Allowing Legit Traffic Permanently (CSF Iptables)

Oct 29, 2007

My server runs on CSF.

Very often the firewall automatically ban some of my customers IP who has fix IP to access to their webmail and website, because they have over 100 staffs, maybe that is why the IP was banned automatically for having too many connections to the server.

Everytime I unban the IP, it keeps being banned again. I have to stop / restart iptables to flush it.

How can I allow the IP permanently?

View 1 Replies


Jan 14, 2008 have their own hosting reviews, does anyone have any experience or opinions with reards to the reliability or integrity of these reviews?

Im not one to take such things at face value.

View 4 Replies View Related

Is Hyperspin Rankings Legit

Jul 26, 2008


is this a trustworthy and accurate resource?

View 12 Replies View Related

APF Blocking Legit Users

Aug 21, 2007

This is just a notice: one of the staff of a large site I run was no longer able to log into the site. As it turns out his IP was being blocked by APF.

The reason for his IP being blocked was that it ended in 255 (x.x.x.255). Any such addresses are blocked by the PKT_SANITY_STUFFED option, which is turned on by default in recent versions of APF. When restarting APF this option shows up as {pkt_sanity} deny all to/from and can be seen under "OUT_SANITY" when doing "apf --list".

As you notice the problem is that some ISPs are are assigning supposedly "bad" IPs ending in 255 to users. And I'm not the only one hitting this problem either: [url]

If you are also using (a recent version of) APF, you might want to turn this option OFF.

In the meanwhile, if anyone is so enlighted... why was this option in APF in the first place? What so bad about IPs ending on 255? The APF docs say they're bad broadcast addresses, so why are ISP assigning them anyway? Who is at fault: APF or ISPs?

View 3 Replies View Related

Legit Backup Script

Jan 10, 2007

I got this from 1and1 and have no confidence in them. I want to be sure my site is backed up (I will be using bq and whoever the new host is to back it up also) I have done these commands and it "backs up" and then I FTP the backup to my computer but I want to be sure there is actually information in that backup. Does this sound legit?

Open Putty
at command, type

mysqldump --opt -Q -h localhost -databaseusername -p databasename >sitename.backup.sql
hit enter
it goes to next line and is done
then FTP to my computer and I have a backup.

So first, does it sound legit? Second, what do I DO with it should my site go down. Do I just FTP it back to the server?

View 9 Replies View Related

Lfd Warning: Hack Attempt Or Legit

May 18, 2009


Mon May 18 15:17:08 2009 lfd: *Suspicious File* /tmp/ [someuser:someuser
] - Suspicious directory
The 'someuser' is a legitimate user on the server, an auto body website setup last October.

The content of the directory:


root@server [/tmp/]# ls -lh
total 3.0K
drwx------ 2 someuser someuser 1.0K May 16 17:54 ./
drwx------ 3 someuser someuser 1.0K May 16 17:54 ../
-rw-r--r-- 1 someuser someuser 361 May 16 17:54

File content:

$CPAN::Config->{'cpan_home'} = "/tmp/";
$CPAN::Config->{'build_dir'} = "/tmp/";
$CPAN::Config->{'histfile'} = "/tmp/";
$CPAN::Config->{'keep_source_where'} = "/tmp/";

root@server [/tmp/]# ls -lh
total 3.0K
drwx------ 2 someuser someuser 1.0K May 16 17:54 ./
drwx------ 3 someuser someuser 1.0K May 16 17:54 ../
-rw-r--r-- 1 someuser someuser 735 May 16 17:54 modules.versions

View 0 Replies View Related

HostJury Deleted Legit Reviews

Dec 15, 2008

I wanted to post about a site I'm very concerned and frustrated with, HostJury.

It's simple. The other day, one of our web hosting customers posted our HostJury URL in our customer forums. Since then, a few of our customers saw followed the link and decided to submit reviews about us, which was very pleasing.

Friday night, I saw we had our first 4 reviews. Suddenly yesterday (Saturday) afternoon I checked on the page, and saw all of them had been deleted.

But I looked up the reviewers. They were all posted by legit customers of ours which I was able to find in our customer database, so the reviews are definitely legit.

I am especially frustrated as those 4 had rated us very high, so these are important reviews that have been removed by HostJury.

