I have a problem I think. I'm running cPanel 72.0.7. I have mod_security2 blocking wp-login.php hack attempts. It works fine. Entires are added to /etc/csf.deny automatically per the rule.
Problem is when my csf.deny hits the DENY_IP_LIMIT (set to 2000) defined in csf.conf, it does not rotate and remove the old entries automatically. I start to get flooded because its not blocking. As per the comment is it not suppose to remove old entries?
"if the limit is reached, the entries will be rotated so that the oldest
entries (i.e. the ones at the top) will be removed and the latest is added."
Any idea?
Problem is when my csf.deny hits the DENY_IP_LIMIT (set to 2000) defined in csf.conf, it does not rotate and remove the old entries automatically. I start to get flooded because its not blocking. As per the comment is it not suppose to remove old entries?
"if the limit is reached, the entries will be rotated so that the oldest
entries (i.e. the ones at the top) will be removed and the latest is added."
Any idea?
Last edited: