ConfigServer Services Blog

New csf v5.72

Changes:
– Added missing DD setting in DA and generic installations for ST_DISKW
– Modified IPv6 port settings to reflect IPv4 port settings for new installs in csf.conf
– If a deleted executable process is detected and reported then do not further report children of the parent (or the parent itself if a child triggered the report) if the parent is also a deleted executable process
– Parent PID added to PT_DELETED_ACTION parameters
– In the Server Report allow for spaces before Apache directives
– Updated instructions for modifying log_selector for exim configurations in readme.txt and Server Report
– Modify DD calculation for ST_DISKW for disks that report in GB/s
– Updated to use the new cPanel 11.36+ integrated perl binary if exists

New cse v1.9

Changes:
– Updated to use the new cPanel 11.36+ integrated perl binary if exists

New cmq v1.12

Changes:
Updated to use the new cPanel 11.36+ integrated perl binary if exists

New cmm v1.19

Changes:
– Updated to use the new cPanel 11.36+ integrated perl binary if exists

New cmc v1.03

Changes:
– Updated to use the new cPanel 11.36+ integrated perl binary if exists

New cxs v2.82

Changes:
– Added new advanced PHP decoder
– Impovements to detection of PHP script file type
– Added new functionality to –xtra [file] to force quarantine of a file with a matching regex if using –quarantine[dir]. See documentation or the latest /etc/cxs/cxs.xtra.example for information
– Exploit regex definitions database additions
– Exploit fingerprint definitions database additions

New cxs v2.81

Changes:
– Fixed a false-positive with the main .htaccess regex
– Fixed UI not correctly saving –MD5 to cxs.defaults if set
– Fixed issue with temp file cleanup not reinitialising between scans

New cxs v2.80

Changes in v2.80:
– Add scan type to Quarantine output for each entry
– Added timezone offset to cxs –mail emails
– Improvements to the main decoder regex
– Improvements to advanced PHP decoders to –decode ([D])
– Exploit fingerprint definitions database additions

Changes in v2.79:
– Improved settings initialisation when scanning multiple files
– Added xtra supplied md5sum values to the report to help with match identification
– Removed the instructions for installing unofficial ClamAV databases as we don't support them

New cxs v2.78

Changes:
– Improvements to various advanced PHP decoders
– Exploit regex definitions database additions
– Exploit fingerprint definitions database additions

New csf v5.71

Changes:
– Fixed problem processing dd output for ST_DISKW on some systems
– Fixed dovecot imap login failure regex processing
– Added regexes for dovecot pop3 and imap raw logs (i.e. not syslog)