cxs

New cxs v3.07

Changes:

  • Allow (limited) scans via UI in restricted mode
  • Added Change Time (–ctime [hours]) option to UI
  • If –quarantine has been disabled, ensure all reports contain a warning message with explanation

 

New cxs v3.06

Changes:

  • Fixed bug with broken –cgi option (cxscgi.sh) from v3.05
  • Fixed UI configurable lines display for cxswatch.log
  • Remove immutable and append-only flags from files when moving files to quarantine or deleting
  • Fixed supplied test/test.php for newer PHP versions

New cxs v3.05

Changes:

  • Added /etc, /sys and /proc to directories requiring –force to be used when scanning
  • Added additional checks that any specified quarantine directory is valid
  • Added new option –ctime [hours]. If you run regular full system scans then you can use –ctime [hours] to only scan files changed in the intervening hours. This can speed up scan times dramatically
  • Apply hfile:, hdir: and hsym: ignores to FTP upload scanning
  • Exploit fingerprint definitions database additions

 

New cxs v3.04

Changes:

  • Security – Fixed file view from quarantine – reported by Rack911
  • Security – Further improved UI form data sanitisation
  • Bolstered the UI warning with regard to disabling Restricted Mode

 

New cxs v3.03

Changes:

  • Fixed broken UI items
  • Improvements to the ignore logic
  • Improved UI form data sanitisation
  • Exploit fingerprint definitions database additions

 

New cxs v3.02

Changes:

  • Security – Added UI Restricted Mode which is enabled by default. This disables features in the UI that could allow abritrary commands to be run as root and system files to be overwritten. To enable unrestricted access to the UI remove /etc/cxs/cxs.restricted
  • Added UI option to completely disable the UI by creating the file /etc/cxs/cxs.disableui

New cxs v3.01

Changes:

  • Implement slurp routine for configuration files to cater for incorrect linefeeds
  • Improvements to forced quarantine feature within –xtra [file] and updated instructions provided in cxs.xtra.example
  • Security – Quarantine improvements
  • Exploit fingerprint definitions database additions

New cxs v3.00

Changes:

  • Implemented hfile ignoring for ratelimiting in cxs Watch
  • Implemented ignore caching in cxs Watch for ratelimited files
  • HTTP::Tiny upgraded to v0.033
  • Exploit fingerprint definitions database additions

New cxs v2.99

Changes:
– Fix –wttw [file] successful submission text

New cxs v2.98

Changes:
– Added check for clamd when using –wttw [file]
– Added check for script files when using –wttw [file]
– HTTP::Tiny upgraded to v0.031
– Removed a false-postitive fingerprint definition
– Exploit fingerprint definitions database additions