New csf v10.08

Changes:

  • Added cpanel.allow and cpanel.ignore Include files for the cPanel authentication servers. These are included on new installations and added to existing files on cPanel installations
  • If running cPanel 1:1 NAT, use the contents of /var/cpanel/cpnat to whitelist/ignore the external IP addresses

New csf v10.07

Changes:

  • Fixed bug when using RECAPTCHA_NAT where the listed IP’s were not correctly processed
  • Server Check now follows includes in dovecot.conf
  • Server Check now reports RHEL/CentOS/CloudLinux v5.* as EOL

New cmq v2.04

Changes:

  • Added delete confirmation modal for multi-delete buttons
  • Added option to open links in a new window/tab before entering View Emails
  • Prevent overflow of View Emails table
  • Scroll to top of page when displaying modal

New csf v10.06

Changes:

  • Added new entry in csf.pignore on cPanel servers for:
    exe:/usr/libexec/dovecot/indexer
    exe:/usr/libexec/dovecot/indexer-worker
  • Croak if IPTABLES is not set, incorrect or not present in csf.conf
  • Set SELinux context for /etc/logrotate.d/lfd on new generic installs

New cxs v6.35

Changes:

  • Added support for scanning a space separated list of files, directories and globs. See POD for RESOURCE for more information
  • Updated POD to remove line splitting for sample commands
  • Improvements to Universal decoder
  • Modified Universal decoder to report bayes score (–[no]bayes)
  • New –options [r]. This will trigger a match for the universal decoder regex used by –options [D] when decoding scripts. This is now added to the default –options [options] string. This reports as “r” during a scan
  • Modified reporting behaviour where –options [R] was reporting during a scan as “m” so that it now reports as “R”
  • Note: If you are using –script [script] then the above two changes may require modifications to your [script] file

New csf v10.05

Changes:

  • Fixed table header html/css
  • Added workaround for adding superusers listed in /etc/csf/csf.syslogusers to the RESTRICT_SYSLOG_GROUP if the log socket is not accessed via the owner permissions
  • Changes for cPanel v64 template
  • Updated text description in csf.dirwatch for new installs