lfd: Suspicious process running under user cpanel

[AutoCrat]

I've receive emails often with content below:

Time:    Tue May 31 09:08:55 2011 +0430
PID:    12827
Account: cpanel
Uptime:  312 seconds


Executable:

/usr/local/bin/perl


Command Line (often faked in exploits):

spamd child


Network connections by the process (if any):

tcp: 127.0.0.1:783 -> 0.0.0.0:0
tcp: 127.0.0.1:783 -> 127.0.0.1:55847
udp: 204.45.55.188:65110 -> 4.2.2.4:53


Files open by the process (if any):

/dev/null
/dev/null
/dev/null
/usr/local/bin/spamd


Memory maps by the process (if any):

00400000-00403000 r-xp 00000000 fd:00 9536133                            /usr/local/bin/perl
00602000-00603000 rw-p 00002000 fd:00 9536133                            /usr/local/bin/perl
1daf6000-20e09000 rw-p 1daf6000 00:00 0                                  [heap]
35f6200000-35f621c000 r-xp 00000000 fd:00 8282209                        /lib64/ld-2.5.so
35f641b000-35f641c000 r--p 0001b000 fd:00 8282209                        /lib64/ld-2.5.so
35f641c000-35f641d000 rw-p 0001c000 fd:00 8282209                        /lib64/ld-2.5.so
35f6600000-35f674e000 r-xp 00000000 fd:00 8282210                        /lib64/libc-2.5.so
35f674e000-35f694e000 ---p 0014e000 fd:00 8282210                        /lib64/libc-2.5.so
35f694e000-35f6952000 r--p 0014e000 fd:00 8282210                        /lib64/libc-2.5.so
35f6952000-35f6953000 rw-p 00152000 fd:00 8282210                        /lib64/libc-2.5.so
35f6953000-35f6958000 rw-p 35f6953000 00:00 0
35f6a00000-35f6a02000 r-xp 00000000 fd:00 8282211                        /lib64/libdl-2.5.so
35f6a02000-35f6c02000 ---p 00002000 fd:00 8282211                        /lib64/libdl-2.5.so
35f6c02000-35f6c03000 r--p 00002000 fd:00 8282211                        /lib64/libdl-2.5.so
35f6c03000-35f6c04000 rw-p 00003000 fd:00 8282211                        /lib64/libdl-2.5.so
35f6e00000-35f6e16000 r-xp 00000000 fd:00 8282215                        /lib64/libpthread-2.5.so
35f6e16000-35f7015000 ---p 00016000 fd:00 8282215                        /lib64/libpthread-2.5.so
35f7015000-35f7016000 r--p 00015000 fd:00 8282215                        /lib64/libpthread-2.5.so
35f7016000-35f7017000 rw-p 00016000 fd:00 8282215                        /lib64/libpthread-2.5.so
35f7017000-35f701b000 rw-p 35f7017000 00:00 0
35f7200000-35f7282000 r-xp 00000000 fd:00 2455225                        /lib64/libm-2.5.so
35f7282000-35f7481000 ---p 00082000 fd:00 2455225                        /lib64/libm-2.5.so
35f7481000-35f7482000 r--p 00081000 fd:00 2455225                        /lib64/libm-2.5.so
35f7482000-35f7483000 rw-p 00082000 fd:00 2455225                        /lib64/libm-2.5.so
35f7600000-35f7615000 r-xp 00000000 fd:00 8282224                        /lib64/libselinux.so.1
35f7615000-35f7815000 ---p 00015000 fd:00 8282224                        /lib64/libselinux.so.1
35f7815000-35f7817000 rw-p 00015000 fd:00 8282224                        /lib64/libselinux.so.1
35f7817000-35f7818000 rw-p 35f7817000 00:00 0
35f7a00000-35f7a3b000 r-xp 00000000 fd:00 8282223                        /lib64/libsepol.so.1
35f7a3b000-35f7c3b000 ---p 0003b000 fd:00 8282223                        /lib64/libsepol.so.1
35f7c3b000-35f7c3c000 rw-p 0003b000 fd:00 8282223                        /lib64/libsepol.so.1
35f7c3c000-35f7c46000 rw-p 35f7c3c000 00:00 0
35f7e00000-35f7e14000 r-xp 00000000 fd:00 9530554                        /usr/lib64/libz.so.1.2.3
35f7e14000-35f8013000 ---p 00014000 fd:00 9530554                        /usr/lib64/libz.so.1.2.3
35f8013000-35f8014000 rw-p 00013000 fd:00 9530554                        /usr/lib64/libz.so.1.2.3
35f8200000-35f8202000 r-xp 00000000 fd:00 2455235                        /lib64/libutil-2.5.so
35f8202000-35f8401000 ---p 00002000 fd:00 2455235                        /lib64/libutil-2.5.so
