield.org/block_list_info.php) and the Spamhaus DROP List (http://www.spamhaus.org/drop/index.lasso)
Pre-configured settings for Low, Medium or High firewall security
Works with multiple ethernet devices
Server Security Check - Performs a basic security and settings check on the server
http://www.configserver.com/cp/csf.html
This is an exclusive! add-on application for cPanel servers running on RH or derivative Linux. That is: RH9, RHE3/4, CentOS3/4, Fedora Core 1/2/3/4/5.
This suite of scripts provides:
Straight-forward SPI iptables firewall script
Daemon process that checks for login authentication failures for:
courier imap and pop3
ssh
non-ssl cpanel / whm / webmail (ssl cpanel/whm login tracking support available in EDGE release)
pure-pftd
password protected web pages (htpasswd)
mod_security failures
POP3/IMAP login tracking to enforce logins per hour
SSH login notification
SU login notification
Excessive connection blocking
WHM configuration interface
WHM iptables report log
Easy upgrade between versions from within WHM
Pre-configured to work on a cPanel server with all the standard cPanel ports open
Auto-configures the SSH port if it's non-standard on installation
Block traffic on unused server IP addresses - helps reduce the risk to your server
Alert when end-user scripts sending excessive emails per hour - for identifying spamming scripts
Suspicious process reporting - reports potential exploits running on the server
Excessive cPanel user processes reporting
Suspicious file reporting - reports potential exploit files in /tmp and similar directories
Directory and file watching - reports if a watched directory or a file changes
Block traffic on the DShield Block List (http://www.dshield.org/block_list_info.php) and the Spamhaus DROP List (http://www.spamhaus.org/drop/index.lasso)
Pre-configured settings for Low, Medium or High firewall security
Works with multiple ethernet devices
Server Security Check - Performs a basic security and settings check on the server