cPanel

Changes:

• Fixed issue with FASTSTART and DROP_PF_LOGGING

Changes:

• New feature SMTPAUTH_RESTRICT – This option will only allow SMTP AUTH to be advertised to the IP addresses listed in /etc/csf/csf.smtpauth on EXIM mail servers. The additional option CC_ALLOW_SMTPAUTH can be used with this option to additionally restrict access to specific countries. See csf.conf and readme.txt for more information
• New FASTSTART procedures in csf and lfd to centralise functions and add error reporting
• FASTSTART added to GLOBAL_ALLOW, GLOBAL_DENY, GLOBAL_DYNDNS, csf.deny, csf.allow, Port Settings, PACKET_FILTER, DROP_NOLOG, SMTP Block, DNS
• Remove duplicate IP addresses from individual blocklists
• Remove duplicate IP addresses (not CIDRs) across blocklists as they are newly retrieved
• Ensure /usr/local/bandmin/bandminstart exists and is executable on cPanel servers before using it
• Removed MySQL version check as it is currently redundant from Server Report
• Improve Net::CIDR::Lite use integrity to prevent unnecessary lfd failures
• Ensure GeoIPCountryWhois.csv is removed before processing a new d/b download
• Add /etc/csf/csf.smtpauth to UI if SMTPAUTH_RESTRICT is enabled
• Fixed issue with IPv6 generation of SMTP_ALLOWUSER rules

Changes:

• Fixed csf –ta/d not accepting comma separated port list
• Modified csf -t multi-port reporting
• Modified csf UI to support specifying port list in temporary allow/deny
• Modified integrated UI call to perform separate calls to IO::Socket::SSL to use the appropriate AF_INET(6) call depending on the setting for IPV6
• Updates to integrated cse UI CSS
• Added regular expressions for courier-imap, Qmail SMTP AUTH and Postfix SMTP_AUTH for Plesk servers
• Removed RBN from csf.blocklist for new installs as it is now obsolete
• Check for an apply correct permissions on /var/lib/csf and /usr/local/csf in addition to /etc/csf