Search found 492 matches
- Wed Oct 08, 2014 12:09 pm
- Forum: Atomic Protector (formerly ASL)
- Topic: bug alert in latest ASL clamd rules
- Replies: 4
- Views: 7848
Re: bug alert in latest ASL clamd rules
It was setup to run as qscand... Running asl -s -f changed it to root. After running aum -uf it now works. The problem, as faris stated the other day, is that qmail-scanner-reconfigure resets it to qscand. This morning, CET, when the email wasn't working, I ran asl -s -f which didn't help. I then ru...
- Wed Oct 08, 2014 11:36 am
- Forum: Atomic Protector (formerly ASL)
- Topic: bug alert in latest ASL clamd rules
- Replies: 4
- Views: 7848
Re: bug alert in latest ASL clamd rules
Filesystem looks ok: Filesystem Size Used Avail Use% Mounted on /dev/mapper/vg_server15-lv_root 119G 55G 58G 49% / tmpfs 12G 12K 12G 1% /dev/shm /dev/sda1 485M 112M 348M 25% /boot /dev/mapper/vg_server15-lv_home 25G 1,2G 23G 5% /home Inodes: df -ih Filesystem Inodes IUsed IFree IUse% Mounted on /dev...
- Wed Oct 08, 2014 3:41 am
- Forum: Atomic Protector (formerly ASL)
- Topic: bug alert in latest ASL clamd rules
- Replies: 4
- Views: 7848
bug alert in latest ASL clamd rules
After updating to clamd rules published sometime tonight (CET) clamd is broken. Starting Clam AntiVirus Daemon: LibClamAV Error: cli_load(): Can't open file /var/clamav/ASL-securiteinfo.hdb LibClamAV Error: cli_loaddbdir(): error loading database /var/clamav/ASL-securiteinfo.hdb ERROR: Can't open fi...
- Fri Oct 03, 2014 3:54 pm
- Forum: Atomic Protector (formerly ASL)
- Topic: Apache down
- Replies: 13
- Views: 14785
Re: Apache down
ok, any tips how to fix it?
- Fri Oct 03, 2014 1:42 am
- Forum: Atomic Protector (formerly ASL)
- Topic: Apache down
- Replies: 13
- Views: 14785
Re: Apache down
Thanks a bunch!
- Thu Oct 02, 2014 12:14 pm
- Forum: Atomic Protector (formerly ASL)
- Topic: Apache down
- Replies: 13
- Views: 14785
Re: Apache down
Access granted!
- Thu Oct 02, 2014 9:54 am
- Forum: Atomic Protector (formerly ASL)
- Topic: Apache down
- Replies: 13
- Views: 14785
Re: Apache down
Stil no reply from support.
By manually disabling mod_sec and way I can now access web servers. ASL web is still missing.
MODSEC_ENABLED="no"
WAF_ENGINE="no"
By manually disabling mod_sec and way I can now access web servers. ASL web is still missing.
MODSEC_ENABLED="no"
WAF_ENGINE="no"
- Thu Oct 02, 2014 8:36 am
- Forum: Atomic Protector (formerly ASL)
- Topic: Apache down
- Replies: 13
- Views: 14785
Apache down
I have opened a support ticket, but until it gets picked up I was hoping for some help here. I updated to 4.0.6 and enabled the new Threat Intelligence System. After that apache isn't working anymore. Neither is the ASL web gui. I just get a page saying ERR_EMPTY_RESPONSE. I have tried to disable IP...
- Sun Jun 22, 2014 9:59 am
- Forum: Anti-Spam Help and Discussion
- Topic: PHP mail spam
- Replies: 9
- Views: 19271
Re: PHP mail spam
Thanks paulie!
I'll try the log part again. I didn't see anything suspicious the last time, but I probably wasn't looking with enough attention.
They do not have a contact form, so it sounds likely that it is parsing requests. I must look into this.
10002 is qmail-scanner, qscand.
I'll try the log part again. I didn't see anything suspicious the last time, but I probably wasn't looking with enough attention.
They do not have a contact form, so it sounds likely that it is parsing requests. I must look into this.
10002 is qmail-scanner, qscand.
- Thu Jun 19, 2014 3:37 am
- Forum: Anti-Spam Help and Discussion
- Topic: PHP mail spam
- Replies: 9
- Views: 19271
Re: PHP mail spam
Not unlikely. Then I just need to find which one...prupert wrote: Security hole in a plug-in perhaps?
- Wed Jun 18, 2014 3:48 am
- Forum: Anti-Spam Help and Discussion
- Topic: PHP mail spam
- Replies: 9
- Views: 19271
Re: PHP mail spam
That was my initial idea as well. It is an updated version of WP. I have changed the password for the users but it still keeps sending spam.
- Tue Jun 17, 2014 3:57 pm
- Forum: Anti-Spam Help and Discussion
- Topic: PHP mail spam
- Replies: 9
- Views: 19271
Re: PHP mail spam
Not that I can find. There are a few of them from all the different Wordpress-sites on the server, but all are in the correct location. The user 10001 is the user account in Linux for the "Name of website"
- Tue Jun 17, 2014 1:27 am
- Forum: Anti-Spam Help and Discussion
- Topic: PHP mail spam
- Replies: 9
- Views: 19271
PHP mail spam
A small problem. A few days a week I get hit with spam, sent to my account Received: (qmail 16615 invoked by uid 10002); 17 Jun 2014 07:08:34 +0200 X-Qmail-Scanner-Diagnostics: from by servername (envelope-from <coco888@msn.com>, uid 10001) with qmail-scanner-2.10st (clamdscan: 0.98.3/19106. mhr: 1....
- Fri Jun 13, 2014 2:36 pm
- Forum: Atomic Protector (formerly ASL)
- Topic: tortixd broken after update (ive rolled back mod_security)
- Replies: 3
- Views: 5588
Re: tortixd broken after update (ive rolled back mod_securit
Running aum -uf and asl -s -f does not fix it. I am now downgrading modsec per instructions in my support thread.
- Tue May 06, 2014 3:10 pm
- Forum: Security Alerts
- Topic: Not really an alert, but interesting to read
- Replies: 3
- Views: 7163
Not really an alert, but interesting to read
I think this article detailing a hacker attack on a server was quite an interesting read.
http://draios.com/fishing-for-hackers/
Sorry if it is wrongly placed. Please go ahead and move it.
http://draios.com/fishing-for-hackers/
Sorry if it is wrongly placed. Please go ahead and move it.