csf

New csf v5.40

Changes:

  • Added new feature – csf UI Reseller functions for cPanel. See /etc/csf/csf.resellers and WHM UI
  • Improvements to cse Integrated UI
  • Modified redundant cPanel function calls in UI
  • Removed ModSecurity functionality in UI
  • Modified WHM UI “Remove Deny” to be “Quick Unblock” that now removes a specified IP address entries from csf.deny and/or temporary blocks

New csf v5.39

v5.39 Changes:

  • Fixed detection of the nat tables on some Virtuozzo VPS servers

v5.38 Changes:

  • Modification to the Integrated UI to allow access to cxs if it is installed via UI_CXS
  • Include an updated cse with csf for use with the Integrated UI via UI_CSE
  • Added option UI_CIPHER to allow the SSL cipher suite to be set manually for the Integrated UI
  • Added HTTP request internal memory limits to the Integrated UI

New csf v5.38

Changes:

  • Modification to the Integrated UI to allow access to cxs if it is installed via UI_CXS
  • Include an updated cse with csf for use with the Integrated UI via UI_CSE
  • Added option UI_CIPHER to allow the SSL cipher suite to be set manually for the Integrated UI
  • Added HTTP request internal memory limits to the Integrated UI

New csf v5.37

Changes:

  • Added new BETA feature – User Interface. This feature provides a HTML UI to csf and lfd, without requiring a control panel or web server. The UI runs as a sub process to the lfd daemon. See csf.conf and readme.txt for information and requirements
  • Fixed issue with RT_* regex routine ignoring 127.0.0.1
  • Fixed detection of DNSONLY cPanel installs
  • Added Security Check on cPanel server checks for disabled “Proxy subdomains” and “Proxy subdomain creation”
  • Added new option LF_CPANEL_ALERT_ACTION. If a LF_CPANEL_ALERT event is triggered, then if LF_CPANEL_ALERT_ACTION contains the path to a script, it will run the script and passed the ip and username and the DNS IP lookup result as 3 arguments

New csf v5.36

Changes:

  • Fix for the lfd child lock mechanism effectiveness

New csf v5.35

Changes:

  • Added new BETA feature – Port/IP address Redirection. This feature uses the file /etc/csf/csf.redirect to redirect connections from/to IP/port combinations to alternative IP/ports. See readme.txt for more information
  • Updated syslog daemon checking in Server Report
  • Set PT_DELETED to 0 by default on new installations
  • Improvements to csf startup locking within lfd
  • Improvements to error trapping between csf and lfd
  • Check minimum values for interval settings and set to recommended values if too low during lfd startup to improve stability
  • Added lfd child locks to improve stability due too server or network resource issues or too low an interval setting
  • Updated Sanity Checks for settings
  • lfd will now not start if TESTING is enabled
  • Do not require write permissions to /etc/crontab when no changes required for TESTING mode enable/disable
  • Prevent parricide by lfd children unless required
  • Added nat table check in csf
  • Fixed bug in csf –grep not matching the nat table

New csf v5.34

Changes:

  • Improvement to dovecot account name sanitisation checks in lfd
  • Modified cronjobs for new installs to be compatible with anacron
  • Added new option CLUSTER_BLOCK which is enabled by default. This allows you to disable automatic sharing of lfd blocks around a csf cluster, e.g. if you only wish to use the CLUSTER option to share settings and manual blocks and allows
  • Added new option RT_ACTION. If an RT_* event is triggered, then if RT_ACTION contains the path to a script, it will be run in a child process and be passed a list of items (see csf.conf – for cPanel and DA only)
  • Fix to DYNDNS Advanced Allow/Deny Filters using pipe separator
  • Set permissions to 700 on *.sh, *.pl and *.php in /etc/csf/ instead of a blanket 600 of non-csf scripts

New csf v5.33

Changes:

  • Add link to the Changelog when csf is upgraded
  • Extended urlget timeout to 300 seconds to help cope with the large MaxMind City Database download where enabled
  • Include cpdavd login failures for LF_CPANEL. Added port 2077 and 2078 to the cPanel block ports when LF_SELECT enabled
  • Disable ftp Server Check reports if ftp server disabled in cPanel
  • Added regex validation to any specified csf.pignore or csf.figonre entries to lfd
  • Updated cPanel tier checks to cope with old STABLE and DNSONLY releases and newer v11.30+
  • Improvement to account name sanitisation checks in lfd

New cxs v2.17

Changes:

  • Added hdir:/quarantine_clamavconnector to the csf.ignore.example file
  • Improvements to php script detection where extension is not .php
  • Filetype detection speedups
  • Filetype differentiation between MS-DOS and MS Windows executables
  • Added new option –Wrefresh. To keep the cxs Watch daemon up to date, it will restart every 7 days by default. To change this interval, you can set B<--Wrefresh [days]>
  • Improvements to the decode regex
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions