Chirpy

Chirpy

  • Joined: 25th June 2013
  • Articles: 1507

New csf v4.18

Changes: Modified temporary IP address storage to use a tied file to preserve temporary bans if lfd is writing during shutdown

New csf v4.17

Changes: Replaced the use of backticks in csf, lfd and the WHM UI with calls to IPC::Open3 Various lfd and csf code improvements and tidy up Ensure lfd parent dies cleanly on error Debug information improved and timer modified to…

New csf v4.16

Changes: Removed port 953 from the TCP and UDP allow lists for new csf installations as it’s not necessary to whitelist as bind listens on the localhost device for such control connections by default Added exe:/usr/sbin/nsd, exe:/usr/libexec/dovecot/pop3-login, exe:/usr/libexec/dovecot/imap-login to new…

New csf v4.15

Changes: Fixed a problem in v4.* where use of GALLOW and ALLOWDYN was allowing connections from blocked IP addresses in csf.deny or temporary blocks. The GALLOW, GDENY and ALLOWDYN chains have been split into GALLOWIN, GALLOWOUT, GDENYIN, GDENYOUT, ALLOWDYNIN and…

New csf v4.14

Changes: Implemented the use of cPanel routine Cpanel::Rlimit to remove process resource limit restrictions as the cPanel memory limitation setting was causing the Server Check to abort with memory allocations problems through WHM on some servers Modified port checking for…

New csf v4.12

Changes: Modified lfd Login Failure tracking to use a per IP address rolling LF_INTERVAL window rather than a static one for all tracked IPs. This makes login failure counting more accurate and blocking more responsive Added new feature – Block…

New csf v4.11

Changes: Fixed addition of exe:/usr/libexec/hald-addon-keyboard to csf.pignore for existing installations Modified the calculation for the position of LOCALOUTPUT in the OUTPUT chain Added to restart lfd daily Added exe:/usr/libexec/dovecot/imap and exe:/usr/libexec/dovecot/pop3 and exe:/usr/sbin/mysqld_safe to csf.pignore Modified SCRIPT_ALERT regex to…