cPanel

Changes:

• Added new –ignore [file] option pscript: – regex of web script to ignore
• Set –options [P] ftp timeout to 10 seconds
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

SECURITY FIX. Anyone running cxs on a DirectAdmin server should upgrade to this release immediately:Changes:

• Add check for successful open of admin.list on DA servers to avoid a segfault, which could lead to a buffer overflow

This issue is apparent on DirectAdmin servers only where this C wrapper is used.Note: cxs is not currently officially support on anything other than cPanel servers

Changes:

• Fixed problem where dir: ignores where not being fully implemented in single file scans
• Fixed problem where dir: and hdir: ignores where not being fully implemented by the cxs Watch daemon when auto-reloading an ignore file
• Exploit fingerprint definitions database additions

Changes:

• Developed another new advanced PHP decoder for –decode ([D])
• Fixed advanced decoder output formatting when using –decode [file]
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Modifications to cxs Watch daemon so that it no longer needs to completely restart if changes to –xtra [file] are detected
• Added detection and decoding of Hex encoding to advanced PHP decoders
• Exploit fingerprint definitions database additions

Changes:

• Memory management and speedup improvements for cxs Watch Daemon
• Improvements to advanced PHP decoders to –decode ([D])
• Corrected cxs POD to read –upgrade instead of –update
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Added more advanced PHP decoders to –decode ([D])
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions