General

New csf v7.60

Changes:

  • Ensure that /usr/lib/systemd/system/ is created on install on systemd servers

New csf v7.59

Changes:

  • Fix sanity check for SMTPAUTH_RESTRICT
  • Fixed incorrect reference to cxs in the generic csf installer
  • Modified csf.conf to show that LWP::Protocol::https is needed for LWP to retrieve https URLs and added examples of how to install these perl modules
  • Implemented native systemd support for startup and shutdown of csf and lfd
  • Added recommendation in csf.conf to use IPSET if wanting to set DENY_IP_LIMIT to a high value
  • If IPSET is enabled, no sanity warnings are issued for DENY_IP_LIMIT
  • Also add SSH port to TCP6_IN on new installations

New cxs v5.11

Changes:

  • Updated license servers
  • Exploit fingerprint definitions database additions

New cxs v5.10

Changes:

  • Disable –xtra [file] when using –wttw [file]
  • Display error on license retrival failure
  • Added check for perl modules LWP::Protocol::https and Linux::Inotify2 on installation and upgrade
  • Added new advanced PHP decoders
  • Exploit fingerprint definitions database additions

New csf v7.58

Changes:

  • Display warning and revert to HTTP::Tiny if URLGET is set to use LWP but the perl module is not installed

New cxs v5.09

Changes:

  • Fix for issues where license file became corrupted after update to v5.08

New csf v7.57

Changes:

  • 7.57   – URLGET now set to “2” to use LWP by default on new installations instead of HTTP::Tiny
  • If URLGET set to use LWP, csf will perform upgrades over SSL to https://download.configserver.com
  • Added check for URLGET to Server Check
  • Added option “3” for CC_LOOKUPS to also include IP ASNs via the MaxMind GeoIPASNum database
  • Updated SSH login regexes
  • Updated named regex
  • Added 30 second timeout for ST_IPTABLES iptables stats writing to prevent a child creation loop
  • Modified lfd to restart if more than 200 children are currently active to prevent child creation loops

New cxs v5.08

Changes:

  • Fixed a rare potential issue with fingerprint processing in –xtra [file]
  • Added new advanced PHP decoders
  • Updated scripts to use https://download.configserver.com
  • Revert to using LWP::UserAgent instead of HTTP::Tiny for SSL support

Changes to ConfigServer Services

We have made changes to our product offerings

Our paid products will now consist of:

  • cPanel Service Package – as before, providing a configuration, hardening and scan service for cPanel servers.
  • ConfigServer eXploit Scanner – this service provides the installation of cxs. It also now includes setup of daily/weekly scan jobs
  • ConfigServer MailScanner Front-End – this service provides installation of our front-end to MailScanner. It also includes installation of MailScanner itself along with DCC, cmq, MailWatch, etc. Support of MailScanner itself is now restricted to the 7 day post-installation period. Any further support for MailScanner itself will provided at our discretion and be charged at an hourly rate

We are no longer offering the following:

  • Exploit scan service – this is provided for by the cPanel Service Package, though we may offer a simple scan and report add-on service on purchase of the ConfigServer eXploit Scanner product if there is demand
  • ConfigServer MailScanner Front-End license only – this is provided for by the ConfigServer MailScanner Front-End product which you can choose to install yourself if you wish

New Pricing for January 2015, plus Holiday Schedule

Script and Service Pricing – 2015

Prices for our script applications and server services will see changes in the new year from 1st January 2015.

If you want to purchase at the current prices you should do so before 1st January 2015 as we will not be offering the old prices from that date onwards.

Holiday Schedule

We will be closing our Store from 22nd to the 29th of December 2014 (inclusive).

We will be closing our Help Desk from 24nd to the 29th of December 2014 (inclusive).