Hello folks;
CENTOS 7.8 Apache WHM v86.0.21
1) Using ModSec OWASP v3 in WHM and also have CSF installed. Just to clarify my understanding - if modsec picks up an abusive IP for bad behaviour, it will block it right (including IPV6 addresses?)? Since CSF does pretty much the same thing.... is there any point to have both?
2) RE IP blocklists: I would like to hear thoughts on which is best to implement to reduce abusive connections.
I'm aware of e.g. CSF Block Lists including DShield Block List and Spamhaus DROP List plus ModSec uses the ProjectHoneyPot. Plus there is AbuseIPDB .....
- which blocklist is most efficient in WHM and will have negligible effect on loading time of sites / server processes
- which blocklist one is maintained the best and kept up to date?
- any other considerations?
Thanks
CENTOS 7.8 Apache WHM v86.0.21
1) Using ModSec OWASP v3 in WHM and also have CSF installed. Just to clarify my understanding - if modsec picks up an abusive IP for bad behaviour, it will block it right (including IPV6 addresses?)? Since CSF does pretty much the same thing.... is there any point to have both?
2) RE IP blocklists: I would like to hear thoughts on which is best to implement to reduce abusive connections.
I'm aware of e.g. CSF Block Lists including DShield Block List and Spamhaus DROP List plus ModSec uses the ProjectHoneyPot. Plus there is AbuseIPDB .....
- which blocklist is most efficient in WHM and will have negligible effect on loading time of sites / server processes
- which blocklist one is maintained the best and kept up to date?
- any other considerations?
Thanks