Server Software and Configuration Services
There's a quickly spreading root compromise that everyone should check for that latches onto the sshd daemon. See the following threads for details on detecting the compromise: At the very least check for the existense of libkeyutils.so.1.9 As…
Changes: – Modified mailbox actions to use dropped process priveleges to user instead of using “su” to avoid issues on systems using CageFS
Changes: – Fixed issue with single quotes appearing in CC lookup names leading to lfd IP blocks to fail
Changes: – Additional entries in csf.pignore for the cPanel installation to cater for v11.36 processes on new installations – Added workaround for cPanel check in Server Report for changes in v11.36 – Additional entries in csf.logignore on new installations…
Changes: – Ensure that modsec2.whitelist.conf is always included at the bottom of modsec2.user.conf rather than at the top. This is done whenever the UI is accessed via WHM
Changes: – Improvements to installer on initial fresh cPanel v11.36 installations – Added a 20 second timeout for running –Wsymlink [script] and switched from using system call to open3 – Added a 20 second timeout for running –script [script] and…
cPanel v11.36 has now entered the CURRENT tree and you will notice that most of your addon perl scripts failing. You can resolve this easily with our addons by reinstalling them. We have provided a simple script that can do…
Changes: – Moved suspicious script location detection to its own option within: –options [u], –doptions [u], –voptions [u] and –qoptions [u] The option is included in the default setting for –options [options]. If you specify a list in any of…
Changes: – New feature: cxs watch daemon Symlink attack detection. This option will try and detect a symlink attack against the server. If –Wsymlinkmax [num] symlinks are created with one directory within –Wsymlinksec [secs] seconds then –Wsymlink [script] will be…