35f8401000-35f8402000 r--p 00001000 fd:00 2455235                        /lib64/libutil-2.5.so
35f8402000-35f8403000 rw-p 00002000 fd:00 2455235                        /lib64/libutil-2.5.so
35f8600000-35f8609000 r-xp 00000000 fd:00 2455227                        /lib64/libcrypt-2.5.so
35f8609000-35f8808000 ---p 00009000 fd:00 2455227                        /lib64/libcrypt-2.5.so
35f8808000-35f8809000 r--p 00008000 fd:00 2455227                        /lib64/libcrypt-2.5.so
35f8809000-35f880a000 rw-p 00009000 fd:00 2455227                        /lib64/libcrypt-2.5.so
35f880a000-35f8838000 rw-p 35f880a000 00:00 0
35f8a00000-35f8a15000 r-xp 00000000 fd:00 8282220                        /lib64/libnsl-2.5.so
35f8a15000-35f8c14000 ---p 00015000 fd:00 8282220                        /lib64/libnsl-2.5.so
35f8c14000-35f8c15000 r--p 00014000 fd:00 8282220                        /lib64/libnsl-2.5.so
35f8c15000-35f8c16000 rw-p 00015000 fd:00 8282220                        /lib64/libnsl-2.5.so
35f8c16000-35f8c18000 rw-p 35f8c16000 00:00 0
35f8e00000-35f8e11000 r-xp 00000000 fd:00 8282222                        /lib64/libresolv-2.5.so
35f8e11000-35f9011000 ---p 00011000 fd:00 8282222                        /lib64/libresolv-2.5.so
35f9011000-35f9012000 r--p 00011000 fd:00 8282222                        /lib64/libresolv-2.5.so
35f9012000-35f9013000 rw-p 00012000 fd:00 8282222                        /lib64/libresolv-2.5.so
35f9013000-35f9015000 rw-p 35f9013000 00:00 0
35f9600000-35f9602000 r-xp 00000000 fd:00 8282221                        /lib64/libkeyutils-1.2.so
35f9602000-35f9801000 ---p 00002000 fd:00 8282221                        /lib64/libkeyutils-1.2.so
35f9801000-35f9802000 rw-p 00001000 fd:00 8282221                        /lib64/libkeyutils-1.2.so
35f9e00000-35f9e02000 r-xp 00000000 fd:00 8282225                        /lib64/libcom_err.so.2.1
35f9e02000-35fa001000 ---p 00002000 fd:00 8282225                        /lib64/libcom_err.so.2.1
35fa001000-35fa002000 rw-p 00001000 fd:00 8282225                        /lib64/libcom_err.so.2.1
35fa600000-35fa72d000 r-xp 00000000 fd:00 8282226                        /lib64/libcrypto.so.0.9.8e
35fa72d000-35fa92c000 ---p 0012d000 fd:00 8282226                        /lib64/libcrypto.so.0.9.8e
35fa92c000-35fa94d000 rw-p 0012c000 fd:00 8282226                        /lib64/libcrypto.so.0.9.8e
35fa94d000-35fa951000 rw-p 35fa94d000 00:00 0
35faa00000-35faa24000 r-xp 00000000 fd:00 9536457                        /usr/lib64/libk5crypto.so.3.1
35faa24000-35fac23000 ---p 00024000 fd:00 9536457                        /usr/lib64/libk5crypto.so.3.1
35fac23000-35fac25000 rw-p 00023000 fd:00 9536457                        /usr/lib64/libk5crypto.so.3.1
35fae00000-35fae46000 r-xp 00000000 fd:00 8282227                        /lib64/libssl.so.0.9.8e
35fae46000-35fb046000 ---p 00046000 fd:00 8282227                        /lib64/libssl.so.0.9.8e
35fb046000-35fb04c000 rw-p 00046000 fd:00 8282227                        /lib64/libssl.so.0.9.8e
35fb200000-35fb291000 r-xp 00000000 fd:00 9536458                        /usr/lib64/libkrb5.so.3.3
35fb291000-35fb491000 ---p 00091000 fd:00 9536458                        /usr/lib64/libkrb5.so.3.3
35fb491000-35fb495000 rw-p 00091000 fd:00 9536458                        /usr/lib64/libkrb5.so.3.3
35fb600000-35fb62c000 r-xp 00000000 fd:00 9536459                        /usr/lib64/libgssapi_krb5.so.2.2
35fb62c000-35fb82c000 ---p 0002c000 fd:00 9536459                        /usr/lib64/libgssapi_krb5.so.2.2
35fb82c000-35fb82e000 rw-p 0002c000 fd:00 9536459                        /usr/lib64/libgssapi_krb5.so.2.2
35fba00000-35fba08000 r-xp 00000000 fd:00 9535929                        /usr/lib64/libkrb5support.so.0.1
35fba08000-35fbc07000 ---p 00008000 fd:00 9535929                        /usr/lib64/libkrb5support.so.0.1
35fbc07000-35fbc08000 rw-p 00007000 fd:00 9535929                        /usr/lib64/libkrb5support.so.0.1
