Chirpy

Changes: Added more executable files to csf.pignore on cPanel servers for cPanel v11.5*+ Added warning to both csf output and Server Check report if PT_USERKILL is enabled

Changes: Fixed bug where iptables nat tables were not being flushed or grepped correctly

Changes: Modified DYNDNS and GLOBAL_DYNDNS to use the host binary if available for more reliable IPv4 and IPv6 reverse lookups Fixed IPv6 use of ipset for DYNDNS and GLOBAL_DYNDNS Added new csf CLI option: –lfd [stop|start|restart|status]. Actions to take with…

Changes: Modify ConfigServer::CheckIP to cope with entries not passed by reference

Changes: Added new option CC6_LOOKUPS. This adds IPv6 support for Country Code and Country lookups Added new option LF_NETBLOCK_IPV6. This adds IPv6 support for LF_NETBLOCK Modified LF_LOOKUPS to use the host binary if available for more reliable IPv4 and IPv6…

Changes: Fix for temporary denies allowing duplicate IP/Port blocks/allows Speedup csf –grep [ip] when searching IPSET sets. Note: This does mean that partial IP queries will no longer match IPSET entries Added new options LF_IPSET_HASHSIZE and LF_IPSET_MAXELEM to allow for…

Changes: Added new option PT_SSHDHUNG. Terminate hung SSHD sessions. When under an SSHD login attack, SSHD processes are often left hung after their connecting IP addresses have  been blocked. This option will terminate such processes. See csf.conf for more info…