New csf v14.10

Posted on 4th May 2021 by Chirpy

Changes:

Fixed error message regarding location/permissions to the iptables binary in correctly referencing ip6tables
Added PASV port range hole for VZ servers on cPanel for new installs
Fixed MESSENGERV3 Apache tree search where ServerRoot is not configured so that csf defaults to /etc/apache2/ so that relative Includes are still defined correctly
Modified LF_BIND regex to deal with new log field

New MailScanner Front-End (MSFE) v9.09

Posted on 22nd April 2021 by Chirpy

Changes:

Improved cPanel perl version checking on install to ensure cPanel perl rpms are installed
Fixed issue on DA where PATH does not contain /usr/sbin/ preventing csf blocking from within MailControl
Updated cPanel end-user UI config allowed_parents with the latest perl version to fix message downloading

New cxs v13.00

Posted on 13th April 2021 by Chirpy

Changes:

NOTICE: Removed the long deprecated cxs integration with pure-ftpd. If this option was still installed and enabled, then this version of cxs will automatically stop and uninstall the pure-ftpd integration with cxs and cannot be re-enabled
Fixed issue with missing Account Creation Hook with cPanel install which prevented cxswatch detecting newly created cPanel accounts
Released a new and improved Bayesian database
Added new probability level of “veryhigh” which is now the default level for –paction [level] if B is added to quarantine/delete options
Renamed –[no]bayes to –[no]probability
Renamed –breport [level] to –preport [level]
Renamed –baction [level] to –paction [level]
Note: the old commands continue to work as synonyms so no changes to existing installations is needed
Added Probability results to the Scan Summary if enabled

New osm v2.00

Posted on 1st April 2021 by Chirpy

Changes:

Added BETA support for DirectAdmin on RHEL/CentOS/CloudLinux/AlmaLinux v7+ and v8+. BETA means that there may be bugs or missing features in the DA installation before final release

Notice of removal of cxs integration with pure-ftpd

Posted on 30th March 2021 by Chirpy

We deprecated the integration of cxs with pure-ftpd way back in 2019:

New cxs v11.04

The next release of cxs will remove this integration completely and no longer be available.

Any existing installation still using this integration will see this removed on upgrade. It cannot then be re-enabled as the components will have been completely removed.

New cxs v12.06

Posted on 11th March 2021 by Chirpy

Changes:

Improved memory overhead when processing tarballs
Improved memory overhead when processing zip files
Ensure /etc/cxs/sessions is created
Allow “–threads 1” to help memory footprint
Modified –threads [num] to add an “auto” option, i.e. –threads auto. This will calculate an optimum number of threads on servers with more than 4 CPUs. See docs for more information
Updated documentation to specify processor threads, not cores
Fixed –threads [num] report post-processing sorting

New csf v14.09

Posted on 5th March 2021 by Chirpy

Changes:

Improvements to CC IP lookup binary search
Modified index.recaptcha.php and index.php to use square instead of deprecated curly brackets on array index for PHP v7.4+
Modified Server Check regex matching on include in dovecot config files in RHEL v8+
Added workaround for iOS issue with bootstrap modals
Added EOL messages to Server Check report
Modified dovecot.conf parsing on cPanel for include_try in Server Check
Modified Apache 404 regex to check for either “info” or “error”
Added two new CLI options: –temprma [ip], –temprmd [ip]. This allows distinction between allow and deny that does not exist for –temprm [ip]
Updated UI to offer either –temprma [ip] or –temprmd [ip] instead of –temprm [ip]
Added PHP v7.2 EOL notice to Server Report