Having played with CSF for a while on one server, I've decided I like it more than UFW and fail2ban. It seems much better at blocking mail bruteforce attacks and SSH as a distributed attack. So anyway, here's a list of steps to achieve that, as much for my record as anything. The server is running Ubuntu 16.04, but these general steps should work anywhere. In addition the server I did it on is also running VestaCP, so there are a couple more steps for that.
Alternative DNS servers in the Philippines
Sometimes the default DNS servers for ISPs in the Philippines don't work. Sometimes they get overloaded, sometimes they block certain sites and not others due to internal agendas (PLDT blocking Globe sites for eg.). So here's a list of the alternatives. Outside the Philippines Cloudflare, APNIC 1.1.1.11.0.0.12606:4700:4700::11112606:4700:4700::1001[added Mar 2019. Current favourite] Google DNS 8.8.8.88.8.4.42001:4860:4860::8888 (IPv6)2001:4860:4860::8844 … Read more
Viber SQlite Database Extraction / Forensics
Well you can use this to pull messages out of a Viber Desktop database. I personally had to do it when I re-installed Viber and it deleted my entire message history, which wasn't so friendly, so I pulled this out of the database so I could refer to it in a spreadsheet. Maybe there is … Read more
Command to find all image files which are not really image files!
Quick one this … so you've got a compromised webserver and you want to check the files on it. Many scanning tools will ignore images, but an image might not always be what it seems! Check them all with this command: find /path/to/dir -regex ".*\.\(jpg\|png\|gif\)" -exec file {} \; | grep -i -v "image data" … Read more
Bash script to clean Bots out of Apache Logs
If you've ever spent some time looking at webserver logs, you know how much crap there is in there from crawlers, bots, indexers, and all the bottom feeders of the internet. If you're looking for a specific problem with the webserver, this stuff can quickly become a nuisance, stopping you from finding the information you … Read more