cfs Error

ERROR

You can also set it from csf configuration file.

1) Open the csf configuration file.

 # vi /etc/cfs/csf.conf

2) search for “RESTRICT_SYSLOG”. It will be like

RESTRICT_SYSLOG = “0”

3) Change it to

RESTRICT_SYSLOG = “3”

4) Restart csf.

# /etc/init.d/csf restart

Also, when I look at /etc/csf/csf.syslogusers, it states - "Add any accounts that log through syslog that are not listed that you need". It then goes on to list a bunch of accounts -

# OS application users:

daemon

dbus

haldaemon

messagebus

mysql

named

nfsnobody

ntp

polkitd

root

rpc

rpcuser

smmsp

statd

# cPanel application users:

cpanel

cpses

dovecot

dovenull

mailman

mailnull

# DirectAdmin application users:

dovecot

mail

# Other users:

-----------------------------------------------------------------

1

2

*WARNING* Binary location for [HOST] [/usr/bin/host] in /etc/csf/csf.conf is either incorrect, is not

installed or is not executable

*WARNING* Missing or incorrect binary locations will break csf and lfd functionality

#   yum -y install bind-utils

#   csf -r


Fix 8 Common Errors on CSF (ConfigServer Security & Firewall)

1.) *WARNING* Binary location for [CHATTR] [/usr/bin/chattr] in /etc/csf/csf.conf is either incorrect, is not installed or is not executable

To solve this problem, we need to install the E2fsprogs (Ext2 Filesystem Utilities) package. Run the following command to install the E2fsprogs package.

For Debian/Ubuntu Server:

$ apt-get install e2fsprogs

For RHEL/CentOS Server:

$ yum install e2fsprogs

2.) Oops Unable to download Protocol scheme ‘https’ is not supported (IOSocketSSL not installed)

This error is most often found when we fail to update CSF Firewall on RHEL/CentOS. To fix this problem, please run the following command to install the required packages.

$ yum install perl-Crypt-SSLeay perl-Net-SSLeay

And then try again to update your CSF.

$ csf -u

3.) Oops Unable to download Protocol scheme ‘https’ is not supported (LWPProtocolhttps not installed)

To resolve this issue, you need to install the LWP::Protocol::https module on your server. Simply run the following command to install the required packages.

For RHEL/CentOS Server:

$ yum install perl-LWP-Protocol-https

For Debian/Ubuntu Server:

$ apt-get install perl-LWP-Protocol-https

4.) Testing ip_tablesiptable_filter…open3 exec of sbiniptables -I OUTPUT -p tcp –dport 9999 -j ACCEPT failed at usrlocalcsfbincsftest.pl line 144.

This error is caused because you don’t have iptables installed correctly on your server. So let’s install iptables to solve this issue.

For Debian/Ubuntu Server:

$ apt-get install iptables

For RHEL/CentOS Server:

$ yum install iptables

5.) *WARNING* Binary location for [SENDMAIL] [/usr/sbin/sendmail] in /etc/csf/csf.conf is either incorrect, is not installed or is not executable

*WARNING* Missing or incorrect binary locations will break csf and lfd functionality

This error message is most often found after the CSF Firewall installation process has finished. That’s closely related to the SENDMAIL problem. So to solve this issue, simply run the following command:

$ echo '#!/bin/sh' > /usr/sbin/sendmail

$ chmod +x /usr/sbin/sendmail

6.) *WARNING* Binary location for [UNZIP] [usrbinunzip] in etccsfcsf.conf is either incorrect, is not installed or is not executable

Looking at the error message above, it’s clearly related to the ZIP and UNZIP utility packages that are not yet installed on your Linux server. So to solve this problem quite easily, you just need to install the ZIP and UNZIP command-line utility on your Linux server.

For Debian/Ubuntu Server:

$ apt-get install zip unzip

For RHEL/CentOS Server:

$ yum install zip unzip

7.) *WARNING* URLGET set to use LWP but perl module is not installed, reverting to HTTP::Tiny

This problem is very similar to the error message No. 3 above. But this problem indicates that we don’t have the Perl module installed correctly on the server. Well, the solution is very easy, just run the following command to install the Perl module on your Linux server.

For Debian/Ubuntu Server:

$ apt-get install libwww-perl

$ apt-get install perl-LWP-Protocol-https

For RHEL/CentOS Server:

$ yum install perl-libwww-perl

$ yum install perl-LWP-Protocol-https

8.) *WARNING* Binary location for [HOST] [usrbinhost] in etccsfcsf.conf is either incorrect, is not installed or is not executable

This last CSF error message clearly tells us that we have not installed BIND Utilities. So to solve this error, simply run the following command to install BIND Utilities on your server.

For Debian/Ubuntu Server:

$ apt-get install dnsutils

For RHEL/CentOS Server:

$ yum install bind-utils





=---------------------------------