cPanel

New csf v2.02

Some bugfixes and changes to LF_DIRWATCH:

  • In LF_DIRWATCH, allow wildcard matching at the end of a file name in csf.fignore, such that /tmp/clamav* will ignore any files starting with /tmp/clamav, e.g. /tmp/clamav-1234
  • Added a throttle to LF_DIRWATCH – if more than 10 emails are being emailed in one pass, LF_DIRWATCH will create the file /etc/csf/csf.dwdisable and then disable itself. To get it watching again, either restart lfd or delete that file
  • Fixed a bug where LF_DIRWATCH always reported the same file when different files had been detected in a pass

New csf v2.00

Brand new feature:

  • New feature: Directory Watching. LF_DIRWATCH enables lfd to check /tmp and /dev/shm and other pertinent directories for suspicious files, i.e. script exploits. These can optionally be moved into a tarball
  • Directory Watching false-positives can be listed in csf.fignore which is accessible from the WHM UI

New csf v1.98

New version with a nice new feature for those with multiple NICs:

  • Modified code to allow for multiple ethernet NICs so that all rules are applied to all NICs, for example, if you have IP’s spread over eth0 and eth1. To do this you have to set ETH_DEVICE = “eth+”

New MailScanner Front-End v1.34

Bugfixes and version information:

  • Added MSFE version to the WHM UI
  • Added notification in MSFE when a new version becomes available and a link to the download manager
  • Changed language file for new installs for “Not set=Default Setting”
  • Change Spam white/blacklisting default setting in WHM UI to From: instead of FromOrTo:
  • All cPanel UI settings will now take effect whether the Individual Domain Settings have been saved or not (previously they had to be saved before the additional settings would take effect)

New csf v1.97

New changes for v1.97:

  • Tightened DNS port 53 connections in accordance with:http://www.oreillynet.com/pub/a/network/excerpt/dnsbindcook_ch07
  • Moved no log dropping to the end of the chains
  • Moved allowed IP’s to before Block Lists

Be aware of the upgrade issues in v1.93 and v1.94:http://configserver.com/blog/index.php?itemid=84

New csf v1.93

New version with some changes and bugfixes:

  • Fixed problem where external resolvers were being used and responses from them were being dropped because they were coming back on ephemeral ports – added a scan of /etc/resolv.conf and external nameservers now have whitelisted source port 53 to ephemeral ports
  • Drop logging of failed attempts to access port 53 so they don’t consume syslog
  • Moved update from /tmp do /usr/src

New MailScanner Front-End v3.3

Fixed a major bug:

  • v3.3 – Fixed problem with the MailScanner front-end cronjob that introduces user changes not reloading MailScanner on some servers

You can check your MSFE version by looking at the top of /usr/mscpanel/CHANGELOG.msfe.txtIf you wish to upgrade MSFE and have purchased an installation service package from us in the past, email sales@waytotheweb.com and we’ll provide you with a download account for http://download.webumake.com

New ClamAV v0.88.4

New version of ClamAV has been released:

  • This release fixes a possible heap overflow in the UPX code.

Upgrade through WHM MSFE or by following:http://www.configserver.com/cp/upgrade.html

MailScanner Front-End v3.2

Bug fix in v3.2:

  • Fixed problem with upgrading MailScanner and ClamAV in /tmp by building all source in /usr/src/ and using interactive shell commands – without this update the upgrade feature will not work correctly

If you wish to upgrade MSFE and have purchased an installation service package from us in the past, email sales@waytotheweb.com and we’ll provide you with a download account for http://download.webumake.com