cPanel

New csf v13.04

Changes:

  • Fixed issue with ConfigServer::CheckIP generating incorrect IPv6 addresses during validation using Net::CIDR::Lite
  • Added UI entry for editing csf.reseller for DirectAdmin and InterWorx

IPv6 issues with exim and SMTPAUTH_RESTRICT/CC_ALLOW_SMTPAUTH [Fixed in v13.04]

We have identified an issue with exim rejecting what are valid IPv6 representations in the generated /etc/exim.smtpauth file. This problem manifests with errors in /var/log/exim_paniclog (on cPanel) as:

2019-07-18 08:00:22 Internal error: invalid IPv6 address "2001:470:1f0b:a9:9dc3:6ed8:e840::/106" passed to host_aton()

This innocuous error actual causes exim to defer (error 421) all email originating from IPv6 sources. This prevents its delivery inbound.

While we look into mitigating the issue exim has with the generated IPv6 CIDRs we would suggest disabling  SMTPAUTH_RESTRICT/CC_ALLOW_SMTPAUTH and removing the exim.conf line used to refer to it (see csf docs).

This issue has now been fixed in csf v13.04.

New cxs v11.01

Changes:

  • Improved UI display in DirectAdmin
  • Added alternative clamd location to UI for DirectAdmin
  • Added ModSecurity hook configuration to UI for DirectAdmin
  • Updated POD to reflect support for DirectAdmin and InterWorx
  • Created cronjob to check for new product versions for the UI (/etc/cron.daily/csget). A manual check is still available if needed. This does not affect the daily upgrade check if enabled
  • Fixed PATH issue in DirectAdmin installer when used from within the UI to upgrade

New csf v13.03

Changes:

  • Fixed PATH issue in DirectAdmin installer when used from within the UI to upgrade

New csf v13.02

Changes:

  • Removed perl CGI::Carp module use from the DirectAdmin reseller UI as the module may not be present

New csf v13.01

Changes:

  • Added reseller support in InterWorx
  • Added reseller support in DirectAdmin
  • Added login failure detection on InterWorx (v6.3.16+). If LF_INTERWORX is enabled, INTERWORX_LOG will be scanned for login failures to NodeWorx and SiteWorx. This is enabled by default on all InterWorx installations
  • Fixed text in Firewall.php stub in InterWorx
  • Improved UI display in DA
  • Improved UI display in InterWorx
  • Fixed InterWorx UI issue with “Service Status” NodeWorx feature caused by Firewall.php stub
  • Created cronjob to check for new product versions for the UI (/etc/cron.daily/csget). A manual check is still available if needed. This does not affect the daily upgrade check if enabled

New csf v13.00

Changes:

  • Added InterWorx integration and InterWorx panel specific configuration. See /etc/csf/readme.txt for more information (only tested on CentOS v7)
  • Added InterWorx regex detection for proftpd, dovecot imap, dovecot pop3, and smtp auth login failures. Added regex detection for LF_DISTSMTP and LF_DISTFTP. Added regex detection for LF_CXS and LF_MODSEC. Added Login
    Tracking for LT_POP3D and LT_IMAPD
  • Ensure UI errors are displayed in browser to avoid blank pages
  • Display install.txt if perl module checks fail
  • Reworked DirectAdmin UI to display within the parent template

New cxs v11.00

Changes:

  • Added official BETA InterWorx support. While this should now integrate and work on InterWorx, there may be bugs which should be reported and features either missing or not working correctly. We do not offer free installation on InterWorx until it is out of BETA (only tested on CentOS v7). Note: Support is ONLY for non-EOL RHEL/CentOS/CloudLinux
  • Added official BETA DirectAdmin support. While this should now integrate and work on DirectAdmin, there may be bugs which should be reported and features either missing or not working correctly. We do not offer free installation on DirectAdmin until it is out of BETA (only tested on CentOS v7). Note: Support is ONLY for non-EOL RHEL/CentOS/CloudLinux
  • Fixed issue with base64 encoding of entries for the database queueing mechanism that made the db update process fail via the cron job and when entering cxs Control
  • Improved error trapping in SQL command execution
  • Fixed issue with ajax calls not always returning completely
  • Removed deprecated Quarantine view in UI
  • Reworked DirectAdmin UI to display within the parent template
  • Install install.txt if perl module checks fail for installation details
  • Ensure Linux::Inotify2 perl module is installed
  • Updated install.txt information with more detailed instructions

New cxs v10.07

Changes:

  • Fixed potential loop in one type of decoder

New cxs v10.06

Changes:

  • Ensure UI errors are displayed in browser to avoid blank pages
  • Decoder improvements: Improve exploit detection
  • Decoder improvements: Added decoding of $GLOBALS[] exploits
  • Decoder improvements: Added variable value replacement for quoted alphanumeric values
  • Decoder improvements: Improvements to –YTIDY output