Added cpanel.allow and cpanel.ignore Include files for the cPanel authentication servers. These are included on new installations and added to existing files on cPanel installations
If running cPanel 1:1 NAT, use the contents of /var/cpanel/cpnat to whitelist/ignore the external IP addresses
Added support for scanning a space separated list of files, directories and globs. See POD for RESOURCE for more information
Updated POD to remove line splitting for sample commands
Improvements to Universal decoder
Modified Universal decoder to report bayes score (–[no]bayes)
New –options [r]. This will trigger a match for the universal decoder regex used by –options [D] when decoding scripts. This is now added to the default –options [options] string. This reports as “r” during a scan
Modified reporting behaviour where –options [R] was reporting during a scan as “m” so that it now reports as “R”
Note: If you are using –script [script] then the above two changes may require modifications to your [script] file
Added workaround for adding superusers listed in /etc/csf/csf.syslogusers to the RESTRICT_SYSLOG_GROUP if the log socket is not accessed via the owner permissions
Changes for cPanel v64 template
Updated text description in csf.dirwatch for new installs
Added new option MESSENGER_HTTPS_SKIPMAIL on cPanel installations. This option ignores ServerAlias definitions that begin with “mail.”. This can help with memory usage on systems that do not require the use of MESSENGER_HTTPS on those subdomains. The option is enabled by default on cPanel servers
Improved RECAPTCHA_* hostname check
Cluster CLI can now block CIDRs, e.g LF_NETBLOCK blocks will be applied cluster-wide
