cPanel

New csf v7.66

Changes:

  • Fixed UI status form tags
  • Added new option LF_SPI. This option configures csf iptables as a Stateful Packet Inspection (SPI) firewall – the default. If the server has a broken stateful connection tracking kernel then this setting can be set to 0 to configure csf iptables to be a Static firewall, though some funtionality and security will be inevitably lost
  • Added common systemd logs to csf.logignore for new installs
  • Modify LF_IPSET in csf to print failure messages instead of aborting on error
  • On servers using systemd if firewalld found to be active, csf and lfd will not start until is is stopped and disabled as csf cannot be used with firewalld
  • Added option SYSTEMCTL to csf.conf as the location of the systemctl binary for use with servers using systemd

New cxs v5.22

Changes:

  • Ensure timestamp and cxs command are prepended to –report [file]
  • Fix cxs Watch Timestamp in report emails
  • When using –options W ensure that resource is a directory and not a symlink or socket

New cxs v5.21

Changes:

  • Fixed issue in cxs Watch when –www is used and a new account is created through restore on cPanel servers
  • cxs Watch now tracks the parent directories for all users when –allusers is used and will add them back if they disappear and are recreated

New cmc v1.17

Changes:

  • Modified httpd graceful restarts to cater for systemd
  • Updated INSTALL.txt

New cxs v5.20

Changes:

  • Fixed systemd cxs watch UI commands
  • Exploit fingerprint definitions database additions

New cxs v5.19

Changes:

  • Re-added POSIX Locale after changes in v5.16
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New csf v7.65

Changes:

  • Fixed csf.blocklist for new installs which incorrectly had OPENBL enabled by default

New csf v7.64

Changes:

  • UI HTML updates and fixes
  • Modified openbl.org URLs in csf.blocklist to use https – this will likely need URLGET set to 2 (LWP)

New cxs v5.18

Changes:

  • Added white-space pre-wrapping to HTML emails
  • UI HTML updates and fixes
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v5.17

Changes:

  • Fixed –qcreate POD text
  • Added systemd support for pure-uploadscript