ConfigServer Services Blog

Changes:

• Closed vulnerability with temporary file checking
• Tightened log file regex’s to prevent spoofed remote IP block attacks

Changes:

• Improved file checking in Server Check script to prevent WHM failures

Changes:

• Modified Server Check to only look at pure-ftpd settings if installed
• Simplified throttling mechanism

Changes:

• Modified PHP Server Checks to use the php binary output instead of trying to find the active php.ini file
• Added PHP Server Check for register_globals
• Improvements to the Server Check code
• Fixed bug in TCP port 23 check in Server Check
• Added new option –check (-c) to check whether the installed version of csf is the latest, no update is performed
• Added multiple csf configuration checks to the Server Check report
• Added throttling to LF_INTEGRITY and increased the timeout proportionally

Changes:

• Modified SMTP_BLOCK warning on VPS servers to only display if the option is enabled
• Modifed the Server Services Check text to omit using -del with chkconfig and better explain that a process is enabled even if it is not currently running and needs to be disabled to prevent startup on boot
• Removed reliance on wget for updates and version checks
• Coding improvements in csf.pl and addon_csf.cgi
• Added /var/log/lfd.log tail automatic refresh to WHM UI

Changes:

• Fixed problem with DENY_IP_LIMIT not counting all IP entries in csf.deny correctly
• Ignore and issue a warning if SMTP_BLOCK is enabled on a Vituozzo VPS since the Virtuozzo VPS kernel does not support ipt_owner
• Remove Shell/Fork Bomb Protection check (if a VPS) in Server Check as the option breaks a Virtuozzo VPS if enabled
• Added more processes to check in Server Services Check
• Removed restriction on outbound source port rule construction