Download Product SHA256 Checksums

We have added a single downloadable text file that contains SHA256 checksums for all of our products. The file is linked to from each product download/installation page. The checksum within the file for each product refers to the latest version that can be downloaded from our site.

The latest SHA256 checksums of all our products can be downloaded here: checksums.txt

New csf v12.12


  • Updated CloudFlare code to use GET instead of POST to retrieve the id of an entry as POST in the API is no longer working, which affected entry deletion
  • Modified –denyrm [ip] to not remove “do not delete” entries. This now must be done by editing /etc/csf/csf.deny to prevent unintentional unblocking, e.g. by MESSENGER reCAPTCHA or the UI
  • MESSENGERv2: Set KeepAlive to Off
  • Added new csf CLI cluster option: -cir, –cirm ip
    This will remove the IP from each remote /etc/csf/csf.ignore member and then restart lfd. This has also been added to the UI
  • Added missing comment to cluster –ctempdeny entries
  • Added missing timestamp to cluster –cignore entries
  • Cluster command –cignore now checks for duplicates

New csf v12.11


  • Added port 8443/tcp to cPanel server new installs to cater for the v80 calendar service. Existing installs will need to be modified manually if the service is used by adding the port to TCP_IN and TCP6_IN
  • Updated various EOL version checks in Server Report
  • Updated version modification system to check existing version before performing updates. Ensured that updates are applied chronologically

New csf v12.10


  • Added routine to select from multiple download servers for script updates
  • Added Sectigo (formerly Comodo) IPv6 DCV addresses to cpanel.comodo.allow and cpanel.comodo.ignore
  • Added support to LF_CXS for litespeed logs on cPanel
  • Added exception to csf.fignore for NodeJS yarn temporary files in cPanel v80

New cxs v10.01


  • Added new option –threads [num]. This advanced option allows cxs to utilise multiple CPU cores when performing a scan under specific conditions. See the documentation for more information
  • Improved detection when clamd is not running which forced cxs to abort with a socket error

New cxs v10.00


  • Added new option to allow in-place quarantine by renaming file. –qrename renames a file based on the new –qroptions [] list. The file remains within the users directory but with a new file extension. See the documentation for more information
  • Added new option to allow in-place quarantine by chmoding file. –qchmod [perms] changes the file permissions provided based on the new –qcoptions [] list. The file remains within the users directory but with the new file permissions. See the documentation for more information
  • Improved detection of corrupt license file. If the license file is corrupt it will be removed and a new one retrieved next time cxs is invoked under the root account
  • Added routine to select from multiple download servers for script updates
  • Fixed bug with empty string for –qoptions and –doptions