The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Mod_dosevasive dont banned

Discussion in 'General Discussion' started by dreamguitar, Jun 17, 2005.

  1. dreamguitar

    dreamguitar Registered

    Joined:
    Feb 8, 2004
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    151
    I have setup Mod_dosevasive on my server. I can see possible ddos blocking ip in /var/log/messages but it dont working no email and no ip ban in deny.host.rules


    Here my following configuration. Please help to correct this .

    in httpd.conf

    <IfModule mod_dosevasive.c>
    DOSHashTableSize 3097
    DOSPageCount 5
    DOSSiteCount 100
    DOSPageInterval 2
    DOSSiteInterval 2
    DOSBlockingPeriod 600
    DOSEmailNotify blabla@gmail.com
    DOSSystemCommand "sudo /usr/local/sbin/apf -d %s"
    </IfModule>


    and in visudo : ( my server name root.blabla.com )

    nobody root. = NOPASSWD: /usr/local/sbin/apf -d *
     
    #1 dreamguitar, Jun 17, 2005
  2. nosfin

    nosfin Registered

    Joined:
    Dec 7, 2003
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    151
    the same.

    i'm having the same problem..

    nobody ALL = NOPASSWD: /usr/local/sbin/apf -d *
    or
    nobody sense. = NOPASSWD: /usr/local/sbin/apf -d *

    root@foo [/etc]# sudo -u nobody -s /usr/local/sbin/apf -d 11.11.11.11
    /usr/local/sbin/apf: /usr/local/sbin/apf: Permission denied
    root@foo [/etc]#

    is there anyone knows howto solve this problem ?
     
    #2 nosfin, Sep 30, 2005
  3. dropby23

    dropby23 Well-Known Member

    Joined:
    Jan 16, 2005
    Messages:
    155
    Likes Received:
    0
    Trophy Points:
    166
    use this command
    Code:
    cat /var/log/messages | grep Blacklisting | awk {'print "ALL:" $8 "\n"'} >> /etc/hosts.deny
    or

    find this
    DOSSystemCommand "sudo /usr/local/sbin/apf -d %s"
    and change with this

    DOSSystemCommand "sudo -u nobody-s /usr/local/sbin/apf -d %s"

    and the visudo will be like that

    nobody ROOT. = NOPASSWD: /usr/local/sbin/apf -d *
    the last thing you will do
    chmod 2755 /usr/local/sbin/apf
     
    #3 dropby23, Oct 1, 2005
(You must log in or sign up to post here.)
Loading...
Similar Threads - Mod_dosevasive dont banned
  1. My1

    AutoSSL ignore subdomains that dont pass DV check

    My1, Aug 12, 2017, in forum: Security
    Replies:
    6
    Views:
    71
    cPanelMichael
    Aug 14, 2017
  2. keithalmli

    Email Problems, some receive emails, some dont.

    keithalmli, Feb 14, 2017, in forum: E-mail Discussions
    Replies:
    6
    Views:
    1,108
    cPanelMichael
    Feb 23, 2017
  3. XxUnkn0wnxX

    php.ini changes dont take effect till server reboot?

    XxUnkn0wnxX, Nov 25, 2016, in forum: EasyApache
    Replies:
    5
    Views:
    607
    cPJacob
    Nov 28, 2016
  4. Paul Cullen

    ftpd down, but i dont have ftpd installed!

    Paul Cullen, Oct 7, 2016, in forum: General Discussion
    Replies:
    1
    Views:
    384
    cPanelMichael
    Oct 10, 2016
  5. lutronik

    Dont include mail files in the backup??

    lutronik, Oct 6, 2016, in forum: Data Protection
    Replies:
    1
    Views:
    342
    cPanelMichael
    Oct 6, 2016

Share This Page