General

New cxs v5.14

Changes:

  • Modified –Wrateignore [secs] so that ignored resources are rescanned once [sec] expires
  • Modified cxs watch so that resource attribute changes only trigger an inotify event if –options [w] or [W] are used
  • cxswatch.sh now disables the world writable directory check options on new installations (–options -wW)
  • Removed options –Wsymlink [script], –Wsymlinkmax [num] and –Wsymlinksec [secs]. These options provided ineffective control of such exploits and caused performance isses with cxs Watch. The options will no longer function, but cxs commands will not fail if they are used
  • Updated cxs RECOMMENDATIONS section

New cxs v5.13

Changes:

  • Ensure –Wrateignore [secs] has default values set in cxs Watch if –Wsleep [num] is set to 0
  • Added unsupported options –YRATECNT [num] and YRATESEC [secs]. See POD for more information
  • Exploit fingerprint definitions database additions

New csf v7.62

Changes:

  • Modified ModSecurity regexes to be more generic

New csf v7.61

Changes:

  • Fix issues with lfd restart via integrated UI and DA UI

New cxs v5.12

Changes:

  • Implemented native systemd support for startup and shutdown of cxs Watch
  • Added version detection for Fancybox for WordPress
  • Exploit fingerprint definitions database additions

New csf v7.60

Changes:

  • Ensure that /usr/lib/systemd/system/ is created on install on systemd servers

New csf v7.59

Changes:

  • Fix sanity check for SMTPAUTH_RESTRICT
  • Fixed incorrect reference to cxs in the generic csf installer
  • Modified csf.conf to show that LWP::Protocol::https is needed for LWP to retrieve https URLs and added examples of how to install these perl modules
  • Implemented native systemd support for startup and shutdown of csf and lfd
  • Added recommendation in csf.conf to use IPSET if wanting to set DENY_IP_LIMIT to a high value
  • If IPSET is enabled, no sanity warnings are issued for DENY_IP_LIMIT
  • Also add SSH port to TCP6_IN on new installations

New cxs v5.11

Changes:

  • Updated license servers
  • Exploit fingerprint definitions database additions

New cxs v5.10

Changes:

  • Disable –xtra [file] when using –wttw [file]
  • Display error on license retrival failure
  • Added check for perl modules LWP::Protocol::https and Linux::Inotify2 on installation and upgrade
  • Added new advanced PHP decoders
  • Exploit fingerprint definitions database additions

New csf v7.58

Changes:

  • Display warning and revert to HTTP::Tiny if URLGET is set to use LWP but the perl module is not installed