cPanel

New MailScanner Front-End (MSFE) v4.11

Changes:

  • Modified to work with cPanel v11 new theme API and new WHM theme style. This version will only work with cPanel v11 and cannot be upgraded to from cPanel v10. Third party themes need to properly support the new v11 theme API to work. If MailScanner doesn’t appear then you need to contact your third party theme developer and ask them to fully support the cPanel v11 API (i.e. including cPanel Plugins)
  • Fixed issue with saving cPanel User Settings in WHM for the alternative email address for the spam forwarder

export GZIP="–rsyncable"

If you use the following in your root crontab to enable efficient rsync of backups:

0 1 * * *

MailScanner disabled after cPanel upgrade to v11

If you find MailScanner is disabled after upgrading to v11 of cPanel (esp. since v11 is now in CURRENT) then run the following:

/scripts/buildeximconf/scripts/mailscannerupdateservice exim restart

That should get things working again. We will be releasing a new version of MSFE soon to support the new v11 theme API.

New csf v2.71

Changes:

  • Added CSS settings to support pre-v11 cPanel installations

New csf v2.70

Changes:

  • Modified to adopt cPanel v11 WHM theme
  • Added ports 2077 and 2078 (cPanel WebDAV server) to csf.conf for new installations for v11 cPanel
  • Added FC5 to the list of (or soon to be) unsupported OS’s
  • Fixed LF_SMTPAUTH not correctly being set to LF_FTPD when upgrading

New csf v2.67 – Major Security Fix

Changes:Security fix – A major security issue has been found (thanks to Jeff for informing us) in the LF_DIRWATCH code that can lead to arbitrary code being executed in the context of the user running lfd, i.e. root, if that option is enabled and a hacker has access to create a crafted filename in one of the watched directories. This update closes this hole.*ALL INSTALLATIONS SHOULD BE UPGRADED ASAP TO AVOID POTENTIAL EXPLOITATION*You can upgrade csf either through WHM or from the root shell using:

csf -u

New ClamAV v0.90.2

ClamAV have released a new version with security fixes. It is advised that everyone upgrade to this new version, which you can now do through the MailScanner WHM UI.

Changes in this release include some security fixes in CHM, CAB and PDF code and better handling of network problems in freshclam.Please see ChangeLog for complete list of changes. **Important note**: on April 16th CHM, CAB and PDF handlers will be disabled for 0.90 and 0.90.1 users through the dynamic engine configuration module (DCONF). Please upgrade to 0.90.2 immediately.

New csf v2.66

Changes:

  • Modified LF_CPANEL text in csf.conf for new installations to reflect the change in the SSL login handling by cPanel (i.e. it does now log SSL login IP’s)
  • Modified the log line monitoring in lfd to cope with log line flooding to prevent looping/excessive resource usage. Also recoded without the use of the POSIX routines
  • lfd process name now shows which log file it is scanning

New ClamAV v0.90.1

ClamAV have released a new version that fixes a raft of things that they broke with the v0.90 release a few days ago. We will be releasing a new version of the MailScanner installer script shortly that fixes an incompatibility in MailScanner with the new v0.9* version of ClamAV.

New Mail::ClamAV v0.20

The day we release a patch workaround the Mail::ClamAV developer has finally released fixed code for ClamAV v0.90. It will take some time to get around all the cpan.org mirrors, but you can install it from source easily enough and then revert to virus scanners = clamavmodule in MailScanner.conf

wget http://cpan.pair.com/authors/id/S/SA/SABECK/Mail-ClamAV-0.20.tar.gztar -xzf Mail-ClamAV-0.20.tar.gz cd Mail-ClamAV-0.20perl Makefile.PL makemake installpico -w /usr/mailscanner/etc/MailScanner.conf

Virus Scanners = clamavmodule

service MailScanner restart