CSF Firewall

June 27, 2006

As of this evening, we’ve disabled the APF/BFD firewall and replaced it with CSF/LFD. Users should not notice any surface difference. This change was made for two reasons: 1) CSF is totally integrated with cPanel (though users do not have an interface onto it) and 2) It does a much better job of watching various logs across the server for bad behavior and adding offending IPs to its deny list. We also plan  some deeper customization of these rules based on logs from blog comment spam attacks.