cPanel

New MailScanner Script v2.63

Changes:

  • Added abort code if on a VPS running RH9 or earlier as we no longer support these ancient obsolete OS’s

New cse v1.6

Changes:

  • Modification to upload file procedure after another change by cPanel
  • Improved file viewing when clicking on the file name in the browser window

Upgrade by simply:

wget http://www.configserver.com/free/cse.tgztar -xzf cse.tgzcd csesh install.shcd ..rm -Rfv cse.tgz cse/

New MailScanner Script v2.62

Changes:

  • Optimised perl module list requirements
  • Added common LWP procedure which provides progress reporting for downloads
  • New Mailscanner v4.66.5:http://www.mailscanner.info/ChangeLog

New MailScanner Front-End (MSFE) v4.21

Changes:

  • Fixed bug in mailwatch for clamd report statistics
  • Added common LWP procedure which provides progress reporting for downloads

New csf v3.00

Changes:

  • Added progress information to LWP downloads within csf
  • Added numiptent checking for VPS servers. csf will flush iptables and lfd will stop blocking IP’s if numiptent is nearly depleted. This should help prevent VPS lockouts due to insufficient server resources. If this happens, you will either need to reduce the number of iptables rules (e.g. disable Block List usage) or have the VPS provider increase numiptent. A value of ~700-1000 should be fine for most SPI firewall applications with full Block List configuration
  • Added support for the BOGON List (Block List) with LF_BOGON – http://www.cymru.com/Bogons/ See link and csf.conf for more information
  • Enhanced the cpanel.net lookup for httpdupdate.cpanel.net to workaround the lack of rDNS PTR records
  • Fixed problem with RELAYHOSTS not working
  • Removed use of the replace binary

New MailScanner Front-End (MSFE) v4.19

We’ve released a new version of MSFE that will upgrade ClamAV and configure and install the clamd ClamAV Daemon process. The procedure will also reconfigure MailScanner to use clamd instead of the Mail::ClamAV perl module which will now no longer be required.We’ve made these changes for two reasons:1. It separates the dependency we’ve had on Mail::ClamAV keeping up with ClamAV developments. The current problem of incompatibility between v0.20 of Mail::ClamAV and ClamAV v0.92 has happened before and held back the upgrade to the latest version of ClamAV2. There is an added benefit that we’ve discovered where this change reduces each MailScanner child processes memory footprint by ~32MB. The clamd process uses around the same amount of memory, but there’s only a need for a single process. So, the saving on the typical system that runs 3 MailScanner children is ~64MBYou will notice that if you attempt to upgrade ClamAV through MSFE before upgrading MSFE itself, you’ll receive an error instructing you yo upgrade MSFE first.

Warning: Latest ClamAV v0.92

The latest version of ClamAV just released (v0.92) is incompatible with the current latest version of the Mail::ClamAV module (v0.20), so you should not upgrade to ClamAV v0.92 until the Mail::ClamAV developer updates their code. This affects anyone using the ClamAV Module in MailScanner. For the time being, you should stay on/install only ClamAV 0.91.2

cPanel Dictionary Attack option

In CURRENT and EDGE releases of cPanel (v18335) cPanel have added their own Dictionary Attack ACL to exim. We would encourage users to use this new feature in preference to our long standing Dictionary Attack ACL.The cPanel version takes advantage of the new exim ratelimit feature and means that exim does not have to resort to running a perl script and storing IP addresses in a file. This ought to have less performance impact on exim.The cPanel ACL will block SMTP connection attempts after 5 consecutive failures rather than the 4 that we configured in ours. It maintains the block for one hour. cPanel also have a whitelist for IP’s.

MailTools v2.* breaks MailScanner

On servers that are running the perl modules that are a part of MailTools, MailScanner breaks with the recently released v2.*. The errors you will see when starting MailScanner look like this:

Variable “$FIELD_NAME” is not imported at /usr/mailscanner/lib/MailScanner/Message.pm line 6907.Variable “$FIELD_NAME” is not imported at /usr/mailscanner/lib/MailScanner/Message.pm line 6910.Global symbol “$FIELD_NAME” requires explicit package name at /usr/mailscanner/lib/MailScanner/Message.pm line 6907.Global symbol “$FIELD_NAME” requires explicit package name at /usr/mailscanner/lib/MailScanner/Message.pm line 6910.Compilation failed in require at /usr/mailscanner/bin/MailScanner line 79.BEGIN failed–compilation aborted at /usr/mailscanner/bin/MailScanner line 79.

You can determine the module version using:

perl -MMail::Header -e ‘print “$Mail::Header::VERSION\n”‘

To fix this you need to downgrade MailTools to v1.77:

wget http://search.cpan.org/CPAN/authors/id/M/MA/MARKOV/MailTools-1.77.tar.gztar -xzf MailTools-1.77.tar.gzcd MailTools-1.77perl Makefile.PL makemake installcd ..rm -Rfv MailTools-1.77*

New csf v2.92

Changes:

  • Improved the cPanel version check for < v11 and whether up to date
  • Added new CLI option -t (–temp) which lists the temporary IP bans and the TTL before the IP is flushed from iptables
  • Added “View Temporary IP Bans” to WHM UI
  • Changed WHM UI lfd Log auto-refresh default to unchecked
  • Added regex for dovecot “Aborted login” messages in /var/log/maillog
  • Added support for displaying mod_security v2 logs in WHM UI