35fbe00000-35fbef1000 r-xp 00000000 fd:00 2455237                        /lib64/libdb-4.3.so
35fbef1000-35fc0f1000 ---p 000f1000 fd:00 2455237                        /lib64/libdb-4.3.so
35fc0f1000-35fc0f6000 rw-p 000f1000 fd:00 2455237                        /lib64/libdb-4.3.so
2b06b4c71000-2b06b4c73000 rw-p 2b06b4c71000 00:00 0
2b06b4c7d000-2b06b4c7f000 rw-p 2b06b4c7d000 00:00 0
2b06b4c7f000-2b06b4d72000 r-xp 00000000 fd:00 10182481                  /usr/local/lib/perl5/5.8.8/x86_64-linux/CORE/libperl.so
2b06b4d72000-2b06b4f71000 ---p 000f3000 fd:00 10182481                  /usr/local/lib/perl5/5.8.8/x86_64-linux/CORE/libperl.so
2b06b4f71000-2b06b4f7a000 rw-p 000f2000 fd:00 10182481                  /usr/local/lib/perl5/5.8.8/x86_64-linux/CORE/libperl.so
2b06b4f7a000-2b06b4f7f000 rw-p 2b06b4f7a000 00:00 0
2b06b4f7f000-2b06b4f84000 r-xp 00000000 fd:00 10182140                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Socket/Socket.so
2b06b4f84000-2b06b5183000 ---p 00005000 fd:00 10182140                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Socket/Socket.so
2b06b5183000-2b06b5184000 rw-p 00004000 fd:00 10182140                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Socket/Socket.so
2b06b5184000-2b06b5188000 r-xp 00000000 fd:00 10182334                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/IO/IO.so
2b06b5188000-2b06b5387000 ---p 00004000 fd:00 10182334                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/IO/IO.so
2b06b5387000-2b06b5388000 rw-p 00003000 fd:00 10182334                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/IO/IO.so
2b06b5388000-2b06b539f000 r-xp 00000000 fd:00 10182170                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/POSIX/POSIX.so
2b06b539f000-2b06b559e000 ---p 00017000 fd:00 10182170                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/POSIX/POSIX.so
2b06b559e000-2b06b559f000 rw-p 00016000 fd:00 10182170                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/POSIX/POSIX.so
2b06b559f000-2b06b55a4000 r-xp 00000000 fd:00 10183083                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Time/HiRes/HiRes.so
2b06b55a4000-2b06b57a3000 ---p 00005000 fd:00 10183083                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Time/HiRes/HiRes.so
2b06b57a3000-2b06b57a4000 rw-p 00004000 fd:00 10183083                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Time/HiRes/HiRes.so
2b06b57ae000-2b06b57b5000 r-xp 00000000 fd:00 8282216                    /lib64/librt-2.5.so
2b06b57b5000-2b06b59b5000 ---p 00007000 fd:00 8282216                    /lib64/librt-2.5.so
2b06b59b5000-2b06b59b6000 r--p 00007000 fd:00 8282216                    /lib64/librt-2.5.so
2b06b59b6000-2b06b59b7000 rw-p 00008000 fd:00 8282216                    /lib64/librt-2.5.so
2b06b59b7000-2b06b59ba000 r-xp 00000000 fd:00 10182083                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Fcntl/Fcntl.so
2b06b59ba000-2b06b5bb9000 ---p 00003000 fd:00 10182083                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Fcntl/Fcntl.so
2b06b5bb9000-2b06b5bba000 rw-p 00002000 fd:00 10182083                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Fcntl/Fcntl.so
2b06b5bba000-2b06b5bbd000 r-xp 00000000 fd:00 10182339                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/MIME/Base64/Base64.so
2b06b5bbd000-2b06b5dbc000 ---p 00003000 fd:00 10182339                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/MIME/Base64/Base64.so
2b06b5dbc000-2b06b5dbd000 rw-p 00002000 fd:00 10182339                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/MIME/Base64/Base64.so
2b06b5dbd000-2b06b5dc0000 r-xp 00000000 fd:00 10182096                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/File/Glob/Glob.so
