ConfigServer Services Blog

Changes:
– Update Fedora version check now that v17 has been released
– Added MySQL Connection and Thread statistics to ST_MYSQL/ST_SYSTEM
– Modified Server Check Report for cPanel servers see whether mod_ruid2 has been enabled making the Apache suEXEC check moot
– Improvements to the SMTP AUTH regex to cope with differing settings in exim log_selector

Changes:
– Added Email Usage to the ST_SYSTEM System Statistics feature when RT_* options are enabled
– Fixed incorrect Min/Max calculations in System Statistics
– Improvements to Disk Usage stats in System Statistics for some virtual environments
– Added CPU Temperature to the ST_SYSTEM System Statistics feature when lm-sensors/coretemp installed and enabled (highest core temp recorded)
– Added MySQL graphs to the ST_SYSTEM System Statistics feature when ST_MYSQL is installed and enabled – requires DBI and DBD::mysql perl modules. Authentication is via new ST_MYSQL* options. The option is enabled on cPanel servers by default, disabled on others
– Modified stats collection routine to append data to the stats file on each minute interval and to clean up only on lfd startup. This is to help minimise the risk of the stats file being incomplete due to process termination
– Added new options LF_DISTSMTP, LF_DISTSMTP_UNIQ and LF_DISTSMTP_PERM. This option will keep track of successful SMTP logins. If the number of successful logins to an individual account is at least LF_DISTSMTP in LF_INTERVAL from at least LF_DISTSMTP_UNIQ IP addresses, then all of the IP addresses will be blocked. This option can help mitigate the common SMTP account compromise attacks that use a distributed network of zombies to send spam (exim MTA only). Not enabled by default
– Modified Server Check Report for cPanel servers see whether mod_ruid2 has been enabled making the PHP Handler check moot
– Modified the ModSecurity regex to cater for the paid Atomic rules Apache error log non-standard format
– Modified non-cPanel new installs to disable ST_SYSTEM by default