Well, it’s here in beta form. If you would like to try out our new firewall application then please drop me an email at firstname.lastname@example.org and I’ll send you the tarball.We have done a lot of work making sure that the firewall won’t lock you out (it flushes the tables on error) when starting, including a crontab entry to flush iptables.Note: You need to be running a RedHat or derivative OS. That is, RH9, RHE3/4, CentOS3/4, Fedora Core 1/2/3/4/5
We’ve been working on developing our own iptables firewall, login failure daemon and WHM front-end. The idea is to provide a complete, straight-forward, easy to configure and maintain, solution. There are, of course, other products available that can provide you with this functionality. However, in our experience over the years, we’ve found them lacking in some fundamental aspects. We’re trying to address those with our new development.It’s likely to stay in beta-testing for some time (once we have that available) to ensure that it is robust as possible.For now, the product will be Linux only (possible RH and derivatives only) and we are as yet undecided on the license we will distribute the product under and how that distribution is done. It will also be exclusively for cPanel servers, certainly initially.We’re hoping to have this working on VPS servers, but it depends a lot on your VPS provider and their willingness/ability to provide the correct iptables modules in their kernels.More details will follow in due course, including a call for brave beta-testers ;)Visit the products page on our site here.
There’s a bug in the MailScanner code where if you have it configued to scan HTML email for dangerous content it actually strips out link text and images. To correct this, you can either:
- wait until the next release from MailScanner
- install the latest beta release by modifying msintall.pl to use the URL to the distribution on the www.mailscanner.info site
- apply the following patch…
You need to replace the Message.pm file in /usr/mailscanner/lib/MailScanner/ :
I’ve released a new version of our MailScanner install/upgrade script for the latest release of MailScanner v4.53.8Upgrades can be done by following upgrade instructions
If you’re having problems with the DNS functions in WHM on CentOS and see the following error in /usr/local/cpanel/logs/error_log
Changes for ClamAV 0.88.2:
Upgrade instructions here.
Just had a problem on a clients server which took a while to track down.Symptoms: If you rebuild apache/php and find that httpd appears to hang without spawning any children and nothing in the error log, this could be the problem. Using an strace on httpd -X shows the binary hanging on apache module loads.I finally tracked this down to Zend Optimizer v3.0.0 which is available in the current EDGE/CURRENT releases of cPanel ( 10.8.2-EDGE_41) in /scripts/installzendopt. Trick is to edit the script and set:
Then rerun the script and restart httpd. Hopefully this will help anyone who finds themselves with the same issue.
I’ve released a new version of our MailScanner install/upgrade script.Changes in this new release to the script are:
A new version of ClamAV has been released with the following bugfixes:
I have added the following to the Why you should use :fail: page on our site: