Remove Banned IP Addresses

May 19, 2008

How can make a cronjob for remove banned ip with CSF every 15min?

View 4 Replies


ADVERTISEMENT

New Server Has Banned IP Addresses

Jul 8, 2008

My story starts with my getting burned by fumiNET (the first *grrr*)...

Burstnet reactivates my server (for an additional payment of course). The server seems fine but I thought that I might do better with a BurstNET reseller (better service). So...

I sign up with a reseller, and since I got my new server I've been plagued with email bounces, rejections, etc. Seems that my server (via the reseller) was supplied with a bunch of banned IPs (in other words, crap IPs). (the second *grrrr*)

I've reported to the providers abuse department, but was told that I have to handle this. (third *grrrr* - or is it just continued from the second?)

I've had it. I'm ready to fold up shop. As it is the sites keep me busy - but then...

- I get screwed by fumiNET (losing a big chunk of money)
- the hassle of trying to get my fumiNET server back up (thanks BurstNET)
- transferring to the reseller for better service, and finding out that perhaps BurstNET service was better than the reseller's

I'm open if anyone has suggestions. Some that I've come up with myself...

- finding yet another server provider (recommendations welcome)
- drinking large quantities of Guinness (worth it regardless)
- pulling the plug on the server and getting shared hosting to hold some minimal content
- forgetting the whole damn thing and getting a job as a [pick one]: store clerk, street cleaner, used car salesman

View 1 Replies View Related

IP Addresses Banned On Thu Sep 13 16:32:01 SGT 2007

Sep 13, 2007

Have been receiving the following warnings for more than a day. Does BFD auto execute a permanent ban or do I have to do it myself? If so, how? Also, I did a whois, found out the service provider, and sent an email regarding abuse. I have yet to receive a reply.

I was wondering since its a HK IP, do I have to send the message in chinese? Would anyone be kind enough to do so?

Quote:

Banned the following ip addresses on Thu Sep 13 16:32:01 SGT 2007

203.186.163.31 with 308 connections

View 6 Replies View Related

Check And Remove Denied IP Addresses From IPtables

May 24, 2008

it looks likely certain ip is ban by the iptables,

i want to ask how can i check what the ips are ban by the iptables?

and how can i remove the ip which is deny on the iptables?

View 2 Replies View Related

Banned My Own IP

Dec 15, 2007

You can see my servers information at the bottom.

If in this post there is security information I have reveiled I hope you will tell me

After a couple of hours where someone tried to login to root and Directadmin using ssh, i closed ssh and made some minor changes to the security.

I turned on the automatic add ip if login failed 3 times, in DirectAdmin.

I dont know why I was banned cause I DID NOT use wrong login???

My other users of the server also got banned, and they say they did not use wrong pass either?

SO how do I unban me so I can acces DirectAdmin again?