I don't understand what's going on here...

o Legit reviews
o We didn't ask them to review us, they did it on their own
o We didn't bribe our reviewers
o We didn't reward our reviewers

So what's the problem, HostJury? These kind of instances are interfering with honesty in the hosting industry.

View 10 Replies View Related

Mod_evasive Bans Some Legit Apps

Dec 10, 2007

mod_evasive bans some of the legit users (galleries , typo3 etc.) with following settings:

<IfModule mod_dosevasive20.c>
DOSHashTableSize 3097
DOSPageCount 10
DOSSiteCount 150
DOSPageInterval 1
DOSSiteInterval 3
DOSBlockingPeriod 10

Somebody have an idea for some less restrictive but still usefull rules?

View 10 Replies View Related

Permanently Mount

Apr 7, 2007

I'm running centos 4.4 and i just installed another HD... seems like everytime I reboot the server, my mount is gone... This is what I have in my fstab:

mount /dev/sdb1 /drive2 defaults 1 3

View 3 Replies View Related

Correct 301 Moved Permanently Code

May 6, 2009

I am trying to push my server to return Moved Permanently code and redirect these URLs to the main URL, but cant find the right code.

There are a number of codes available on the net and all supposed to do that, but which one is the eight one?

Options +FollowSymlinks
RewriteEngine on
rewritecond %{http_host} ^ [nc]
rewritecond %{http_host} ^ [nc]
rewritecond %{http_host} ^ [nc]
rewritecond %{http_host} ^ [nc]
rewriterule ^(.*)$$1 [r=301,nc]

Options +FollowSymLinks
RewriteEngine on
RewriteCond %{HTTP_HOST} ^
RewriteCond %{HTTP_HOST} ^
RewriteCond %{HTTP_HOST} ^
RewriteCond %{HTTP_HOST} ^
RewriteRule ^(.*)$$1 [R=permanent,L]

Options +FollowSymLinks
RewriteEngine On
RewriteCond %{HTTP_HOST} ^$ [NC]
RewriteCond %{HTTP_HOST} ^$ [NC]
RewriteCond %{HTTP_HOST} ^$ [NC]
RewriteCond %{HTTP_HOST} ^$ [NC]
RewriteRule ^(.*)$$1 [R=301,L]

View 14 Replies View Related

How To Use Ddos Deflate To Block IP Permanently

May 26, 2008

I use deflate to prevent ddos attack.

But after I start deflate, I still keep seeing a lot of connection from certain IP.

netstat -ntu | awk '{print $5}' | cut -d: -f1 | sort | uniq -c | sort -n

I want to block those IPs permanently.

How can I do that.

View 7 Replies View Related

Turn Off Web Server (Apache) Permanently

Mar 30, 2015

I am using nginx exclusively for my websites/php stuff and I do not need apache anymore. I want to switch off Web Server (Apache) service permanently (see screenshot 1). But somehow or something turns it always back on. I am getting a lot of apache memory warnings lately. I just want to turn it off.

View 4 Replies View Related

Apache :: Seemingly Legit Requests Generating 400 Bad Request Errors

Feb 8, 2015

So I've got a problem where a small percentage of incoming requests are resulting in "400 bad request" errors and I could really use some input. At first I thought they were just caused by malicious spiders, scrapers, etc. but they seem to be legitimate requests.

I'm running Apache 2.2.15 and mod_perl2.

The first thing I did was turn on mod_logio and interestingly enough, for every request where this happens the request headers are between 8000-9000 bytes, whereas with most requests it's under 1000. Hmm.

There are a lot of cookies being set, and it's happening across all browsers and operating systems, so I assumed it had to be related to bad or "corrupted" cookies somehow - but it's not.

I added "%{Cookie}i" to my LogFormat directive hoping that would provide some clues, but as it turns out half the time the 400 error is returned the client doesn't even have a cookie. Darn.

Next I fired up mod_log_forensic hoping to be able to see ALL the request headers, but as luck would have it nothing is logged when it happens. I guess Apache is returning the 400 error before the forensic module gets to do its logging?

By the way, when this happens I see this in the error log:

request failed: error reading the headers

To me this says Apache doesn't like something about the raw incoming request, rather than a problem with our rewriting, etc. Or am I misunderstanding the error?

I'm at a loss where to go from here. Is there some other way that I can easily see all the request headers? I feel like that's the only thing that will possibly provide a clue as to what's going on.

View 1 Replies View Related

Howto Add IP Permanently To Your Dedicated CentOS Server

Aug 11, 2007

Any straight up easy way. So they stay permanent?

