Chirpy

Chirpy

  • Joined: 25th June 2013
  • Articles: 1507

cxs False-positive: [P0388]

You may see a false-positive in cxs after a recent release of fingerprint detections: # Known exploit = [Fingerprint Match] [PHP Exploit [P0388]] To remove the false-positive, run the following: rm -fv cxs -U Our apologies for any confusion…

New csf v6.43

Changes: Modified RESTRICT_SYSLOG_GROUP to always include /dev/log and /usr/share/cagefs-skeleton/dev/log, if a socket, if syslog/rsyslog process is not found and also to cater for systems using systemd (e.g. Fedora, RHEL v7, etc) RESTRICT_SYSLOG_GROUP taken out of BETA as it appears stable…

New cxs v4.16

Changes: Updated POD to reflect –[no]fallback being disabled by default Changed default value of –Wsymlinkmax to 1000 Changed default value of –Wsymlinksec to 10 Added performance note about using –Wsymlink [script] to POD Modified cxswatch restart routine to run …

New csf v6.42

Changes: New BETA option RESTRICT_SYSLOG_GROUP. This has been added for a new RESTRICT_SYSLOG option “3” which restricts write access to the syslog/rsyslog unix socket(s). See csf.conf and the new file for more information Those running our MailScanner implementation, you…

New csf v6.41

Changes: SECURITY WARNING: Unfortunately, syslog and rsyslog allow end-users to log messages to some system logs via the same unix socket that other local services use. This means that any log line shown in these system logs that syslog or…

New cxs v4.15

Changes: Memory usage improvements and general speedups Added the ability to use negative –options [-][], i.e. the default list of options is used apart from those listed when prefixed with a minus –[no]fallback now defaults to –nofallback due to performance…

New cxs v4.13

Changes: Significant speedups in regex (up to 300% faster) and FP matching Exploit fingerprint definitions database additions