And as if that was not enough, because Im soooo good at this...
while I was at it I stopped SSL cause I got following error and I dont really need it, I think
-------------------------STARThttpd_error_log
[Sat Dec 15 03:38:22 2007] [error] server reached MaxClients setting, consider raising the MaxClients setting
[Sat Dec 15 03:58:32 2007] [notice] caught SIGTERM, shutting down
[Sat Dec 15 03:58:34 2007] [warn] RSA server certificate CommonName (CN) `localhost' does NOT match server name!?
[Sat Dec 15 03:58:34 2007] [warn] RSA server certificate CommonName (CN) `localhost' does NOT match server name!?
[Sat Dec 15 03:58:34 2007] [warn] Init: SSL server IP/port conflict: www.belove.updownloading.com:443 (/usr/local/directadmin/data/users/belove/httpd.conf:48) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:34 2007] [warn] Init: SSL server IP/port conflict: www.fusion-planet.updownloading.com:443 (/usr/local/directadmin/data/users/iceangel89/httpd.conf:48) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:34 2007] [warn] Init: SSL server IP/port conflict: www.nicheserver.com:443 (/usr/local/directadmin/data/users/nicsad/httpd.conf:48) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:34 2007] [warn] Init: SSL server IP/port conflict: localhost:443 (/etc/httpd/conf/extra/httpd-vhosts.conf:38) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:34 2007] [warn] Init: You should not use name-based virtual hosts in conjunction with SSL!!
[Sat Dec 15 03:58:34 2007] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Sat Dec 15 03:58:34 2007] [warn] module php5_module is already loaded, skipping
[Sat Dec 15 03:58:35 2007] [warn] RSA server certificate CommonName (CN) `localhost' does NOT match server name!?
[Sat Dec 15 03:58:35 2007] [warn] RSA server certificate CommonName (CN) `localhost' does NOT match server name!?
[Sat Dec 15 03:58:35 2007] [warn] Init: SSL server IP/port conflict: www.belove.updownloading.com:443 (/usr/local/directadmin/data/users/belove/httpd.conf:48) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:35 2007] [warn] Init: SSL server IP/port conflict: www.fusion-planet.updownloading.com:443 (/usr/local/directadmin/data/users/iceangel89/httpd.conf:48) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:35 2007] [warn] Init: SSL server IP/port conflict: www.nicheserver.com:443 (/usr/local/directadmin/data/users/nicsad/httpd.conf:48) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:35 2007] [warn] Init: SSL server IP/port conflict: localhost:443 (/etc/httpd/conf/extra/httpd-vhosts.conf:38) vs. www.tokyolondon.net:443 (/usr/local/directadmin/data/users/tokyo/httpd.conf:48)
[Sat Dec 15 03:58:35 2007] [warn] Init: You should not use name-based virtual hosts in conjunction with SSL!!
[Sat Dec 15 03:58:35 2007] [notice] Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.8b DAV/2 PHP/5.2.4 configured -- resuming normal operations
[Sat Dec 15 03:58:48 2007] [error] [client ::1] File does not exist: /var/www/html/400.shtml
[Sat Dec 15 03:58:49 2007] [error] [client ::1] File does not exist: /var/www/html/400.shtml
[Sat Dec 15 03:59:10 2007] [error] [client ::1] File does not exist: /var/www/html/400.shtml
[Sat Dec 15 03:59:11 2007] [error] [client ::1] File does not exist: /var/www/html/400.shtml
[Sat Dec 15 03:59:12 2007] [error] [client ::1] File does not exist: /var/www/html/400.shtml
-------------------------END httpd_error_log

I have also posted this on DirectAdmin's forum, but because Im really nervous and dont know when they will answer I posted here too, cause this forum is used more

Server configuration
Linux CentOS5 DirectAdmin
Processor Name Intel(R) Xeon(R) CPU 3050 @ 2.13GHz
Vendor ID GenuineIntel
Processor Speed (MHz) 2133.507
Processor Name Intel(R) Xeon(R) CPU 3050 @ 2.13GHz
Vendor ID GenuineIntel
Processor Speed (MHz) 2133.507
Total Memory 2075520 kB
Free Memory 57004 kB - (Every time I cant access the websites, it is this low, then when I can access the websites again its
around 500mb)
Total Swap Memory 4192956 kB
Free Swap Memory 4192888 kB
Apache 2.2.6 Running
DirectAdmin 1.31.0 Running
Exim 4.67 Running
MySQL 5.0.45 Running
Named 9.3.3rc2 Running
ProFTPd 1.3.1 Running
sshd *** Stopped *** (I stopped it because my websites dont need it, in logs I could see that some sites, I dont know, were trying to acces it?)
vm-Pop3d 1.1.7f-DA-2 Running

View 11 Replies View Related

APF Accidentally Banned Someone

Mar 11, 2008

I've an interesting issue here. A client of mine was apparently banned from one of my servers and the problem has been narrowed down to the APF. What's odd is that he's not listed on /etc/apf/deny_hosts.rules file, nor is his IP blocked by iptables.