2b06b5dc0000-2b06b5fc0000 ---p 00003000 fd:00 10182096                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/File/Glob/Glob.so
2b06b5fc0000-2b06b5fc1000 rw-p 00003000 fd:00 10182096                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/File/Glob/Glob.so
2b06b5fc1000-2b06b5fc6000 r-xp 00000000 fd:00 10216436                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/NetAddr/IP/Util/Util.so
2b06b5fc6000-2b06b61c5000 ---p 00005000 fd:00 10216436                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/NetAddr/IP/Util/Util.so
2b06b61c5000-2b06b61c6000 rw-p 00004000 fd:00 10216436                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/NetAddr/IP/Util/Util.so
2b06b61c6000-2b06b61cf000 r-xp 00000000 fd:00 10216352                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/HTML/Parser/Parser.so
2b06b61cf000-2b06b63ce000 ---p 00009000 fd:00 10216352                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/HTML/Parser/Parser.so
2b06b63ce000-2b06b63cf000 rw-p 00008000 fd:00 10216352                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/HTML/Parser/Parser.so
2b06b63cf000-2b06b63d1000 r-xp 00000000 fd:00 10215704                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Net/DNS/DNS.so
2b06b63d1000-2b06b65d0000 ---p 00002000 fd:00 10215704                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Net/DNS/DNS.so
2b06b65d0000-2b06b65d1000 rw-p 00001000 fd:00 10215704                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Net/DNS/DNS.so
2b06b65d1000-2b06b65d7000 r-xp 00000000 fd:00 10182915                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Data/Dumper/Dumper.so
2b06b65d7000-2b06b67d7000 ---p 00006000 fd:00 10182915                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Data/Dumper/Dumper.so
2b06b67d7000-2b06b67d8000 rw-p 00006000 fd:00 10182915                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Data/Dumper/Dumper.so
2b06b67d8000-2b06b67da000 r-xp 00000000 fd:00 10182151                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Cwd/Cwd.so
2b06b67da000-2b06b69d9000 ---p 00002000 fd:00 10182151                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Cwd/Cwd.so
2b06b69d9000-2b06b69da000 rw-p 00001000 fd:00 10182151                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Cwd/Cwd.so
2b06b69da000-2b06b69dd000 r-xp 00000000 fd:00 10182037                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Sys/Syslog/Syslog.so
2b06b69dd000-2b06b6bdc000 ---p 00003000 fd:00 10182037                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Sys/Syslog/Syslog.so
2b06b6bdc000-2b06b6bdd000 rw-p 00002000 fd:00 10182037                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/Sys/Syslog/Syslog.so
2b06b6be7000-2b06b6bf1000 r-xp 00000000 fd:00 2455226                    /lib64/libnss_files-2.5.so
2b06b6bf1000-2b06b6df0000 ---p 0000a000 fd:00 2455226                    /lib64/libnss_files-2.5.so
2b06b6df0000-2b06b6df1000 r--p 00009000 fd:00 2455226                    /lib64/libnss_files-2.5.so
2b06b6df1000-2b06b6df2000 rw-p 0000a000 fd:00 2455226                    /lib64/libnss_files-2.5.so
2b06b6df2000-2b06b6df8000 r-xp 00000000 fd:00 10182796                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/List/Util/Util.so
2b06b6df8000-2b06b6ff7000 ---p 00006000 fd:00 10182796                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/List/Util/Util.so
2b06b6ff7000-2b06b6ff8000 rw-p 00005000 fd:00 10182796                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/List/Util/Util.so
2b06b6ff8000-2b06b7002000 r-xp 00000000 fd:00 10214030                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Digest/SHA/SHA.so
2b06b7002000-2b06b7201000 ---p 0000a000 fd:00 10214030                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Digest/SHA/SHA.so