Can I simply use system-config-network and add each IP one at a time.

View 6 Replies View Related

Plesk 12.x / Linux :: Permanently Ban Repeat IPs With Fail2ban

Feb 11, 2015

How to set a permanent ban per IP in Fail2ban?? I have banned continuously some IPs with recidibe and I need put this IPs in a permanent blacklist.

View 1 Replies View Related

Best Traffic Monitor For High Traffic Sites

Nov 15, 2007

What traffic monitor would everyone recommend for sites that have as many as 5,000 to 10,000 hits an hour?

View 8 Replies View Related

After Flush+zero Iptables, Will A New Iptables Ban Work

Jan 5, 2008

I execute the following commands, in the following order:

iptables --flush
iptables --zero
iptables -A INPUT -s -j DROP

will that last command successfully ban that IP until reboot?

If not, what needs to be done? I can't access my site if I don't flush + zero iptables first but I need to be able to ban with iptables.

View 2 Replies View Related

How To Permanently Disable Http/ftp/mysql/courier With LXADMIN/KLAXO

Jun 30, 2009

I have a small VPS that is used only to send mail. It uses the HyperVM software, so I installed "Klaxo" (LXadmin) on it and set up the domain, etc..

I then went into the "Server : Linux --> Services" page and disabled everything except qmail. (I also set them so they are not auto-started at bootup.)

The problem is that after about 10 minutes or so... all the services are automatically restarted.

I have no idea what process is doing this, and it's driving me a little nutty.

Does anyone know how to permanently disable a service using the Klaxo/lxadmin control panel?

(Or at least, where I can find whatever monitoring system is checking if they are up, and then restarting them?)

View 2 Replies View Related

APF: Allowing By Hostnames

Feb 8, 2007

It's possible to allow certain IP ranges to access certain ports by adding to allow_hosts.rules, but is it possible to allow certain domain names?

Eg: I want to allow all users of to access port 41125-41130, and block all others from inbound/outbound.

View 2 Replies View Related

Allowing Large Downloads

Mar 9, 2009

I'm selling downloads of music files. The zip files are quite large. I've had several people complain that they get a message that the server resets their connection before the download finishes.

What can I do to allow these large downloads?

I'm on IIS.

View 21 Replies View Related

SMTP Only Allowing Connections Via SSL

Jan 24, 2008

I have a CentOS server running WHM/cPanel and have just had a recent problem pop up:

My SMTP server will only accept connections if the client has their SMTP settings set to use SSL. It won't accept regular, non-SSL connections. Ordinarily I'd welcome the added encryption, however, most of my users who rely on the SMTP server have their mail clients set not to use SSL.

Is this a setting somewhere? If so, can someone direct me as to where it would be, because I've been looking for hours and can't find a thing!

View 1 Replies View Related

Apache :: Create Rewrite Match 301 Rule To Push Long URL To Shortened URL Permanently?

Jan 30, 2013

I am using the following mod_rewrite rule for shortened SEO friendly links: RewriteRule ^blog/([^/]*).html$ /blog/blog.php?pid=$1 [R=301,L]

For Google SEO reasons, will the shortened rewritten link created from above be the permanent link, from the R=301? Even though the longer link is still functional? Or, do I need to create a rewrite match 301 rule to push the long URL to the shortened URL permanently?

View 5 Replies View Related

Softlayer Not Allowing Us To Cancel Server

Jun 9, 2008

we've been with Softlayer for a little over a year. The service has been good but their support has been a nightmare for us. There was a time that we were under a dos attack and they refused to do anything about it which is what forced us to switch.

But that's not the reason I'm here. My billing ends on the 12th, their terms require you cancel the server 3 days before billing ends. I pay manually each month by pay pal. I tried to cancel the server today, what I assumed was 3 days before the 12th and they told me I couldn't do it. That I had to pay for another full month. So I told them I just won't pay and they threatened me with a late fee. Is there anything legally these people can actually do to me if I don't pay? All they have is my contact information, I don't think they could submit to collections over that without my social security number.

View 14 Replies View Related

Allowing Users To Change Their Passwrods Themselves

Dec 7, 2008

I am providing consultancy for a SOHO type of organization - 6-10 employees. The budget is not much for hosting. So we can't go high end. The current hosting company, in a way addresses more than 60% of the needs. However 1 important need is for users to be able to change their password for their email account. The current host says that DirectAdmin and CPanel fall short on this and nothing can be done. Any suggestions for hosts that address this need?

