Server Software and Configuration Services
Changes:
– Modified installer to use a local copy of the latest version of MailScanner to allow for ConfigServer provided patches
– Added fixes to untaint input to prevent errors about email trying to kill MailScanner
Changes:
– Ensure htaccess fingerprints only apply to .htaccess files
– On cPanel servers hide the Support icon introduced by cPanel in v11.34
– Added unsupported feature –YSKIPFPREGEX to ignore inbuilt fingerprint regular expression matching when using –options [M], –xtra [file] contents will still match
– Added scanning for jsp scripts
– Added scanning for asp and aspx scripts
– Added scanning for java scripts
– Exploit regex definitions database additions
– Exploit fingerprint definitions database additions
Changes:
– Update to one of the main decoder regexes
Changes:
– Added multiple new advanced PHP decoders
– Improvements to the main decoder regex
– Exploit regex definitions database additions
– Exploit fingerprint definitions database additions
Changes:
– Fixed an issue with PERMBLOCK introduced in v5.68
Changes:
Changes:
– New feature added – LF_DIST_INTERVAL. This option provides a separate timing interval for both LF_DISTFTP and LF_DISTSMTP. By default it is set to 300 seconds
– Implemented better handling of repeat blocks when an IP is already temporarily or permanenetly blocked
– Added missing inclusion of Time::HiRes in csf.pl
– Silence LF_DISTFTP and LF_DISTSMTP ignored IP logging to lfd.log unless DEBUG enabled
– Silence DYNDNS IP address updates to lfd.log unless DEBUG enabled
– RELAYHOSTS setting now defaults to “0” to improve security on cPanel servers
– Increased default value of DENY_IP_LIMIT to 200
Changes:
– Fixed a problem with permanent IP blocking when using LF_SELECT
Changes:
– Implemented a new locking system to try to mitigate an iptables bug when issuing concurrent iptables commands
– Implement flushing on the lfd pid file so that it is always accurate
– Improvements to csf –grep [ip] to escape regular expression matching
– New feature added – LF_REPEATBLOCK. This option instructs csf to deny an already blocked IP address the number of times set. See csf.conf for more information
– New feature added – LF_BLOCKINONLY. This option instructs csf to only block inbound traffic from those IP's and so reduces the number of iptables rules, but at the expense of less effectiveness. See csf.conf for more information
– New feature added – ST_DISKW. This option adds disk write performance statistics to the stats graphs. See csf.conf for more information
– Fixed file location for Debian and derivative OS's for /etc/mysql/my.cnf in Server Check
Changes:
– Improvements to the daily update mechanism
– Fixed a false-positive with the main .htaccess regex