Server Software and Configuration Services
If you are running the version 3+ of rsyslog then you may not be logging iptables kernel logs.This will prevent investigation of iptables block issues and the csf Port Scan Tracking feature.You need to check and ensure that the…
Changes: New option CLUSTER_MASTER which is the IP of the master node in a cluster allowed to send CLUSTER_CONFIG changes. This must be set in order to use CLUSTER_CONFIG options Added new Cluster CLI option –cfile (-cf) for sending a…
See ClamAV changelog:http://git.clamav.net/gitweb?p=clamav-devel.git;a=blob_plain;f=ChangeLog;hb=clamav-0.96.1
Changes: If ftp is disabled in cPanel do not start pure-uploadscript New –options [E]. This option will match scripts that send out email using sendmail, exim or via SMTP. This option requires that –options [m] is also specified Improvement to…
Changes: Fixed bug introduced in v5.04 that omitted two outgoing DNS lookup rules that could affect servers where iptables connection tracking isn’t working correctly
Changes: Increased PT_USERMEM default to 200 from 100 for new installations Fixed bug introduced in 5.04 when checking the GLOBAL_ALLOW list for report generation in lfd which caused lfd to fail in Net::CIDR::Lite
Changes: Updated the Server Check report IPv6 text Fixed ip6tables command execution in iptables firewall during startup New
Changes: Added BETA IPv6 support. See csf.conf for more information on the new settings: IPV6 IP6TABLES IPV6_ICMP_STRICT IPV6_SPI TCP6_IN TCP6_OUT UDP6_IN UDP6_OUT New CLI option csf –status6 (csf -l6) added to list ip6tables rules Changed temporary DENY and ACCEPT working…
Changes: Fixed issue introduced in v1.26 that prevented ignoring of hdir and hfile options in an ignore file
Changes: Skip processing a home directory of / whe using –all Exploit regex definitions database additions Exploit fingerprint definitions database additions New