2b06b7201000-2b06b7202000 rw-p 00009000 fd:00 10214030                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Digest/SHA/SHA.so
2b06b7202000-2b06b720b000 r-xp 00000000 fd:00 10183077                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/DB_File/DB_File.so
2b06b720b000-2b06b740b000 ---p 00009000 fd:00 10183077                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/DB_File/DB_File.so
2b06b740b000-2b06b740c000 rw-p 00009000 fd:00 10183077                  /usr/local/lib/perl5/5.8.8/x86_64-linux/auto/DB_File/DB_File.so
2b06b740c000-2b06b740f000 r-xp 00000000 fd:00 10214073                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/BSD/Resource/Resource.so
2b06b740f000-2b06b760e000 ---p 00003000 fd:00 10214073                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/BSD/Resource/Resource.so
2b06b760e000-2b06b760f000 rw-p 00002000 fd:00 10214073                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/BSD/Resource/Resource.so
2b06b760f000-2b06b769e000 r-xp 00000000 fd:00 8708072                    /var/lib/spamassassin/compiled/5.008/3.003001/auto/Mail/SpamAssassin/CompiledRegexps/body_0/body_0.so
2b06b769e000-2b06b789d000 ---p 0008f000 fd:00 8708072                    /var/lib/spamassassin/compiled/5.008/3.003001/auto/Mail/SpamAssassin/CompiledRegexps/body_0/body_0.so
2b06b789d000-2b06b789e000 rw-p 0008e000 fd:00 8708072                    /var/lib/spamassassin/compiled/5.008/3.003001/auto/Mail/SpamAssassin/CompiledRegexps/body_0/body_0.so
2b06b789e000-2b06b78a5000 r-xp 00000000 fd:00 10216404                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Crypt/OpenSSL/RSA/RSA.so
2b06b78a5000-2b06b7aa4000 ---p 00007000 fd:00 10216404                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Crypt/OpenSSL/RSA/RSA.so
2b06b7aa4000-2b06b7aa5000 rw-p 00006000 fd:00 10216404                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/Crypt/OpenSSL/RSA/RSA.so
2b06b7aa5000-2b06b7aaa000 r-xp 00000000 fd:00 10214027                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/version/vxs/vxs.so
2b06b7aaa000-2b06b7caa000 ---p 00005000 fd:00 10214027                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/version/vxs/vxs.so
2b06b7caa000-2b06b7cab000 rw-p 00005000 fd:00 10214027                  /usr/local/lib/perl5/site_perl/5.8.8/x86_64-linux/auto/version/vxs/vxs.so
7fffa519e000-7fffa51c8000 rw-p 7ffffffd4000 00:00 0                      [stack]
7fffa51fc000-7fffa5200000 r-xp 7fffa51fc000 00:00 0                      [vdso]
ffffffffff600000-ffffffffffe00000 ---p 00000000 00:00 0                  [vsyscall]

What's the solution?

 

[Infopro]

...

What's the solution?

That email is from ConfigServer Firewall.
ConfigServer Scripts Forum • View topic - Process Tracking and csf.pignore

 

[doulos61]

That email is from ConfigServer Firewall.
ConfigServer Scripts Forum • View topic - Process Tracking and csf.pignore

My question is - is this something that should be ignored? I have csf on all of my servers, and get it for almost every account; from the parent account, to several of my hosted clients. So it is not just "cpanel" that I get these for. Do I leave myself open by turning this notification off?

I also get the "Excessive resource usage:" error for these accounts as well. Is this the same thing?

Thnx
D

 

[Infopro]

My question is - is this something that should be ignored?

Of course not.

The link I provided explains what you need to do, that forum has many threads just like yours posted and answered. CSF is not a cPanel supported product. The link I've given is where you go for support.

Spend some time and read up on your security and know how to manage it. The question you're asking is one of the most basic questions having to do with CSF. You need to know this.