ConfigServer Services Blog

New csf v6.34

Changes:

  • Load DYNDNS and GLOBAL_DYNDNS from last known values when restarting csf instead of waiting for lfd to load the initial rules
  • Improved performance of file slurping
  • Cluster documentation correction in readme.txt
  • UI button style modifications
  • Added specific check for Spamhaus drop lists so that retrieval is never attempted beofer 2 hours elapses between attempts whether those retrieval attempts are successful or not
  • Improvements to SSHD regexes
  • Modified mod_security logging to include the last triggered rule id if present

New cxs v3.12

Changes:

  • Fixed cxs uninstaller removing csf UI files on cPanel installs
  • Added phpBB version checking to –options [s]. This requires the perl modules DBI and DBD::mysql to be installed
  • Added phpMyAdmin, Zen Cart, osCommerce and VirtueMart version checking to –options [s]

 

New cxs v3.11

Changes:

  • Added to RECOMMENDATIONS to still run a regular scan without –ctime [hours] to ensure new scan techniques and exploit signatures are used to check all existing files
  • Fixed directory creation on installation for unofficial DA plugin
  • Improved performance of file slurping and therefore scanning
  • Added new –options [s] that will search for a few common web script installations and report if older than the latest version on record. See documentation for more information
  • Exploit fingerprint definitions database additions

 

New cxs v3.10

Changes:

  • Changed –throttle [num] to prevent throttling triggering a –timemax [secs] timeout
  • Added detection for some PHP JPEG and TIFF EXIF exploits
  • Improvements to image and zip file type detection
  • Exploit fingerprint definitions database additions

New csf v6.33

Changes:

  • Modified LF_PERMBLOCK to perform IP lookup on blocked IP
  • Perform modprobe when using FASTSTART on server boot to ensure iptables modules are loaded
  • Modified migration detection for particularly old csf installations
  • Check that TAIL and GREP exist and are executable in UI