ConfigServer is sending out lots of mails per day - is it possible to stop for a site?
We are using ConfigServer Firewall on our Cpanel server with around 200 sites.
Each day we get a huge amount of mails about mostly one site. The mails is about lfd (see under). Is it possible to stop this on only one site, or do we have to turn off the option?
Emne: lfd on cxxxxx.xxxxx.no: Suspicious process running under user stavexxxx Time: Fri Jan 12 10:10:07 2018 +0100 PID: 11089 (Parent PID:11089) Account: stavexxxxx Uptime: 79 seconds Executable: /usr/bin/perl Command Line (often faked in exploits): bash Network connections by the process (if any): tcp: 0.0.0.0:34790 -> 0.0.0.0:0 Files open by the process (if any): /dev/null /dev/null /dev/null Memory maps by the process (if any): 00400000-00402000 r-xp 00000000 fd:00 2625699 /usr/bin/perl 00601000-00602000 rw-p 00001000 fd:00 2625699 /usr/bin/perl 01ff1000-023d2000 rw-p 00000000 00:00 0 023d2000-023f3000 rw-p 00000000 00:00 0
Powered by Hetzner.com, backed up by OVH, Kimsufi and VULTR.com