Chirpy

Chirpy

  • Joined: 25th June 2013
  • Articles: 1502

New cxs v2.96

Changes: – Fixed –xtra [file] detection for regfile: and file: entries – Exploit regex definitions database additions – Exploit fingerprint definitions database additions

New csf v6.12

Changes: – Added iptables UID logging for dropped outgoing packets – New feature – DROP_OUT_LOGGING. Enables iptables logging of dropped outgoing connections. Where available, these logs will also include the UID connecting out which can help track abuse. Note: Only…

New csf v6.11

Changes: – Fixed SMTP_ALLOWLOCAL not functioning correctly. Added IPv6 support for SMTP_ALLOWLOCAL – Removed SMTP_BLOCK restriction for IPv6 requiring port 25 to be present in TCP6_OUT

New csf v6.10

Changes: – New feature – separate Blocklist configuration file to allow for expansion of the available block lists. The following options have been removed from csf.conf and a new csf.blocklists file added to configure blocklists:

New csf v6.09

Changes: – Modified csf UI to detect Webmin install and symlink script and images directory so as to no longer require Webmin module update on a new csf version – Tidied up csf UI html – Fixed System Statistics graph…

New cxs v2.93

Changes: – New features: –prenice [num], –pionice [num]. These options allow you to control the nice and ionice priorities of the running process. This can, for example, help even out the load on heavy IO servers or increase the speed…

New cxs v2.92

Changes: – Improvements to the main decoder regex – Improvements to error reporting on UI restore – Fixed typo in documentation regarding cxs.xtra :quarantine feature – Added IP, where available, to –script [script] parameters passed to external script – Exploit…

New csf v6.08

Changes: – Added IPV6_SPI workaround for CentOS/RedHat v5 and custom kernels that do not support IPv6 connection tracking by opening ephemeral port range 32768:61000. This is only applied if IPV6_SPI is not enabled. This is the same workaround implemented by…