Changes:

- Updated Donation buttons

Changes:

- For cPanel v11.32+ run /scripts/updateuserdomains instead of /scripts/update_email_limits

- Added Javascript confirmation to "Empty Directory" button



 

Changes:

- Improvements to hidden script file detection

- Added formatting to cgi and ftp email reports

- Added new fields to the cgi email report

- Change POD Examples section to use full command line options

- Improvements to ignoring any files based on md5sum (including those identified as exectuables, viruses, etc)

- Remove extraneous spaces from ignore and xtra md5sum entries

- Improvements to --MD5 so that all reported files displays the md5sum

- Changed the way md5sum values are displayed if --MD5 is used

- Improvements to the main decoder regex

- Exploit fingerprint definitions database additions



 

Changes:

- Removed check for Melange on cPanel servers from Server Check Report

- Improvements to the cPanel exim SMTP AUTH login failure regex after changes in cPanel v11.32

- Added exe:/usr/local/cpanel/3rdparty/sbin/mydns to csf.pignore for new installs on cPanel servers

- Additional cmd/pcmd suggestions added to csf.pignore for new installs on cPanel servers (not enabled)

Changes:

- Ensure that an account name is only passed to --script [script] when performing a manual scan using --user or --all

- Ignore adobe-xap-filters when detecting hidden script files

- Exploit fingerprint definitions database additions



 

Changes:

- Improvements to quarantine procedure

 

Changes:

- Fixed a problem in the UI where the selections for --options were applied from /etc/cxs/cxs.defaults, if set, rather the selections in the UI if all the standard selections were ticked

- UI improvements

- Change file name check behaviour so that it still detects with empty files

- Include all item sizes in --summary report

- Include all ignored files in --summary report

- Improvements to hidden script file detection

- Exploit fingerprint definitions database additions

Changes:

- Fixed problem with quarantine move failing - introduced in v2.56

- Implement ignores for rate limit warnings in cxs Watch daemon

- Allow a value of 0 for --filemax [num] which disables the feature

- Set --filemax [num] to 0 in cxswatch.sh for new installs



 

Changes:

- Improvements to quarantine move failure message

- Implement ignores in compressed files

- Added a rate limit warning to cxs Watch daemon. If a file is scanned more then (2 * Wsleep) times in (10 * Wsleep) seconds then a warning is logged. This is to help identify frequently scanned files that you might want to ignore (e.g. if they are very frequently updated log files)

- Improved installation procedure for checking required perl modules

- Exploit fingerprint definitions database additions

 

Changes:

- Remove atd from Service Check in Server Check Report

- Ensure all DNS traffic between non-local IP addresses in /etc/resolv.conf is allowed through the firewall when DNS_STRICT_NS is not enabled

- Added exim to example script pt_deleted_action.pl

- Added /var/log/cxswatch.log to csf.logfiles for new installations

- Added new option LF_ALERT_SMTP which allows lfd to be configured to send alert emails via SMTP instead of through the SENDMAIL binary. LF_ALERT_SMTP needs to be set to the name or IP address of the SMTP server to use this feature

- Added new option CC_DROP_CIDR. Set this option to a valid CIDR to ignore CIDR blocks smaller than this value when implementing CC_DENY/CC_ALLOW/CC_ALLOW_FILTER. This can help reduce the number of CC entries and may improve iptables throughput

- Improved installation procedure for checking required perl modules