cxs

Changes:

• Improved detection of ruby and c exploits
• Added the ability to use –quarantine and –delete when performing a manual or scheduled scan. However, since the likelihood of a false-positive is relatively high, this is not recommended without care and understanding of the implications
• Added test for existence of –quarantine [dir]. If it does not exist an error will be shown and the scan will continue with the quarantine directive disabled
• New –options [Z]. This option decompresses archives (e.q. zip, tar, tar.gz and tar.bz2 files) and scans each file within the archive using the same options provided to the original scan
• Added –options [Z] to WHM UI
• Updated perl modules requirements to now include: Archive::Zip and Archive::Tar
• Cater for single quotes in cron jobs in the WHM UI
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Improvements to –decode ([D]) option
• Added [D] option to UI
• Fixed typo in UI
• More detailed message for when –filemax reached in a directory
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Fixed bug in –options [D] when running under a non-root account
• Modified –script [script] execution to prevent stray output from [script] when –quiet used
• Added retry timeout in WHM UI for checking www.configserver.com for new version information (to avoid repeated hangs when unreachable)
• Included additional instructions in install.txt to install additional unofficial ClamAV databases from Sanesecurity
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Significant Improvements to –decode ([D]) option
• Added verbose switch to example cPanel Account Suspend perl script
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Optimised fingerprint definitions database
• Removed fingerprint definitions database false-positive

Changes:

• Fixed licensing issue with v1.33

Changes:

• Updated example cPanel Account Suspend perl script to be verbose
• cxs startup speedups
• Add support to –script to pass the username when using –user [user]
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions

Changes:

• Include an example cPanel Account Suspend perl script for use with –script /etc/cxs/cpanelsuspend.pl
• Exploit fingerprint definitions database additions

Changes:

• Always exit if ftp/cgi user is listed in a specified ignore file
• Disable pure-uploadscript if /etc/cxs/ftpddisable exists (in addition to /etc/ftpddisable)
• Exploit regex definitions database additions
• Exploit fingerprint definitions database additions