New –options [P]. This option will search standard web application configuration files for MySQL database passwords. It will then attempt to login via FTP on localhost with the username of the account being processed and the detected password (it will attempt up to two password hits per configuration file). If the login is successful, the option will trigger a match. See CLI documentation for more info
Separated and highlighted advanced Exploit Scan options in the UI that can affect user data and/or produce false-positives in the vain hope it will stop some people just ticking everything and then wondering where their files have gone
Added Net::FTP to the perl module requirements (this is a core perl module so should already be installed)
New options –uidmin [uid] and –uidmax [uid] for the GENERIC install when used with –allusers. These have no effect on cPanel and DA
Improvement to dovecot account name sanitisation checks in lfd
Modified cronjobs for new installs to be compatible with anacron
Added new option CLUSTER_BLOCK which is enabled by default. This allows you to disable automatic sharing of lfd blocks around a csf cluster, e.g. if you only wish to use the CLUSTER option to share settings and manual blocks and allows
Added new option RT_ACTION. If an RT_* event is triggered, then if RT_ACTION contains the path to a script, it will be run in a child process and be passed a list of items (see csf.conf – for cPanel and DA only)
Fix to DYNDNS Advanced Allow/Deny Filters using pipe separator
Set permissions to 700 on *.sh, *.pl and *.php in /etc/csf/ instead of a blanket 600 of non-csf scripts
