cxs

New cxs v2.32

Changes:

  • Added init script for cxswatch daemon on cPanel servers. This is instead of using /etc/rc.local to start the daemon and can also be used to stop/start/restart/status the daemon. See the cxs documentation for more information
  • Added entry to chkserv.d on cPanel servers so that cPanel will monitor the cxswatch daemon using tailwatchd. See the cxs documentation for more information

New cxs v2.31

Changes:

  • Fixed issue with tarball and zip file contents checking
  • Further improvements to the Fingerprint matching system
  • Exploit fingerprint definitions database additions

New cxs v2.30

Changes:

  • Significant speedups for pattern matching
  • Improvements to the Fingerprint matching system which includes speedups and additional identification methods
  • Fixed error message for scanning an non-existent file
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New csf v5.39

v5.39 Changes:

  • Fixed detection of the nat tables on some Virtuozzo VPS servers

v5.38 Changes:

  • Modification to the Integrated UI to allow access to cxs if it is installed via UI_CXS
  • Include an updated cse with csf for use with the Integrated UI via UI_CSE
  • Added option UI_CIPHER to allow the SSL cipher suite to be set manually for the Integrated UI
  • Added HTTP request internal memory limits to the Integrated UI

New csf v5.38

Changes:

  • Modification to the Integrated UI to allow access to cxs if it is installed via UI_CXS
  • Include an updated cse with csf for use with the Integrated UI via UI_CSE
  • Added option UI_CIPHER to allow the SSL cipher suite to be set manually for the Integrated UI
  • Added HTTP request internal memory limits to the Integrated UI

New cxs v2.29

Changes:

  • Fixed problem with quarantine file naming convention causing duplicate file names under certain circumstances and failing to quarantine the second instance
  • Fixed spurious Cpanel::Version::gettree() warning in cPanel error log
  • Exploit regex definitions database additions

New cxs v2.28

Changes:

  • Fixed problem with cxs Watch daemon restart introduced in v2.2.27. You will have to manually restart any running cxs Watch daemon after this upgrade
  • If BSD::Resource perl module is installed, double the configured process stack size to help avoid Segmentation Faults
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.27

Changes:

  • New –options [P]. This option will search standard web application configuration files for MySQL database passwords. It will then attempt to login via FTP on localhost with the username of the account being processed and the detected password (it will attempt up to two password hits per configuration file). If the login is successful, the option will trigger a match. See CLI documentation for more info
  • Separated and highlighted advanced Exploit Scan options in the UI that can affect user data and/or produce false-positives in the vain hope it will stop some people just ticking everything and then wondering where their files have gone
  • Added Net::FTP to the perl module requirements (this is a core perl module so should already be installed)
  • New options –uidmin [uid] and –uidmax [uid] for the GENERIC install when used with –allusers. These have no effect on cPanel and DA
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.26

Changes:

  • Added new option for –xtra [file]: regfile: which is a regular expression match for a file or directory name
  • Added new CLI option –smtp. This will send emails generated by –mail [email] via localhost SMTP instead of sendmail
  • Added MIME::Base64 and Net::SMTP to the perl module requirements (both are core perl modules so should already be installed)

New cxs v2.25

Changes:

  • Fix for UI version processing issue