Search found 1509 matches

by faris
Fri Feb 02, 2018 1:39 pm
Forum: Anti-Spam Help and Discussion
Topic: ClamAV vulnerability
Replies: 4
Views: 9019

Re: ClamAV vulnerability

I understand. Its just that I imagined there might be an exception in this case, given that it is apparently a nasty vulnerability and especially when it would affect anyone with PG boxes. Please don't think I'm complaining though! Like anyone else who uses these repos, I am extremely grateful for w...
by faris
Thu Feb 01, 2018 1:38 pm
Forum: Anti-Spam Help and Discussion
Topic: ClamAV vulnerability
Replies: 4
Views: 9019

Re: ClamAV vulnerability

I'm not seeing it in the atomic repo (as used by our Project Gamera boxes, which rely on clamd!)?

But it is in the ASL repo - thanks.
by faris
Wed Jan 31, 2018 8:50 am
Forum: Anti-Spam Help and Discussion
Topic: ClamAV vulnerability
Replies: 4
Views: 9019

ClamAV vulnerability

There's some sort of update out for ClamAV regarding a vulnerability.

What's the situation for the ASL repo? There's no update that I can see.

Thanks,
by faris
Thu Aug 24, 2017 10:10 am
Forum: Anti-Spam Help and Discussion
Topic: freschclam can't get updates - mirrors out of sync?
Replies: 1
Views: 7581

Re: freschclam can't get updates - mirrors out of sync?

The issue eventually went away on most of my systems.

But it persisted in one of them until I again deleted the mirrors.dat file and ran freshclam again, at which point it was totally happy again.
by faris
Wed Aug 23, 2017 11:47 am
Forum: Anti-Spam Help and Discussion
Topic: freschclam can't get updates - mirrors out of sync?
Replies: 1
Views: 7581

freschclam can't get updates - mirrors out of sync?

For the past 24 hours, all our systems have had problems getting updated signatures. cron keeps sending me messages saying "ERROR: getpatch: Can't download daily-[whatever].cdiff from database.clamav.net". On investigating, pretty much all the clamav mirrors seemed to have been blacklisted...
by faris
Sun Jul 23, 2017 5:50 pm
Forum: Atomic Protector (formerly ASL)
Topic: mod_evasive/Qos with nginx in front of apache
Replies: 0
Views: 10252

mod_evasive/Qos with nginx in front of apache

I was wondering if there's any benefit or not in enabling mod_evasive/mod_qos via ASL when nginx is set up as a reverse proxy in front of Apache (i.e. Plesk standard install).
by faris
Fri May 05, 2017 12:53 pm
Forum: Atomic Protector (formerly ASL)
Topic: Firewall config for Explicit FTP over TLS
Replies: 2
Views: 9134

Re: Firewall config for Explicit FTP over TLS

Aha. Makes sense. Thank you again!
by faris
Wed May 03, 2017 6:14 am
Forum: Atomic Protector (formerly ASL)
Topic: Firewall config for Explicit FTP over TLS
Replies: 2
Views: 9134

Firewall config for Explicit FTP over TLS

I'm a bit confused as usual, and was hoping I could get some pointers. On a Plesk 12.5/Onyx boxes under Centos 7 with ASL, customers are unable to use Explicit FTP over TLS. They can connect OK, but the FTP client will then timeout trying to get a directory listing. The behaviour customers experienc...
by faris
Sat Apr 29, 2017 4:42 am
Forum: Atomic Protector (formerly ASL)
Topic: Plesk 10.4.4 Webmail newsfeed "attack"
Replies: 2
Views: 8843

Re: Plesk 10.4.4 Webmail newsfeed "attack"

Yes that would work. Definitely.

Faris
by faris
Thu Apr 27, 2017 11:10 am
Forum: Atomic Protector (formerly ASL)
Topic: Plesk 10.4.4 Webmail newsfeed "attack"
Replies: 2
Views: 8843

Plesk 10.4.4 Webmail newsfeed "attack"

One of my customers has suddenly found themselves being regularly shunned by ASL due to rule 4151 triggering for multiple attempts to access port 8480 from the customer's IP. Thanks to Lemonbit (or was it Breun) having posted about something similar in the past, a loud bell rang in the back of my he...
by faris
Thu Mar 23, 2017 8:09 am
Forum: Atomic Protector (formerly ASL)
Topic: Plesk brute force rules
Replies: 2
Views: 8509

Re: Plesk brute force rules

Done. #1470 in zendesk.
by faris
Thu Mar 16, 2017 10:48 am
Forum: Atomic Protector (formerly ASL)
Topic: Plesk brute force rules
Replies: 2
Views: 8509

Plesk brute force rules

The default Plesk login brute force rules don't seem strict enough to me. Unlike the situation with email brute force, where you have to allow for users doing daft things or not realising their device has the wrong password and letting it retry endlessly, brute force attacks on Plesk itself, especia...
by faris
Sun Feb 26, 2017 4:19 pm
Forum: Help with other free stuff
Topic: High cpu issue (need your advice, please)
Replies: 3
Views: 15370

Re: High cpu issue (need your advice, please)

In a different scenario, we were seeing something that resulted in a 404 cause a high load. I forget what script it was. The problem was that whatever the script was, it was trying to search for a page that was related to whatever was being requested. This was causing a high php and MySQL load for s...
by faris
Tue Jan 17, 2017 10:17 pm
Forum: PHP Help and Discussion
Topic: running exec
Replies: 2
Views: 11548

Re: running exec

Are you saying disallow fcgi file processing?

I'd have to remove /etc/httpd/conf.d/mod_fcgid.conf.
Won't that break .... lots of things?
by faris
Mon Jan 16, 2017 9:50 am
Forum: PHP Help and Discussion
Topic: running exec
Replies: 2
Views: 11548

running exec

I've recently set up a particular script and associated bits and bobs and eventually got it to work. Then it hit me, hard, that it should NOT have worked. Or at least I don't think it should have. I have a site running with php 5.6 (php-fpm mode) In /httpdocs there's a file we'll call "file.fcg...