But, as soon as the APF is enabled he can't access anything on the server! This is very random, I've been using APF for just over a year now and I've never had a problem like this. But who's to say it's not happening to others as well?

View 5 Replies View Related

I Am Banned From My Own Server

Feb 22, 2007

I can't seem to access my server. I can get in through a proxy but not with my own IP. I can't log in through SSH to find out what's going on because I'm banned. I manage my own machines at the moment, so no I can't really contact my host.

View 14 Replies View Related

APF Can't Block Banned One Of The IP

Nov 30, 2007

Since some days I have a problem with apf: It can't BAN one of the Ip from file deny_hosts.rules. Other IP's are correctly banned. Of course in apf log are:

apf(28474): {trust} deny all to/from 88.84.141.233

but this ip still have access to my server and scan my ports. I have this problem after editing internals/rab.ports (I added some ports to RAB_PSCAN_LEVEL_2). I don't know how can I fix this problem.

Topic should have title: APF can't block one of the banned IP.

View 4 Replies View Related

Remove Empty Folders And Remove From A Db

Jul 22, 2009

ive got a site which auto creates subdomains and installs a script automaticly and inserts details into a mysql db. i have had some issues recent so have loads (talking 100s) of folders that are empty which i need to remove, and to remove the details of said folder from db also. any ideas how i can do this, using plesk control panel so removing the subdomain via plesk cli may be the best way in that respect but the db is external to plesk so that would not be edited

View 0 Replies View Related

SoftLayer Banned Me! What Is The Reason

Apr 25, 2009

I took server from Soft Layer

After four month they banned my account, When I talked to them they said we banned your account for tow days because we Suspicion about you and I waited them for tow days but nothing new, after that I sent all my evidences to them, the passport picture, driver's license, ID's card and Visa Card picture from front and back.

NOW!

I don't know the reason for banned my account, why they banned me?

View 14 Replies View Related

Hosting That Is Not Banned By Google PR Datacenter

Dec 19, 2005

I have found a host already ...

View 3 Replies View Related

Yahoo Banned My Mail Server

Apr 14, 2008

I run an small social netwroking web site.

I just checked and it looks like yahoo dont accept emails from my server.

so is there any way i send those bulk emails to those users or my web site from another mail service prodider so that delivery guaranted?

informing my users who has yahoo mail account about updates etc..

i have dedicated server and cpanel.

View 3 Replies View Related

Nodos Blacklist - It Banned Me From My Own Server

Aug 13, 2008

I just lost access to my site, but wannabrowser & siteuptime, etc. all said it was up!

I ran ipconfig /flushdns and everything.
Finally, I unplugged my wireless & router and waited. Plugged it back in, everything worked (I had a new IP)

The only suggestion I can come up with is that my own security protection filtered me! How can I view the nodos blacklist to see if this is the case?

I already checked iptables -L and my IP (and range) did not show.

View 4 Replies View Related

Setting Up APF To Display A Error Page For Banned IPs

Sep 30, 2007

when you add a banned ip to APF it doesnt show anything when the user visits the site, just a blank page. is there anyway to set up a page such as "You IP Address has been banned,

View 4 Replies View Related

Plesk 12.x / Linux :: Helo Strings - IP Banned

Jul 13, 2015

I formatted my server and installed CENTOS 7 and PLESK 12. I have problems with cbl.abuseat.org. My ip enters in blacklist. I sent email to the support of abuseat.org and abuseat reply:

Please fix your HELO strings.

I check the my configuration and I think is correct:

- Reverse lookup is ok
- Hostname is ok (server.domain.tld)

But I have the file in /etc/sysconfig/network empty. There is only written: # Created by anaconda

Also, is correct the my etc/hosts file?

127.0.0.1 server.domain.tld server localhost4 localhost4.localdomain4
:: 1 server.domain.tld server localhost6 localhost6.localdomain6

View 12 Replies View Related

Customised "Banned IP" Page

May 16, 2008

We've blocked a few problematic users from our server using CSF (IP block).

