cPanel

New cxs v4.21

Changes:

  • BETA: Bayes corpus loading speed improved by 100%
  • BETA: Bayes corpus memory footprint decreased by 20%
  • BETA: Increased minimum score size for Bayes reporting to help reduce false-positives

 

New cxs v4.20

Changes:

  • New option –[no]bayes (currently in BETA). Naive Bayesian probabability scanning of script files. This option uses an enhanced Naive Bayes algorithm to report a probability that a scanned script is an exploit. This is achieved through a trained corpus (database). See the cxs documentation for more details.
  • Additions to main decoder regex
  • Exploit fingerprint definitions database additions

 

New csf v7.03

Changes:

  • Added new option DROP_UID_LOGGING which allows UID logging to be disabled for outgoing connections. This option is enabled by default and can be disabled on OS’s that do not support –log-uid
  • Preupgrade copy of csf.conf now created in /var/lib/csf/backup/ for use with the csf –profile option
  • Updates to sanity.txt for new options
  • Modified DSHIELD blocklist URL from feeds.dshield.org/block.txt to www.dshield.org/block.txt for new and existing installs

 

New csf v7.02

Changes:

  • Make auto.pl scripts more resilient to avoid leaving an incomplete configuration file after upgrades
  • Improved output errors if FASTSTART fails
  • Ensure UNZIP binary exists before attempting to process GeoLite CSV Country database
  • Corrected FASTSTART description in Server Report check
  • Modified auto.pl to not automatically enable IPV6 on Virtuozzo/OpenVZ
  • Report all errors after csf starts in case they were missed in the main output

 

ClamAV 0.98.2 (withdrawn)

ClamAV have rather unceremoniously yanked their last update and deleted their blog posts and changelog for it. We’ve downgraded our installer to the previous version. People should probably downgrade back to 0.98.1 to avoid any issues.

New csf v7.01

Changes:

  • Fixed issue with FASTSTART and DROP_PF_LOGGING

 

New csf v7.00

Changes:

  • New feature SMTPAUTH_RESTRICT – This option will only allow SMTP AUTH to be advertised to the IP addresses listed in /etc/csf/csf.smtpauth on EXIM mail servers. The additional option CC_ALLOW_SMTPAUTH can be used with this option to additionally restrict access to specific countries. See csf.conf and readme.txt for more information
  • New FASTSTART procedures in csf and lfd to centralise functions and add error reporting
  • FASTSTART added to GLOBAL_ALLOW, GLOBAL_DENY, GLOBAL_DYNDNS, csf.deny, csf.allow, Port Settings, PACKET_FILTER, DROP_NOLOG, SMTP Block, DNS
  • Remove duplicate IP addresses from individual blocklists
  • Remove duplicate IP addresses (not CIDRs) across blocklists as they are newly retrieved
  • Ensure /usr/local/bandmin/bandminstart exists and is executable on cPanel servers before using it
  • Removed MySQL version check as it is currently redundant from Server Report
  • Improve Net::CIDR::Lite use integrity to prevent unnecessary lfd failures
  • Ensure GeoIPCountryWhois.csv is removed before processing a new d/b download
  • Add /etc/csf/csf.smtpauth to UI if SMTPAUTH_RESTRICT is enabled
  • Fixed issue with IPv6 generation of SMTP_ALLOWUSER rules

 

New MailScanner Script v2.92

Changes:

  • Added daily cron job to perform maintenance on the SpamAssassin Bayes Database
  • On uninstall, if MSFE installed, automatically uninstall that first
  • Modified mscpanel.pl to always include the hostname