Added csf.allow and GLOBAL_ALLOW lookups during lfd blocking and note added to alert if ip match found
Modified Server Check for Fedora v9 EOL now that Fedora v11 has been released
Modified iptables output from csf.pl to exclude the Fedora v11 intrapositioned negation messages
Fixed typo in integrity.txt alert template for new installations
Modified the email header for csf –mail
Fix Relay Tracking from 127.0.0.1 to always report as a LOCALRELAY
Modified lfd output filehandle names to avoid read/write conflicts
Added Advanced Allow/Deny Filters for csf.dyndns. See readme.txt for an example
Added new option CC_ALLOW_FILTER as an alternative to CC_ALLOW where only listed Country Codes are allowed, however normal port and packet filter rules are still applied to those connections. All other connections are dropped
Modified UI access to csf.sips to display checkboxes instead of direct editing, for ease of use
Fixed problem where RELAYHOSTS setting wasn’t always being honoured
Modified mod_security configuration editor to handle HTML elements
Rewritten RT_*_ALERT regex and counting code to better deal with a variety of exim log output formats
Added recipient count to RT_*_ALERT to include emails sent to multiple recipients. This option requires that the exim log_selector setting in the exim configuration includes the option: +received_recipients So, the recommended log_selector setting is now:
New feature – Added new CLI option: csf –mail (or csf -m) which can take an email address as an argument. It will display the Server Check in HTML or send the output to the email address if present
Added option to UI Server Check to schedule csf to generate the report and email the results to the address specied at the interval specified
Removed MySQL check from cPanel DNSOnly Server Check
Updated the perl v5.8.8 Server Check comment
Fixed sanity check for RT_*_BLOCK
Fixed copy of install.txt for generic installs and upgrades
Modified UI for Deny Servers IPs > Change to indicate that csf needs restarting, not lfd
Added built-in replacement function for the Messenger Service message files for [HOSTNAME] which will be replaced by the servers FQDN hostname. Updated the sample Messenger index templates
Updated the uninstall scripts to remove the cronjob and logrotate files
Added colour highlights to the Quick Allow and Quick Deny UI boxes
Modified the Server Check for cPanel update settings to check for daily updates more accurately
Added Server Check for cPanel tree
Upgraded IP::Country
New feature – Added sanity check to configuration values in csf, UI Server Check and UI Firewall Configuration. In the UI Firewall Configuration: lines highlighted in red fall outside the recommended range; lines highlighted in pale green differ from the default on installation
Added cPanel Security Check to check that at least one configured nameserver is on a different server
Added proftpd checks to csf (for VPS servers) and in Server Check
Added DirectAdmin Checks to UI Server Check for: SSL login to DA; proftpd cipher; nameserver on a different server; PHP version and configuration checks; Apache version; dovecot cipher
