General

New csf v12.11

Changes:

  • Added port 8443/tcp to cPanel server new installs to cater for the v80 calendar service. Existing installs will need to be modified manually if the service is used by adding the port to TCP_IN and TCP6_IN
  • Updated various EOL version checks in Server Report
  • Updated version modification system to check existing version before performing updates. Ensured that updates are applied chronologically

New cxs v10.03

Changes:

  • Modified reputation system to not report distributed attacks

New cxs v10.02

Changes:

  • Remove the internal –downloadserver command from the CLI scan reports

New csf v12.10

Changes:

  • Added routine to select from multiple download servers for script updates
  • Added Sectigo (formerly Comodo) IPv6 DCV addresses to cpanel.comodo.allow and cpanel.comodo.ignore
  • Added support to LF_CXS for litespeed logs on cPanel
  • Added exception to csf.fignore for NodeJS yarn temporary files in cPanel v80

New cxs v10.01

Changes:

  • Added new option –threads [num]. This advanced option allows cxs to utilise multiple CPU cores when performing a scan under specific conditions. See the documentation for more information
  • Improved detection when clamd is not running which forced cxs to abort with a socket error

New cxs v10.00

Changes:

  • Added new option to allow in-place quarantine by renaming file. –qrename renames a file based on the new –qroptions [] list. The file remains within the users directory but with a new file extension. See the documentation for more information
  • Added new option to allow in-place quarantine by chmoding file. –qchmod [perms] changes the file permissions provided based on the new –qcoptions [] list. The file remains within the users directory but with the new file permissions. See the documentation for more information
  • Improved detection of corrupt license file. If the license file is corrupt it will be removed and a new one retrieved next time cxs is invoked under the root account
  • Added routine to select from multiple download servers for script updates
  • Fixed bug with empty string for –qoptions and –doptions

New cxs v9.26

Changes:

  • Fixed issue with internal fingerprint ignore

New cxs v9.25

Changes:

  • Create /var/log/cxsreports/ on installation/upgrade
  • Change documentation to use /var/log/cxsreports/ for –report [file]
  • Change cxs-cron for new installations to create logs in /var/log/cxsreports/
  • Added direct link to Scan Reports in the UI for previous scan reports if logged in the database
  • Fixed FA5 HTML icon

New csf v12.09

Changes:

  • Added new option CT_SUBNET_LIMIT. If the total number of connections from a class C subnet is greater than this value then the offending subnet is blocked according to the other CT_* settings. This option is disabled by default
  • Removed ALTTOR from csf.blocklists on new installations as it has been discontinued
  • Use ConfigServer::Slurp to read csf.resellers to avoid invalid line endings
  • Modified CLUSTER_SENDTO and CLUSTER_RECVFROM so that they can be set to a file instead of listing IP’s within the respective setting. See csf.conf for more details
  • Removed open_basedir check on cPanel servers in Server Check
  • Fixed csf.conf typo
  • Updates to Courier IMAP regexes for Plesk