The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Warnings after upgrading CSF to 7.52

Discussion in 'General Discussion' started by magicalwonders, Oct 1, 2014.

  1. magicalwonders

    magicalwonders Well-Known Member

    Joined:
    Nov 21, 2012
    Messages:
    96
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    I have the following two warnings appearing at the end of a report, following CSF upgrade 7.52.

    SMTP Tweak doesn't seem to exist in WHM, so I'm not sure if I need to take any further action on that one?

    On the second warning concerning RESTRICT_SYSLOG being disabled. I've had a look at csf.conf, and if I understand the issue correctly, I just need to edit the line - RESTRICT_SYSLOG = "0" and change to RESTRICT_SYSLOG = "3" ?

    I'm running CENTOS 6.5 x86_64 virtuozzo – WHM 11.44.1 (build 18)

    I hope someone can advise?
     
    #1 magicalwonders, Oct 1, 2014
    Last edited: Oct 1, 2014
  2. PlotHost

    PlotHost Well-Known Member

    Joined:
    Apr 29, 2011
    Messages:
    253
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    US
    cPanel Access Level:
    Root Administrator
    Twitter:
    The path is WHM->Security Center ->SMTP Restrictions
     
  3. magicalwonders

    magicalwonders Well-Known Member

    Joined:
    Nov 21, 2012
    Messages:
    96
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    I'm not sure. CSF has referenced the path as "WHM > Security Center > SMTP Tweak", and I can see from searching that some people have "SMTP Tweak" available in their WHM. It can't be exactly the same thing.
     
  4. triantech

    triantech Well-Known Member

    Joined:
    Jul 1, 2014
    Messages:
    145
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Kochi, India, India
    cPanel Access Level:
    Root Administrator
    Hey,

    SMTP tweak is now known as the option 'Restrict outgoing SMTP to root, exim, and mailman' which can be found from your

    >> Home »Server Configuration »Tweak Settings >> under the section Mail or the same is found under security center.

    This is what WHM reports :

    //

    Restrict outgoing SMTP to root, exim, and mailman (FKA SMTP Tweak) [?]
    Enabling this feature will redirect outgoing SMTP connections to the local mail server. root, exim, and mailman are still allowed to make direct connections.

    //

    Also note, for this to work you would need the kernel module 'ipt_owner' enabled for your server.
     
  5. magicalwonders

    magicalwonders Well-Known Member

    Joined:
    Nov 21, 2012
    Messages:
    96
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    OK thanks. So I need to find out if the kernel module 'ipt_owner' is enabled before doing anything.

    Is it really important to restrict outgoing SMTP? Presumably my current mail will still work if I do? Or am I setting myself up for a load more problems, errors, and warning of impending doom! :)
     
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    653
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Per it's description:

    This feature prevents users from bypassing the mail server to send mail, a common practice used by spammers. It will allow only the MTA, mailman, and root to connect to remote SMTP servers.

    You should not experience any load issues after enabling this option. To note, you can also enable/disable this option via:

    "WHM Home » Security Center » SMTP Restrictions"

    Thank you.
     
  7. magicalwonders

    magicalwonders Well-Known Member

    Joined:
    Nov 21, 2012
    Messages:
    96
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    OK thanks, I've disabled the smtp restriction in WHM and edited CSF.conf to show SMTP_BLOCK="1"

    What about the other warning? Should I just go ahead and edit CSF.conf to show RESTRICT_SYSLOG="3" ?
    Do I need to do anything else?
     
  8. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    653
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Please keep in mind that CSF is a third-party application, so you may want to post directly to their forums for this type of advice. If you open the /etc/csf/csf.conf file, you will see a full entry that explains how the RESTRICT_SYSLOG option works.

    Thank you.
     
  9. dalem

    dalem Well-Known Member
    PartnerNOC

    Joined:
    Oct 24, 2003
    Messages:
    2,577
    Likes Received:
    40
    Trophy Points:
    48
    Location:
    SLC
    cPanel Access Level:
    DataCenter Provider
    you will want to leave alone or options 2 or 3
     
  10. magicalwonders

    magicalwonders Well-Known Member

    Joined:
    Nov 21, 2012
    Messages:
    96
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Yes, I had read that already, and although it recommends setting 3, that course of action throws up even more questions!

    The csf.conf says the following in regard to option 3 -

    I'm not sure what I'm looking for in /etc/ to make sure "the group" doesn't exist? And I'm not sure what "so set the option to a unique name for the server" means???

    When I look at /etc/csf/csf.syslogusers, it states - "Add any accounts that log through syslog that are not listed that you need". It then goes on to list a bunch of entries -

    How do I find out which accounts log through syslog that are not listed?
     
Loading...

Share This Page