New csf v2.66

Changes:

  • Modified LF_CPANEL text in csf.conf for new installations to reflect the change in the SSL login handling by cPanel (i.e. it does now log SSL login IP’s)
  • Modified the log line monitoring in lfd to cope with log line flooding to prevent looping/excessive resource usage. Also recoded without the use of the POSIX routines
  • lfd process name now shows which log file it is scanning

New csf v2.65

Changes:

  • New Feature: System Integrity Checking. This enables lfd to compare md5sums of the servers OS binary application files from the time when lfd starts. If the md5sum of a monitored file changes an alert is sent. This option is intended as an IDS (Intrusion Detection System) and is the last line of detection for a

Ouch, that hurt!

Our apologies if you’ve been trying to contact us today. We had a main hard drive failure on our configserver/waytotheweb server which took us down for a while.Many thanks to our server provider Coreix for their very prompt work in getting us back up with a new disk.I then had the fun of running our own restore service on our own server ;)Well, we’re back up and running now 😀

New csf v2.60

Changes and additional OS support:

  • Added log file locations to csf.conf
  • openSUSE v10 compatible (generic)
  • Debian v3.1 (sarge) compatible (generic)
  • Unbuntu v6.06 LTS compatible (generic)
  • Added installation check for the LWP (libwww-perl) perl module
  • Ran spell checker against the readme.txt file

ConfigServer cPanel Services

We’ve decided to simplify our cPanel Server Service packages to a single package (with a MailScanner option). This has been done for a one main reason – we’ve found that many people who were purchasing the smaller packages were needing the security features of the large packages and weren’t benefitting from them, frequently purchasing additional services from us to bring their servers up to the Full Service spec.To better service our customers we’ve created a single package that tackles all of the apsects of server security and management that we deal with. We’ve reduced the price of what was the cPanel Full Service package for the new all encompassing package.We have not removed any features at all whilst doing this.We hope the change benefits our customers in making their servers more secure and managable.

chkrootkit v0.47 released

chkrootkit 0.47 is now available!  This version includes:  * chkproc.c    - some bug fixes, thanks to Lantz Moore    - use of getpriority() to identify LKMs, thanks to      Yjesus(unhide) and Slider/Flimbo (skdet)    - new rootkit detected:       - Enye LKM  * chkrootkit    - new test:       - crontab    - new rootkits/worms detected:       - Enye LKM       - Lupper.Worm       - shv5    - more ports added to the bindshell test    - some minor bug fixeschkrootkit is a tool to locally check for signs of a rootkit.  Moreinformation about chkrootkit and rootkits can be found athttp://www.chkrootkit.org/.