ConfigServer Services Blog

New csf v9.29

Changes:

  • Fixed issue that was breaking LF_DISTSMTP
  • Fixed issue in UI lfd Stats. Note: The lfd stats data file has been renamed from /var/lib/csf/stats/lfdmain to /var/lib/csf/stats/lfdstats Additionally, the stats for 2016-12-31 will reset to 0 due to this bug
  • Corrected text in readme.txt
  • Added new csf CLI cluster option: -ctd, –ctempdeny ip ttl [-p port] [-d direction] [comment]
    This sends a temporary deny request to the cluster
  • Added new csf CLI cluster option: -cta, –ctempallow ip ttl [-p port] [-d direction] [comment]
    This sends a temporary allow request to the cluster
  • Added new csf CLI cluster option: -cg, –cgrep ip
    This requests the –grep output for [ip] from each cluster member
  • Modified cluster requests to respond with an acknowledgment to the sender
  • Modified –cdeny [ip] and –callow [ip] to include optional comment
  • Added separate tab for Cluster options in UI if enabled and added new cluster temp allow/deny commands to UI
  • Modified Port Scan Tracking. UDP packets destined for the network broadcast address(es) will now be ignored in Port Scan Tracking unless BRD is added to PS_PORTS. The broadcast address(es) include the those listed in IP or IFCONFIG plus the default (255.255.255.255) unless one of the servers IPs
  • Added new feature: PT_USERRSS. This User Process Tracking option sends an alert if any user process exceeds the RSS memory limit set – RAM used, not virtual. PT_USERRSS is set to 256 (MB) and PT_USERMEM is now set to 512 (MB) by default on new installations. On existing installs PT_USERRSS is set to the same value as PT_USERMEM

New cxs v6.27

Changes:

  • Modified to unzip and scan self-contained inline PHP zip files
  • Exploit fingerprint definitions database additions

New MailScanner Front-End (MSFE) v8.01

Changes:

  • Fixed issue when upgrading that could cause problems viewing MySQL data when using the Asynchronous driver
  • Fixed issue where changing the DB driver to SQLite created an empty file with no schema

New MailScanner Front-End (MSFE) v8.00

Changes:

  • Major New Feature: End-User cPanel MailControl. This feature enables end-users access to a limited MailControl interface from within the cPanel MSFE UI. See MSFE > Front-End Settings > End-User Settings > for settings and more information
  • End-User settings are now controlled on an “inherit from default” basis allowing more granular control of user settings
  • New MailControl setting: Mail Release (direct) allows emails to be placed directly into the specified local email accounts INBOX on the server, bypassing exim for instant delivery
  • Modified display Client IP column option in main table to work with SQLite driver, however column sort is not available unless using a MySQL driver
  • Added clientip index to the SQLite schema
  • MailWatch Asynchronous MySQL replaced with a combined MailControl Asynchronous MySQL driver. The forked process is now called “MailScanner: MailControl”

New cxs v6.26

Changes:

  • Modified quarantine directory structure detection to fail (i.e. disable –quarantine [dir]) if using an invalid directory instead of attempting to convert it

New cxs v6.25

Changes:

  • Modify adding entry to /etc/chkservd/chkservd.conf when that file is missing a trailing linefeed on the last record
  • Exploit fingerprint definitions database additions

New MailScanner Front-End (MSFE) v7.39

Changes:

  • SECURITY: Fixed another issue with MailControl database password being exposed
  • Fix “No Scan” message listing and Daily Summary when using sqlite driver
  • Support for deprecated cPanel themes (e.g. x3) has been removed

Holiday Schedule

We shall be closing our online store, helpdesk and forums from 23rd December 2016 to 2nd January 2017 (inclusive).

We will not be providing any sales, support or ticket work between these dates. Any outstanding tickets or Service Package work will recommence on the 3rd of January.