Could anyone tell me how I could get a custom page to appear for this who are blocked on the server?

I'd like a message informing the user(s) that they have been banned from the server rather than a blank screen.

View 3 Replies View Related

Remove Lfd

May 21, 2009

I just need to CSF on my server, i dont need to lfd and i need to remove lfd from my server.

View 9 Replies View Related

Remove Xen Xps

May 20, 2009

I have setup a xen VPS some time back. I need to remove it permanently. I have used the commands virsh destroy <domainID> as well as xm destroy <domainID>. However they only performs a shutdown. I can restore it back!

I want to remove / wipe it permanently and memory consumed is given up then and reflected in the core server.

View 2 Replies View Related

Remove APF

May 30, 2008

How can remove apf firewall?

I need to remove and install apf again. Because its damaged now

View 7 Replies View Related

How To Remove BFD And APF

Oct 14, 2007

some body installed it for me and I do not know how to remove, how to uninstall BFD and APF

View 3 Replies View Related

How To Remove Csf Firewall

Sep 12, 2006

i want to remove csf firewall. Its creating alot of issues. So any guide how can i remove csf and ldf ... ?

View 2 Replies View Related

Is It Safe To Remove All Of /tmp

Jul 6, 2009

My /tmp on my cPanel hosting server is nearly full, and I was wondering if it is safe to remove all the contents in /tmp, if not, what can I delete to clear up the space?

View 6 Replies View Related

How To Remove Suphp

Mar 23, 2009

i have many problem from this

i want to remove it

i had recompiled apache without it but it still working

View 2 Replies View Related

Remove Locus7shell

May 5, 2008

I am using Cpanel version 11 with FreeBsd.
Some body has installed locus7shell on one of my website
using Joomla.

How can i removed it.Has any one faced this thing.

View 1 Replies View Related

Yum Remove Command

Jul 29, 2008

I had some issues with PHP compilation seems to be issue with zlib. So I decided to remove it. What happened then is something like nightmare...

The command yum remove zlib removed zlib + all dependencies without asking me what to remove. So it removed majority of packages including yum itself.

How can I force yum to not remove dependencies when I uninstall some package?

View 5 Replies View Related

How To Remove Roundcube

Apr 21, 2008

I installed Roundcube on my cPanel server but it isn't working for me and I want to uninstall it and maybe try again.

How do I uninstall it, I can't find any information anywhere?

View 9 Replies View Related

How To Remove EAccelerator

Dec 8, 2007

How to remove eAccelerator, I updated my apache and there I got the option to install it ,and I installed it

View 7 Replies View Related

Can Not Remove Second Drive

Sep 4, 2007

My server has 2 drives,one is backup drive. The backup drive seem to be failing so i decide to remove it. However when i remove it,the system can not boot. ANyone got this issue?

View 14 Replies View Related

Can I Remove This Folder

Jun 10, 2007

When I installed PHP 5.2.1 the howto said to put it in /home/cpphpbuild/ then un-tar it which I did and I am left with a folder called php-5.2.1

Can I delete this folder without breaking PHP 5?

View 5 Replies View Related

RewriteRule: Remove Www From All Url

Apr 19, 2007

on my server I'm trying to remove 'www' from all subdomain urls.

For example:
[url]-> should be -> [url]
[url]-> [url]...

what rewrite rules to use?

I suppose I've to put this rule in httpd.conf and apply it at Server level.

I'm using this

RewriteEngine on
RewriteCond %{HTTP_HOST} ^www.([^.]+).example.com
RewriteRule (.*) [url]

where %1 is one subdomain.
The problem is I want this to work on ALL Subdomains.

What rewrite rule should I use?

View 8 Replies View Related

How To Completely Remove HyperVM

Jun 10, 2009

As per the title, what steps are needed to remove HyperVM altogether from the server leaving just the OpenVZ or Xen kernels?

View 6 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved