Skip to main content

Monitors, LFD & Mail Queue

Govern system tracking daemons, monitor outgoing SMTP mail queues, set up live process and crontab sensors, and query public blacklist reputations (DNSBL).

Log Failure Daemon

Control background monitoring rules, trace jail variables, or exclude friendly systems from tracking routines.

Manage LFD Daemon State

Get current LFD runner state:

cpgcli lfd --status

Restart LFD engine:

cpgcli lfd --restart

Exclude Friendly Services from Tracking

Prevent service processes (such as SSH) from triggering jail bans:

cpgcli lfd --ignore sshd

Check currently ignored services:

cpgcli lfd --ignore --list

Remove service exceptions:

cpgcli lfd --ignore --remove sshd

Outbound Spam Monitor

Deploy SMTP safeguards to track mail queues, rate limits, and block spam outbreaks.

List OSM Configuration Space

Check existing SMTP policies and thresholds:

cpgcli osm --list

Enable OSM

cpgcli osm --enable

Disable OSM

cpgcli osm --disable

Set Rate Threshold Metrics

Set strict message caps per minute:

cpgcli osm --minute-threshold 60

Or specify maximum safe metrics on hourly parameters:

cpgcli osm --hourly-threshold 500

Exclude Trusted IP Addresses

cpgcli osm --whitelist-ips --add 10.0.0.1

Remove IP exception:

cpgcli osm --whitelist-ips --remove 10.0.0.1

Exclude Trusted Sender Emails

cpgcli osm --whitelist-email --add [email protected]

Exclude Active Working Directories (CWD)

Force exception paths for safe mass-mailing scripts:

cpgcli osm --whitelist-cwd-prefix --add /home/user/tmp

Register Custom Spam Header and Body Patterns

Block outgoing emails matching custom regex text:

cpgcli osm --spam-pattern --add 'from .* viagra'

Live Process Monitor

Observe running host files, trace patterns, and bypass specific background tasks.

Enable Process Monitoring

cpgcli process-monitor --enable

Disable Process Monitoring

cpgcli process-monitor --disable

Exclude Friendly Processes

Prevent matching executables or command lines from triggering protection alerts:

cpgcli process-monitor --whitelist --add '/usr/bin/safe-job'

Review Process Whitelist Entries

cpgcli process-monitor --whitelist --list

Remove Process Exclusion

cpgcli process-monitor --whitelist --remove '/usr/bin/safe-job'

Exclude Trustworthy Users

Bypasses all active processes launched by specific users:

cpgcli process-monitor --whitelist-users --add user1

List User Whitelisting

cpgcli process-monitor --whitelist-users --list

Remove User Exception

cpgcli process-monitor --whitelist-users --remove user1

Cron Monitor

Scan and manage host cron spaces for suspicious modifications or anomalous background injections.

Enable Cron Monitoring

cpgcli cron-monitor --enable

Disable Cron Monitoring

cpgcli cron-monitor --disable

Exclude Friendly Cron Spaces

Prevent specific users' cron schedules from being flagged:

cpgcli cron-monitor --whitelist-users --add user1

Review Cron User Whitelist

cpgcli cron-monitor --whitelist-users --list

Remove User Cron Exception

cpgcli cron-monitor --whitelist-users --remove user1

IP reputation monitoring

Monitor and query public sender space blocks to prevent blacklist drops.

Enable Automatic Reputation Monitor

cpgcli ip-reputation --enable

Disable Automatic Reputation Monitor

cpgcli ip-reputation --disable

Check Specific Host IP

Run live queries against the DNSBL / RBL database feeds:

cpgcli ip-reputation --check 1.1.1.1

Review Historical Status Findings

Check overall scanner evaluations:

cpgcli ip-reputation --result

Or filter for a target address:

cpgcli ip-reputation --result 1.1.1.1

Add Host/IP to Monitor

cpgcli ip-reputation --add-ip 198.51.100.10

Remove Monitored IP

cpgcli ip-reputation --remove-ip 198.51.100.10

Manage DNSBL Query Servers

Query curated block lists check engines:

cpgcli ip-reputation --list-hosts --available

Add Custom Check Hostnames

Add customized check hostnames manually:

cpgcli ip-reputation --add-host zen.spamhaus.org