General

Changes:

• Fixed issue with csf.allow Include checks when allowing an IP
• Added the Greensnow blocklist to csf.blocklists for new installs
• Fixed display of ports in CLI temporary blocks
• Fixed issue removing CIDR blocks via the CLI from csf.deny

Changes:

• Fix profile diff in the CLI
• Fixed issue with deny removal by IP address of advanced rules in the CLI

Changes:

• Additional fix for ip6tables MESSENGER service when LF_IPSET not enabled (ip6tables nat)

Changes:

• AUTOSHUN list removed from csf.blocklists as the public list is no longer available
• Added support for ip6tables MESSENGER service when LF_IPSET not enabled (ip6tables nat)

Changes:

• Fixed removal of complex allow and deny rules
• Fixed IPv6 implementation of CC_ALLOW_PORTS_* and CC_DENY_PORTS_*
• Fixed file upload in cse via the integrated UI
• Fixed “csf –cfile [file]”
• Removed setting: OLD_REAPER
• Localised SIGNALs
• Localised uid and gid change in MESSENGER
• Removed Bareword file handles
• Where ip6tables <= v1.3.5 and IPV6 is enabled, disable USE_CONNTRACK if enabled as ip6tables does not support the conntrack module in older versions. This will force the use of the state module instead

Changes:

• Fixed incorrect inclusion of cPanel Free SSL service include entries on new non-cPanel installations