Learn about Centmin Mod LEMP Stack today
Become a Member

Beta Branch Add csf_portflood function to override defaults

Discussion in 'Centmin Mod Github Commits' started by eva2000, May 4, 2018.

  1. eva2000

    eva2000 Administrator Staff Member

    44,444
    10,148
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,704
    Local Time:
    5:59 PM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    Add csf_portflood function to override defaults

    - Add new variables which can be set in persistent config file /etc/centminmod/custom_config.inc to override the default CSF Firewall PORTFLOOD values set on initial Centmin Mod install originally outlined at CSF - Insight Guide - CSF Firewall Port Flood Blocking Pure-FTPD Connections as a manual change. The new variables allow you to automatically customise PORTFLOOD hit count and interval values.

    Defaults settings below can be customised and placed in persistent config file /etc/centminmod/custom_config.inc which will be triggered on next centmin.sh call/trigger.
    Code (Text):
    #####################################################
    # CSF FIREWALL
    # PORTFLOOD Configuration
    # https://community.centminmod.com/threads/14708/
    # Setting CSFPORTFLOOD_OVERRIDE='y' allows you to
    # override default CSF Firewall PORTFLOOD values set
    # by Centmin Mod initial install. If end user made
    # custom changes to PORTFLOOD values, the override
    # will not work. Override only works if end user has
    # not made custom changes to PORTFLOOD values to ensure
    # end users customisations do not get overwritten
    CSFPORTFLOOD_OVERRIDE='n'
    # max hit count value allowed is 20
    PORTFLOOD_COUNT=20
    # lowering interval in seconds allows for more
    # port flood hits against default TCP port 21
    PORTFLOOD_INTERVAL=300
    


    Continue reading...

    123.09beta01 branch