Security & Firewall (csf)

[Ivan Rojas]

Hi,

I'm a user of WHM/cPanel for years but I starting to love OLS, however, i have just been hacked in less than a week,

http://prntscr.com/l6vu6h

anyway, it happens, however, in whm I used to use CSF and I was reading https://download.configserver.com/csf/readme.txt and i see there is compatibility with
DirectAdmin and Webmin too but not sure if it has another interface or something else to control security, does somebody have experience with this?
I have also read about fail2ban , but i have never used, one more thing, im not a savvy with Linux, i know but not much

Thanks

 

[Ivan Rojas]

i have found this:

12. Installation on a Generic Linux Server
##########################################

csf+lfd can be configured to run on a generic Linux server. There are some
changes to the features available:

1. The default port range is for a typical non-cPanel web server and may need
altering to suit the servers environment

2. The Process Tracking ignore file may need expanding in /etc/csf/csf.pignore
to suit the server environment

3. A standard Webmin Module to configure csf is included - see the install.txt
for more information

The codebase is the same for a all installations, the csf.conf file simply has
the cPanel specific options removed and the GENERIC option added

 

[Pong]

on OLS, there is OLS built-in security "Per Client Throttling" to block IPs over the connection from antiddos attack. https://www.litespeedtech.com/support/wiki/doku.php/litespeed_wiki:config:mitigating-ddos-attacks

or you can use some mod_security rules.