New cxs v11.07

Changes:

  • On DirectAdmin, enabled UI support for OpenLiteSpeed/LiteSpeed configuration
  • Updated –test to include cxscgi configuration on non-cPanel servers
  • Modified install.txt to make it even clearer that the EPEL is needed on most systems for the required perl modules
  • Improved domain document root lookups for Plesk when using –www

Official cxs InterWorx Support

We’re pleased to announce that our ConfigServer Exploit Scanner application is now fully supported on the InterWorx control panel. This means that installation is now included (see the cxs FAQ for conditions).

cxs exploit scanning:

  • Actively scans all modified files within user accounts using the cxs Watch daemon regardless of how they were uploaded
  • PHP upload scripts (via a ModSecurity hook)
  • Perl upload scripts (via a ModSecurity hook)
  • CGI upload scripts (via a ModSecurity hook)
  • Any other web script type that utilises the HTML form ENCTYPE multipart/form-data (via a ModSecurity hook)

The active scanning of files can help prevent exploitation of an account by malware by deleting or moving suspicious files to quarantine before they become active. It can also prevent the uploading of PHP and perl shell scripts, commonly used to launch more malicious attacks and for sending spam.

cxs also allows you to perform on-demand scanning of files, directories and user accounts for suspected exploits, viruses and suspicious resources (files, directories, symlinks, sockets). You can run scans of existing user data to see if exploits have been uploaded in the past or via methods not covered by the active scanning. It has been tuned for performance and scalability.

More information is available on the product page:

https://www.configserver.com/cp/cxs.html

New cxs v11.05

Changes:

  • InterWorx support is now out of beta and fully supported for the latest InterWorx on RHEL/CentOS/CL v6.* and v7.*
  • Removed redundant piping in various panel polling children
  • Fixed issue with IPv6 and retrieving the bayes database
  • Main decoder regex improvements
  • Include additional perl modules in the install.txt as well as sqlite
  • Successfully tested on CentOS v8.0

New cxs v11.04

Changes:

  • Moved cxs in InterWorx to the Advanced section in Plugins UI
  • Improved system binary location checks
  • Deprecated pure-ftpd integration. The system provided for by pure-ftpd introduces excessive performance limitations and is of limited use compared to using cxs watch
  • Added cxs information option to UI for support purposes (it runs cxs –test)

New cxs v11.03

Changes:

  • Modified Plesk Onyx installation to check for supported OS and Plesk version for UI extension. If you want to disable installation of the Plesk UI extension, you can create a touch file as: /etc/cxs/cxs.disableui
  • Improvements to PHP string decoding
  • Updated control panel dependent install.txt files
  • Improvements to submitting exploits using –wttw (version check)

New cxs v11.02

Changes:

  • Added official BETA Plesk support. While this should now integrate and work on Plesk, there may be bugs which should be reported and features either missing or not working correctly. We do not offer free installation on Plesk until it is out of BETA (only tested on CentOS v7). Note: Support is ONLY for non-EOL RHEL/CentOS/CloudLinux and Plesk Onyx v17.8.10+
  • Added official BETA VestaCP support. While this should now integrate and work on VestaCP, there may be bugs which should be reported and features either missing or not working correctly. We do not offer free installation on VestaCP until it is out of BETA (only tested on CentOS v7). Note: Support is ONLY for non-EOL RHEL/CentOS/CloudLinux and VestaCP v0.9.8+
  • Added official BETA CentOS Web Panel (CWP) support. While this should now integrate and work on CWP, there may be bugs which should be reported and features either missing or not working correctly. We do not offer free installation on CWP until it is out of BETA (only tested on CentOS v7). Note: Support is ONLY for non-EOL RHEL/CentOS/CloudLinux and CWP v0.9.8+
  • Improvements to Universal Decoder
  • Improvements to InterWorx and DirectAdmin BETA integration

New cxs v11.01

Changes:

  • Improved UI display in DirectAdmin
  • Added alternative clamd location to UI for DirectAdmin
  • Added ModSecurity hook configuration to UI for DirectAdmin
  • Updated POD to reflect support for DirectAdmin and InterWorx
  • Created cronjob to check for new product versions for the UI (/etc/cron.daily/csget). A manual check is still available if needed. This does not affect the daily upgrade check if enabled
  • Fixed PATH issue in DirectAdmin installer when used from within the UI to upgrade

New cxs v11.00

Changes:

  • Added official BETA InterWorx support. While this should now integrate and work on InterWorx, there may be bugs which should be reported and features either missing or not working correctly. We do not offer free installation on InterWorx until it is out of BETA (only tested on CentOS v7). Note: Support is ONLY for non-EOL RHEL/CentOS/CloudLinux
  • Added official BETA DirectAdmin support. While this should now integrate and work on DirectAdmin, there may be bugs which should be reported and features either missing or not working correctly. We do not offer free installation on DirectAdmin until it is out of BETA (only tested on CentOS v7). Note: Support is ONLY for non-EOL RHEL/CentOS/CloudLinux
  • Fixed issue with base64 encoding of entries for the database queueing mechanism that made the db update process fail via the cron job and when entering cxs Control
  • Improved error trapping in SQL command execution
  • Fixed issue with ajax calls not always returning completely
  • Removed deprecated Quarantine view in UI
  • Reworked DirectAdmin UI to display within the parent template
  • Install install.txt if perl module checks fail for installation details
  • Ensure Linux::Inotify2 perl module is installed
  • Updated install.txt information with more detailed instructions