Rise Company
03-04-2021, 00:14
فايروول السي بانل CSF Firewall الغاء حظر الايميل disable smtp Login Failure Blocking
Login Failure Blocking and Alerts - Configure LFD to not block emails for failed login attempts
disable smtp Login Failure Blocking
مشكلة :
Is it possible to configure LFD in ConfigServer Security & Firewall for cPanels WHM to not block failed logins for e-mails? My legitimate users are being blocked more than hack attempts for e-mail accounts.
I've tried googling this but cannot find anything, and don't want to disable LFD entirely as I still want it to block all other types of failed login attempts.
Is there a configuration file that controls what LFD blocks for that can tell it not to block for e-mails?
حل المشكلة:
To change this modify the CSF config file and search for LF_SMTPAUTH. You can set this to 0 to disable it, or increase the number before a ban kicks in. You can also change LF_SMTPAUTH_PERM from 1 to a larger number to make it a temporary permanent ban for that number of seconds. I changed it to 20 attempts and 1800 (30 minutes).
------------------------------------------------
Read the documentation in /etc/csf/csf.conf
There are different LF_ settings for different login types.
I have to advise you against disabling this completely due to a high risk for spam and brute force attacks. However if you want to allow extra login attempts for pop3 for example you could set this to a higher number:
LF_POP3D = "10"
Raising that to say 25 should allow customers more login attempts while still blocking bad bots. You can also set temporary blocks instead of permanent by setting the _PERM settings like this:
LF_POP3D_PERM = "1"
The setting "1" is a permanent block. Setting a higher number like "300" would be a 5 minute block of the IP (300 seconds = 5 minutes).
If you change these settings you must fully restart CSF and LDF (just running csf -r will not do this) either restart both services via WHM or run this from command line:
csf -x ; csf -e
ensure CSF/LFD enable properly after any changes.
المرجع:
https://superuser.com/questions/634177/configure-lfd-to-not-block-emails-for-failed-login-attempts
https://forums.cpanel.net/threads/disabling-firewall-ip-blocking-on-pop3-smtp-webmail-login-failures.498871/
https://www.interserver.net/tips/kb/various-reasons-for-ip-address-block-in-csf/
Login Failure Blocking and Alerts - Configure LFD to not block emails for failed login attempts
disable smtp Login Failure Blocking
مشكلة :
Is it possible to configure LFD in ConfigServer Security & Firewall for cPanels WHM to not block failed logins for e-mails? My legitimate users are being blocked more than hack attempts for e-mail accounts.
I've tried googling this but cannot find anything, and don't want to disable LFD entirely as I still want it to block all other types of failed login attempts.
Is there a configuration file that controls what LFD blocks for that can tell it not to block for e-mails?
حل المشكلة:
To change this modify the CSF config file and search for LF_SMTPAUTH. You can set this to 0 to disable it, or increase the number before a ban kicks in. You can also change LF_SMTPAUTH_PERM from 1 to a larger number to make it a temporary permanent ban for that number of seconds. I changed it to 20 attempts and 1800 (30 minutes).
------------------------------------------------
Read the documentation in /etc/csf/csf.conf
There are different LF_ settings for different login types.
I have to advise you against disabling this completely due to a high risk for spam and brute force attacks. However if you want to allow extra login attempts for pop3 for example you could set this to a higher number:
LF_POP3D = "10"
Raising that to say 25 should allow customers more login attempts while still blocking bad bots. You can also set temporary blocks instead of permanent by setting the _PERM settings like this:
LF_POP3D_PERM = "1"
The setting "1" is a permanent block. Setting a higher number like "300" would be a 5 minute block of the IP (300 seconds = 5 minutes).
If you change these settings you must fully restart CSF and LDF (just running csf -r will not do this) either restart both services via WHM or run this from command line:
csf -x ; csf -e
ensure CSF/LFD enable properly after any changes.
المرجع:
https://superuser.com/questions/634177/configure-lfd-to-not-block-emails-for-failed-login-attempts
https://forums.cpanel.net/threads/disabling-firewall-ip-blocking-on-pop3-smtp-webmail-login-failures.498871/
https://www.interserver.net/tips/kb/various-reasons-for-ip-address-block-in-csf/