Server Software and Configuration Services
Another phpBB Vulnerability
Time to upgrade all of those phpBB installations again. This time to v2.0.22:
cPanel
New MSFE v3.8
Changes:
- Added new feature allowing you to set cPanel user MailScanner settings from within the WHM UI
- Moved a selection of settings from the MSFE Advanced settings to the main settings display
- Added option to MailScanner Performance to allow disabling of Message Scanning. This can help to process a backlog of email very quickly as no spam or virus scanning is done at all and the queued email is simply handed to exim for delivery
- Changed option to Edit rules to View rules instead for stability reasons since the MSFE jobs wiil overwrite any changes
You can download the update from http://download.webumake.com – if you don’t have a download account, please email sales@waytotheweb.com and request one, and be sure to include the name under which you originally ordered.
New csf v2.50
Changes:
- Removed option ALLOW_RES_PORTS from new installs, setting is ignored
- Check for LF at the end of form data for files edited through the WHM UI and append one if omitted
- Following the changes in 2.48 the LOGDROP chain doesn’t distinguish between incoming and outgoing blocks. So, LOGDROP has now been split into LOGDROPIN and LOGDROPOUT
New csf v2.49
Changes:
- Fixed issue if ETH_DEVICE was set and from changes in 2.48
New csf v2.48
Changes:
- csf will now specify ! lo as the main ethernet device unless otherwise defined in ETH_DEVICE. This will mean that the firewall is applied to all ethernet devices on the server unless otherwise specified in the configuration
New cmm v1.04
Changes:
- UI changes when browsing a mailbox when within a directory only show the current directory and emails. Added Go Up button to return to the top of the mailbox
- Added selected delete of files when browsing a mailbox
- Added empty directory when browsing a mailbox
- Added cPanel account quota check before allowing edit of filters or forwarders or adding a new mailbox to prevent data loss in the event of quota exceeded for the account
ClamAV Oversized.zip errors
If you’re unexpectedly seeing the following in /var/log/maillog for emails blocked with zip file attachments:ClamAVModule::INFECTED:: Oversized.Zip::Then you may have not reinstalled the Mail::ClamAV perl module after upgrading ClamAV recently. The MailScanner Front-End does upgrade the perl module for you, but if you perform the ClamAV upgrade manually, then you need to be sure to run:
/scripts/perlinstaller –force Mail::ClamAV
It’s important to use –force otherwise the perl module most likely won’t be reinstalled (i.e. if the version of the perl module hasn’t changed).Then restart MailScanner:
service MailScanner restart
New csf v2.47
Changes:
- Modified DYNDNS code to set listed domains IP addresses to be ignored as if they were listed in csf.ignore
- If adding an IP address to csf.allow that is already in csf.deny, the IP address will now be removed from csf.deny first and the DROP removed from iptables. It will then be added to csf.allow as normal
New cmm v1.03
Changes:
- Fixed bug where cmm was only checking for accounts on /home
New ClamAV v0.88.7
ClamAV have released a new version 0.88.7 with the following changes:
Mon Dec 11 02:47:03 CET 2006—————————-