Server Software and Configuration Services
MailScanner Script v2.32 Released
I’ve released a new version of our MailScanner install/upgrade script.Changes in this new release to the script are:
v2.32
rkhunter v1.2.8 released
A new version of the popular rootkit hunter application has been released.Uprade instructions:
wget http://downloads.rootkit.nl/rkhunter-1.2.8.tar.gztar -xzf rkhunter-*cd rkhunter./installer.sh cd ../bin/rm -Rf rkhunter*rkhunter –updaterkhunter -c –skip-keypress
MailScanner Script v2.31 Released
A new version of the update script has been released to cater for some hidden changes in the way MailScanner uses its SpamAssassin preferences file. This will likely only have affected those that have modified spam.assassin.prefs.conf.Changes in the new release:
v2.31
MailScanner Script v2.30 Released
MailScanner have release a new version which includes some major enhancements, some of which I’ve seen improve performance dramatically on servers that receive a lot of spam.Changes in this new release to the script are:
v2.30
PHP v4.4.2 Released by cPanel
v4.4.2 has been released for inclusion in building apache/php on cPanel servers. I’ve upgraded all of our servers with it and it appears to be working well. From the php site:
This is a bug fix release, which addresses some security problems too. The major points that this release corrects are:
- Prevent header injection by limiting each header to a single line.
- Possible XSS inside error reporting functionality.
- Missing safe_mode/open_basedir checks into cURL extension.
- Apache 2 regression with sub-request handling on non-Linux systems.
- key() and current() regression related to references.
This release also fixes about 30 other defects
EV1 RHN Problems
Anyone with an EV1 server running RHE will probably find that up2date isn’t working. This is as a result of upgrades that EV1 have just performed on their RHN mirrors. There is a simple fix:
rpm -Uvh –force http://rhn.ev1servers.net/pub/rhn-org-trusted-ssl-cert-1.0-3.noarch.rpm
More details in the EV1 Forum thread.
New mod_security v1.9.2
A new version of mod_security has been released hereChanges:
ModSecurity 1.9.2 is primarily a bug-fix release, but itincludes a few interesting new features.ModSecurity can now be compiled against PCRE regex library(Apache 1.3.x only, Apache 2.x already uses PCRE), resultingin large performance increase. It is also possible to compileModSecurity not to use suEXEC for process creation. Someconcurrent audit logging improvements. New proof-of-conceptscript for real-time audit log centralisation. Many smallerbug fixes and improvements throughout.
ClamAV v0.88 Released
Problems with cPanel and the new CPAN.pm module
When running /scripts/perlinstaller you might be seeing this error:
Undefined subroutine &CPAN::Config::commit called at /scripts/realperlinstaller line 95.
This is being caused by the renaming of a function call in CPAN.pm which cPanel relies upon. Although there now appears to be a fix in the EDGE tree from the report I logged in bugzilla:http://bugzilla.cpanel.net/show_bug.cgi?id=3710There is a new version of CPAN.pm release at cpan.org this morning that addresses the issue.To manually upgrade to this fixed version do the following:
wget http://download.mirror.ac.uk/sites/ftp.funet.fi/pub/languages/perl/CPAN/authors/id/A/AN/ANDK/CPAN-1.83.tar.gztar -xzf CPAN*cd CPAN*perl Makefile.PLmakemake install
That should resolve the issue.
MailScanner Script v2.29 Released
Changes in this new release to the script are:v2.29 – New version of MailScanner 4.49.7Upgrades can be done by following upgrade instructions.Details of the MailScanner Changes:
The full Change Log is this:* New Features and Improvements *- Speed improvements for sendmail systems by changing the