New csf v12.07

Posted on by Chirpy

Changes:

  • Added commented out regex lines in csf.pignore on cPanel servers for the upcoming ubic implementation by cPanel
  • Added port 53 filters in cpanel.comodo.allow on cPanel servers
  • Added postfix support for LF_DISTSMTP
  • Switched Sendmail and URLGET modules from using croak to carp to avoid unexpected parent death from child failure
  • Double fork external commands in DA UI to work around DA mod_perl restrictions, allowing full functionality
  • Added reason text information to IPs and CC_LOOKUPS to netblocks for LF_PERMBLOCK and LF_NETBLOCK reports and csf.deny entries

New osm v1.12

Posted on by Chirpy

Changes:

  • osm will now reprocess exim log line events for the total number of
    recipients listed. This ensures that for this type of detection a
    single email sent to hundreds of recipients will not count as a single
    event, but the total number of recipients. This option can be disabled
    if each log line should be treated as a single event in the Main
    Configuration
  • Improved parent/child pipe processing to avoid delays due to buffering

New csf v12.05

Posted on by Chirpy

Changes:

  • Removed rbl.jp RBLs from csf.rbls
  • Modify Project Honey Pot blocklist URLs to use https
  • Ignore $SIG{PIPE} when running ipset
  • Ensure csf shows ipset warnings
  • Added osmd to lfd restart routine when cPanel upgrades
  • Modified Server Check to look for underscore as well as dash settings
  • Added test in lfd to ensure the pidfile is open before attempting to close it
  • Added new regex for LF_EXIMSYNTAX
  • Added new option: URLPROXY. If you need csf/lfd to use a proxy, then you can set this option to the URL of the proxy