This is what the current package looks like:

* Directadmin control panel
* Apache web server
* Exim smtp server
* PHP5 scripting language
* PHPMyAdmin database control
* Unlimited subdomains
* SSI server side includes
* Centos linux OS
* Great uptime
* Squirrelmail web mail
* MySQL 5 database server
* PERL private CGI-BIN
* Unlimited domain pointers
* Webalizer statistics
* 1,000 megabytes of space
* 5,000 megabytes of transfer
* Unlimited POP3 and FTP
* Unlimited mySQL databases
* Unlimited sub domains

View 8 Replies View Related

Allowing Users To See Only Their Own Processes In FreeBSD

Jul 26, 2008

I ran a shell server on FreeBSD 4.x and was able through (if I recall...) a kernel option to allow users to only see their own processes. For example, if a user ran top it only showed their processes and no others.

I'm racking my brain trying to remember what I did to make that happen and I'm not having much luck with google.

Any other FreeBSD folks here that are familiar with this and care to remind me?

I think it's time I start keeping notes.

View 2 Replies View Related

Apache :: Allowing EXE File Download

Oct 3, 2013

We're running a departmental intranet site on Apache 2.2 (on Windows Server 2003, if that matters). I'm trying to figure out how to post exe files on the web site so I can create a link and users can download the programs.trying various changes to my httpd.conf file, but no matter what I tried I get a 403 Forbidden error and the error.log file shows an error "Options ExecCGI is off in this directory:...".

1) I've tried putting the EXE in various folders.
2) I don't have a .htaccess file and I don't see anything in the httpd.conf file that seems to specifically relate to access for this file type.
3) If I put a zip file in the same folders, I am able to download or open it.
4) The httpd.conf file should be whatever was created when we installed Apache.

View 2 Replies View Related

Looking For Canadian Hosting Allowing Adult Sites

May 19, 2009

I am looking for a Canadian host who necessarily have their servers in Canada who offer dedicated hosting and who hosts adult sites. I don't have anything particular specifications as of now since my sites are overall small (1k/day).

View 14 Replies View Related

VPS Hosts Allowing Unlimited Email Sending

Mar 3, 2009

I am looking for a VPS hosting company that basically allows unlimited email sending without restrictions. Does it necessarily have to be off-shore?

I will be sending about 300k per day, or somewhere in that neighborhood.

The bandwidth and storage I am not too concerned about.

View 9 Replies View Related

Allowing Whm Installed And Use In Share Hosting Account

Apr 20, 2009

This is one of my thoughts and a valid one based on my own experience.

One of the problems with shared hosting account that comes with multiple domain/web hosting, is that all the hosted domains shared one single cpanel and one root directory where all the addon domains directories and files are all jammed up together with the maindomain's directories and files.

Notably is some php scripted sites running on addon domains were unable to function effectively. One such example is using imagevue - a photo slideshow/gallery script. The problem of no photos or photos unable to load/show when the site is called directly from the addon domain [url]

However, when accessed through the maindomain [url] it has no such problem and the photos showed up.

With the above incident and having tried on three other different webhosts, it's clear that something has to be done or otherwise, having multiple domain hosting has no real benefits if you consider the above matters.

As such, the only solution I can think of is to install whm on our shared hosting account so that we can have each added domain to have its own independent cpanel.
So long as we are not doing any reselling activities, there is no reason for the webhost to object or refused.

If your webhost is genuinely care about you and truly to provide an enhanced and efficient webhosting experience, then whm is one way to overcome any shortcomings from existing facility of using a single cpanel for all your multiple addon domains.

Of course, another alternative is to use subdomains from the main domain and redirect all your addon domain sites to the subdomains. That would really defeat the purpose of having addon domains in the first place. Also, why should we? since the hosting account is for multiple domain hosting.

Webhosts offering so-called unlimited domain hosting or limited multiple domain hosting on a single cpanel, should review the existing known issues such as the one mentioned above, and consider using whm to overcome such issues, thus truly provide a pleasant and effective multiple domain web hosting experience to its customers.

Webhosts should tweak and enhance its existing features/softwares/hardwares to improve the overall webhosting services.

View 14 Replies View Related

Copyrights 2005-15, All rights reserved