ConfigServer Services Blog

New csf v7.07

Changes:

  • Modified lfd to silently drop ST_ENABLE lock queue entries unless DEBUG is enabled
  • Modified ST_ENABLE logging to append to data file and only truncate when needed

 

New cxs v5.03

Changes:

  • Removed a false-postitive fingerprint definition
  • Exploit fingerprint definitions database additions

 

New cxs v5.02

Changes:

  • Ensure –ignore [file] is always loaded last
  • Allow ignoring of Fingerprints
  • New master bayes corpus generated
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

 

New csf v7.04

Changes:

  • Added new option LF_DIST_ACTION. If LF_DISTFTP or LF_DISTSMTP is triggered, then if LF_DIST_ACTION is a path to a script, it will run the script and pass arguments to it. See csf.conf for more info
  • Added limit check on VPS servers when using FASTSTART to ensure there are sufficient numiptents available for all of the iptables rules in that block
  • Modified SMTPAUTH_RESTRICT to add ::1 as a standalone IP to /etc/exim.smtpauth
  • Fixed LF_BIND – BIND_LOG was not being added to the log list to watch
  • On DirectAdmin servers, added new feature LF_DIRECTADMIN. This option scans DIRECTADMIN_LOG for failed logins and blocks accordingly
  • Fixed typo in csf.conf

New cxs v5.01

Changes:

  • Raised bayes low/medium/high thresholds
  • New master bayes corpus generated
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

 

New cxs v5.00

Changes:

  • New feature –[no]bayes taken out of BETA and is the basis of v5
  • Added –[no]bayes to the UI
  • New master bayes corpus generated
  • Added warning in UI for –[no]fallback option regarding potential performance impact
  • Exploit fingerprint definitions database additions