Server Software and Configuration Services
New cxs v5.30
Changes:
- Modify cPanel install.txt to add the ConfigServer ModSecurity Vendor option
- Added new advanced PHP decoders
- Exploit fingerprint definitions database additions
cPanel
New csf v7.71
Changes:
- Added warning on cPanel servers for GreyListing
- Fixed issue with RedHat/CentOS/CloudLinux v7 where local IPs were not being successfully detected from IFCONFIG
cxs and ModSecurity v2.9
If you are using ModSecurity v2.9 with Apache you will need to add an extra ModSecurity directive to the cxs upload scanning rule for it to function as ModSecurity have changed the way that the @inspectFile function works:
SecUploadKeepFiles RelevantOnly
On a cPanel server this means that you need to edit:
/usr/local/apache/conf/modsec2.user.conf
and add the line above after the cxs ModSecurity rule and then restart httpd.
New cxs v5.29
Changes:
- Modified documentation to address changes in ModSecurity v2.9 that requires the following is set as part of the ModSecurity config:
SecUploadKeepFiles RelevantOnly
- Exploit fingerprint definitions database additions
New cmm v1.33
Changes:
- Added options to bulk show/enable/disable GreyListing, if WHM option enabled
- Added options to show/enable/disable GreyListing per domain, if WHM option enabled
New csf v7.70
Changes:
- Removed PayPal Donation buttons due to recent abuse
New MailScanner Front-End (MSFE) v4.62
Changes:
- Disable ability to switch MailScanner working if clamd is not running. This is now always the case (see msinstall v2.94)
New MailScanner Script v2.94
Changes:
- Ensure that MailScanner always continues (does not loop) if clamd is not running
New cxs v5.28
Changes:
- Added new option –[no]ssl. When enabled (the default) all cxs URL functions, such as updating, bayes corpus retrieval and license checking will be done over an SSL connection to ConfigServer servers
- Added /var/run/clamd.scan/clamd.sock as another default clamd socket location for –clamdsock [socket]
- Added unsupported option –YSKIPCGI. See POD for more information
- Exploit regex definitions database additions
- Exploit fingerprint definitions database additions
New cmc v1.18
Changes:
- Removed redundant code
- Modified to cater for /usr/local/apache/conf/userdata/(std|ssl)/2_4 paths when Apache v2.4 is used
- Additional input validation from forms
- Added Migrate button to move modsec.conf files from older Apache data structures to the current valid one